Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/d296a8-a5b1-4a34-8128-89359e783224/1/tJt9gERqUWdrDI1OaA3MYLVzjbg.roa
File: tJt9gERqUWdrDI1OaA3MYLVzjbg.roa (raw, json)
Hash identifier: 0jSPyBQljQ5bOABZdLLB2XE0M9lMvkmMe0XwOl7UB7A=
Subject key identifier: B4:9B:7D:80:44:6A:51:67:6B:0C:8D:4E:68:0D:CC:60:B5:73:8D:B8
Certificate issuer: /CN=5bd8d72b1cbfc67c379ad9a92c66fac6c8d3233a
Certificate serial: 108A17BB
Authority key identifier: 5B:D8:D7:2B:1C:BF:C6:7C:37:9A:D9:A9:2C:66:FA:C6:C8:D3:23:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W9jXKxy_xnw3mtmpLGb6xsjTIzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/d296a8-a5b1-4a34-8128-89359e783224/1/tJt9gERqUWdrDI1OaA3MYLVzjbg.roa
Signing time: Sat 01 Jan 2022 06:55:26 +0000
ROA not before: Sat 01 Jan 2022 06:55:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60775
IP address blocks: 185.177.144.0/22 maxlen: 22
185.177.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 277485499 (0x108a17bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bd8d72b1cbfc67c379ad9a92c66fac6c8d3233a
Validity
Not Before: Jan 1 06:55:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b49b7d80446a51676b0c8d4e680dcc60b5738db8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:51:77:83:dd:3a:9f:64:ad:34:f2:a2:19:7a:
ca:26:e7:8c:aa:a1:af:a3:42:ba:c9:79:77:ce:be:
5f:6f:43:aa:ab:3e:cc:ef:53:3b:3e:7f:dd:a5:92:
97:a6:5b:a3:27:ad:3c:33:85:4a:10:0a:98:b5:ee:
dd:1e:98:08:9c:62:7e:02:4b:76:54:ce:5d:38:30:
5a:74:1b:7f:03:99:2c:b4:c0:95:0d:b3:c6:82:4b:
55:87:ad:ed:a5:3d:7b:e3:44:08:97:79:dd:16:88:
48:a7:67:60:4a:33:ce:07:ba:67:63:12:a4:b2:eb:
a2:fa:78:fe:87:53:e0:0a:3c:92:f4:fc:7f:94:ba:
66:30:ff:f4:c2:9b:f0:02:4a:5c:60:93:71:0d:b1:
68:64:fa:6a:5b:76:96:75:04:02:e4:2e:d0:22:7e:
f3:0c:7d:54:ee:6c:1a:1d:61:c2:d1:00:da:17:88:
e0:65:d9:96:67:51:bb:5b:f0:e8:bc:f7:1f:05:1a:
cc:ab:a3:b2:94:d8:a2:ea:1e:b6:2b:4a:a5:81:7d:
95:f2:28:ae:be:56:88:19:fe:87:16:65:d5:8b:f2:
bf:bc:18:5a:9a:cb:cd:b6:ab:4f:92:79:8b:3e:b8:
7a:fd:d6:14:80:e1:b2:6a:6e:32:9c:94:9a:cf:33:
27:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:9B:7D:80:44:6A:51:67:6B:0C:8D:4E:68:0D:CC:60:B5:73:8D:B8
X509v3 Authority Key Identifier:
keyid:5B:D8:D7:2B:1C:BF:C6:7C:37:9A:D9:A9:2C:66:FA:C6:C8:D3:23:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W9jXKxy_xnw3mtmpLGb6xsjTIzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/d296a8-a5b1-4a34-8128-89359e783224/1/tJt9gERqUWdrDI1OaA3MYLVzjbg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/d296a8-a5b1-4a34-8128-89359e783224/1/W9jXKxy_xnw3mtmpLGb6xsjTIzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.144.0/22
Signature Algorithm: sha256WithRSAEncryption
73:8a:62:02:a6:9f:62:35:6f:4d:06:c7:95:4d:03:e2:4d:ed:
3d:3b:51:c2:61:df:b0:49:fb:41:84:6c:f9:b3:cd:cc:3a:17:
82:7e:85:19:7b:1f:47:85:b6:61:d4:79:8a:b3:d5:78:58:3f:
76:eb:a6:58:af:90:bf:db:38:5c:6b:5b:a3:0f:78:be:fb:76:
c0:b3:bf:0d:1c:9c:78:5a:d0:f2:b7:72:7f:47:a4:0c:19:74:
dd:b6:ae:5d:33:38:8a:20:a4:51:b4:1e:b8:50:2c:be:4f:db:
76:5b:7c:98:5b:01:35:9e:07:76:f7:9e:b8:49:24:2e:52:d9:
55:28:e4:60:d1:3d:e2:fc:56:12:ca:1e:c9:1b:a6:eb:d1:65:
02:e8:20:42:b0:bf:dd:1f:25:7c:ee:3f:76:66:b5:9c:4a:7d:
4b:d0:5a:fe:a0:18:d8:be:9c:3c:e2:a3:1e:a2:0f:2a:da:91:
b4:e1:49:ab:79:8c:b2:17:3d:b8:a2:f9:6e:ca:cb:6d:93:ac:
48:be:07:50:1f:95:15:50:35:b4:2f:f1:b9:63:7c:d4:1f:44:
45:5d:e7:81:82:36:bd:dd:b7:cc:3d:ff:ea:09:0e:8b:34:d7:
9f:94:bc:5f:71:1c:70:31:6d:ff:8a:75:be:d6:48:91:e4:c4:
38:42:c3:c8
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEEIoXuzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
YmQ4ZDcyYjFjYmZjNjdjMzc5YWQ5YTkyYzY2ZmFjNmM4ZDMyMzNhMB4XDTIyMDEw
MTA2NTUyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjQ5YjdkODA0NDZh
NTE2NzZiMGM4ZDRlNjgwZGNjNjBiNTczOGRiODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKNRd4PdOp9krTTyohl6yibnjKqhr6NCusl5d86+X29Dqqs+
zO9TOz5/3aWSl6ZboyetPDOFShAKmLXu3R6YCJxifgJLdlTOXTgwWnQbfwOZLLTA
lQ2zxoJLVYet7aU9e+NECJd53RaISKdnYEozzge6Z2MSpLLrovp4/odT4Ao8kvT8
f5S6ZjD/9MKb8AJKXGCTcQ2xaGT6alt2lnUEAuQu0CJ+8wx9VO5sGh1hwtEA2heI
4GXZlmdRu1vw6Lz3HwUazKujspTYouoetitKpYF9lfIorr5WiBn+hxZl1Yvyv7wY
WprLzbarT5J5iz64ev3WFIDhsmpuMpyUms8zJ+0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS0m32ARGpRZ2sMjU5oDcxgtXONuDAfBgNVHSMEGDAWgBRb2NcrHL/GfDea
2aksZvrGyNMjOjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1c5alhLeHlfeG53M210bXBMR2I2eHNqVEl6by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTYvZDI5NmE4LWE1YjEtNGEzNC04MTI4LTg5MzU5ZTc4MzIyNC8x
L3RKdDlnRVJxVVdkckRJMU9hQTNNWUxWempiZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTYv
ZDI5NmE4LWE1YjEtNGEzNC04MTI4LTg5MzU5ZTc4MzIyNC8xL1c5alhLeHlfeG53
M210bXBMR2I2eHNqVEl6by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArmxkDANBgkqhkiG9w0BAQsFAAOC
AQEAc4piAqafYjVvTQbHlU0D4k3tPTtRwmHfsEn7QYRs+bPNzDoXgn6FGXsfR4W2
YdR5irPVeFg/duumWK+Qv9s4XGtbow94vvt2wLO/DRyceFrQ8rdyf0ekDBl03bau
XTM4iiCkUbQeuFAsvk/bdlt8mFsBNZ4HdveeuEkkLlLZVSjkYNE94vxWEsoeyRum
69FlAuggQrC/3R8lfO4/dma1nEp9S9Ba/qAY2L6cPOKjHqIPKtqRtOFJq3mMshc9
uKL5bsrLbZOsSL4HUB+VFVA1tC/xuWN81B9ERV3ngYI2vd23zD3/6gkOizTXn5S8
X3EccDFt/4p1vtZIkeTEOELDyA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:26 2024 by rpki-client on console-ams.rpki-client.org