Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/e4ef53-30bf-4897-b210-d519b82afc36/1/qwga_p5J0KaKlZ4JdOTo-P7jEyo.roa
File: qwga_p5J0KaKlZ4JdOTo-P7jEyo.roa (raw, json)
Hash identifier: 6z+XuT7/IAGPvoWS8IkQC86VELnu5MbCd012C3LcgLA=
Subject key identifier: AB:08:1A:FE:9E:49:D0:A6:8A:95:9E:09:74:E4:E8:F8:FE:E3:13:2A
Certificate issuer: /CN=29d313a7fd2ba3d995c44a7ab4af332f875cc40c
Certificate serial: 097A7053
Authority key identifier: 29:D3:13:A7:FD:2B:A3:D9:95:C4:4A:7A:B4:AF:33:2F:87:5C:C4:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdMTp_0ro9mVxEp6tK8zL4dcxAw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/e4ef53-30bf-4897-b210-d519b82afc36/1/qwga_p5J0KaKlZ4JdOTo-P7jEyo.roa
Signing time: Sat 01 Jan 2022 13:06:48 +0000
ROA not before: Sat 01 Jan 2022 13:06:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9051
IP address blocks: 185.44.152.0/22 maxlen: 24
2a04:9cc0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159019091 (0x97a7053)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29d313a7fd2ba3d995c44a7ab4af332f875cc40c
Validity
Not Before: Jan 1 13:06:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab081afe9e49d0a68a959e0974e4e8f8fee3132a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ae:4a:09:7b:0f:b8:cf:d5:f0:18:6c:4a:a8:
29:e8:c6:a3:fa:de:65:ee:76:94:84:44:49:38:a8:
cb:aa:da:94:46:ea:e9:51:48:a1:4f:3e:42:ba:a6:
38:78:11:f3:b6:82:ea:ab:7d:27:0f:d4:a8:fa:11:
cc:0f:05:d7:01:84:c8:de:33:ba:1a:29:99:d9:1f:
96:a9:1d:25:b3:0c:32:45:03:16:d8:22:f4:36:9f:
6d:74:d0:28:7b:92:0f:dc:f0:10:db:23:11:8b:e1:
29:a9:1e:cc:67:c7:54:38:22:6f:08:d1:78:44:1c:
49:60:f3:c3:e7:4a:11:d8:93:ee:3f:ed:2d:26:c4:
f2:50:13:23:ea:df:45:c2:c8:08:67:4d:3c:53:8a:
e9:fc:00:e8:4c:4e:6e:34:a7:69:25:a0:47:c4:f7:
12:28:ce:d5:6a:b7:5a:5c:04:9c:be:93:d2:c0:c3:
0c:6a:6e:12:ce:69:9a:2c:45:e1:1b:cf:2d:46:83:
74:31:c6:f7:5c:dc:bc:0d:9d:1a:a9:c1:77:fe:5d:
f9:c4:31:4d:6b:a6:f6:23:f1:19:d4:e7:a3:c9:8a:
c3:ea:de:11:bb:d3:ce:ba:41:2c:78:2e:23:70:d3:
c5:f1:f8:27:e4:24:bb:09:9d:87:b8:92:aa:b6:67:
ad:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:08:1A:FE:9E:49:D0:A6:8A:95:9E:09:74:E4:E8:F8:FE:E3:13:2A
X509v3 Authority Key Identifier:
keyid:29:D3:13:A7:FD:2B:A3:D9:95:C4:4A:7A:B4:AF:33:2F:87:5C:C4:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdMTp_0ro9mVxEp6tK8zL4dcxAw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e4ef53-30bf-4897-b210-d519b82afc36/1/qwga_p5J0KaKlZ4JdOTo-P7jEyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e4ef53-30bf-4897-b210-d519b82afc36/1/KdMTp_0ro9mVxEp6tK8zL4dcxAw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.44.152.0/22
IPv6:
2a04:9cc0::/29
Signature Algorithm: sha256WithRSAEncryption
bb:2a:09:c3:3b:d0:83:95:77:a0:93:90:52:a6:b5:a0:fa:74:
bc:58:87:a2:9a:c3:fe:09:cd:50:28:68:ea:c8:96:91:9e:20:
76:f1:ac:2c:1e:f8:8c:c3:f9:4b:e9:a4:5f:68:54:91:48:cb:
e6:93:ae:d6:a6:fc:2d:ca:f3:67:a9:dc:3e:6a:10:ff:7e:8b:
bc:1c:1e:54:a7:d1:94:ef:c2:35:e1:85:c2:29:5c:13:78:35:
85:09:36:96:85:f8:77:37:07:0a:91:41:48:dc:30:e7:ec:80:
12:15:76:f9:9f:b4:f9:81:c8:60:67:dd:e2:e1:14:86:3a:34:
fd:42:f2:3a:4d:60:51:73:58:5f:99:89:0b:a0:48:19:5a:56:
60:89:c5:2c:c3:8c:34:c2:03:2c:11:7f:b2:3f:6b:68:eb:d2:
ac:0d:67:30:40:b6:4a:ce:20:fd:6b:e2:62:80:73:29:ed:5c:
26:dc:32:d9:11:75:03:d8:7f:4b:80:8a:98:4e:5c:b6:e5:5d:
4c:1f:f7:f6:6d:b1:7f:fa:5e:a9:db:3f:3b:25:8d:0f:cd:4a:
ff:2e:8e:2f:e5:1b:4e:31:44:c2:84:de:26:cd:38:3f:87:62:
d1:60:ca:31:08:5e:23:37:f9:f5:57:8d:f5:8e:1c:56:49:64:
44:a1:c8:c7
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIECXpwUzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
OWQzMTNhN2ZkMmJhM2Q5OTVjNDRhN2FiNGFmMzMyZjg3NWNjNDBjMB4XDTIyMDEw
MTEzMDY0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWIwODFhZmU5ZTQ5
ZDBhNjhhOTU5ZTA5NzRlNGU4ZjhmZWUzMTMyYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALauSgl7D7jP1fAYbEqoKejGo/reZe52lIRESTioy6ralEbq
6VFIoU8+QrqmOHgR87aC6qt9Jw/UqPoRzA8F1wGEyN4zuhopmdkflqkdJbMMMkUD
Ftgi9DafbXTQKHuSD9zwENsjEYvhKakezGfHVDgibwjReEQcSWDzw+dKEdiT7j/t
LSbE8lATI+rfRcLICGdNPFOK6fwA6ExObjSnaSWgR8T3EijO1Wq3WlwEnL6T0sDD
DGpuEs5pmixF4RvPLUaDdDHG91zcvA2dGqnBd/5d+cQxTWum9iPxGdTno8mKw+re
EbvTzrpBLHguI3DTxfH4J+Qkuwmdh7iSqrZnrcECAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBSrCBr+nknQpoqVngl05Oj4/uMTKjAfBgNVHSMEGDAWgBQp0xOn/Suj2ZXE
Snq0rzMvh1zEDDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tkTVRwXzBybzltVnhFcDZ0Szh6TDRkY3hBdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODAvZTRlZjUzLTMwYmYtNDg5Ny1iMjEwLWQ1MTliODJhZmMzNi8x
L3F3Z2FfcDVKMEthS2xaNEpkT1RvLVA3akV5by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODAv
ZTRlZjUzLTMwYmYtNDg5Ny1iMjEwLWQ1MTliODJhZmMzNi8xL0tkTVRwXzBybzlt
VnhFcDZ0Szh6TDRkY3hBdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArksmDANBAIAAjAHAwUDKgScwDAN
BgkqhkiG9w0BAQsFAAOCAQEAuyoJwzvQg5V3oJOQUqa1oPp0vFiHoprD/gnNUCho
6siWkZ4gdvGsLB74jMP5S+mkX2hUkUjL5pOu1qb8LcrzZ6ncPmoQ/36LvBweVKfR
lO/CNeGFwilcE3g1hQk2loX4dzcHCpFBSNww5+yAEhV2+Z+0+YHIYGfd4uEUhjo0
/ULyOk1gUXNYX5mJC6BIGVpWYInFLMOMNMIDLBF/sj9raOvSrA1nMEC2Ss4g/Wvi
YoBzKe1cJtwy2RF1A9h/S4CKmE5ctuVdTB/39m2xf/peqds/OyWND81K/y6OL+Ub
TjFEwoTeJs04P4di0WDKMQheIzf59VeN9Y4cVklkRKHIxw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:34 2024 by rpki-client on console-ams.rpki-client.org