Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/q929QWOK8SqLqgUugtonVkQr7CE.roa
File: q929QWOK8SqLqgUugtonVkQr7CE.roa (raw, json)
Hash identifier: s+ZgsXmncMHXQj168U2CX4LTgoItgq2Py3tvcnk57BQ=
Subject key identifier: AB:DD:BD:41:63:8A:F1:2A:8B:AA:05:2E:82:DA:27:56:44:2B:EC:21
Certificate issuer: /CN=1acb6376a1648d49d55e4d7b01371367b0dc2af9
Certificate serial: 01852AB72EB0A90D190C565DFA150877249F
Authority key identifier: 1A:CB:63:76:A1:64:8D:49:D5:5E:4D:7B:01:37:13:67:B0:DC:2A:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GstjdqFkjUnVXk17ATcTZ7DcKvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/q929QWOK8SqLqgUugtonVkQr7CE.roa
Signing time: Mon 19 Dec 2022 14:08:46 +0000
ROA not before: Mon 19 Dec 2022 14:08:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 91.149.244.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2a:b7:2e:b0:a9:0d:19:0c:56:5d:fa:15:08:77:24:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1acb6376a1648d49d55e4d7b01371367b0dc2af9
Validity
Not Before: Dec 19 14:08:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=abddbd41638af12a8baa052e82da2756442bec21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:18:87:1c:2a:fe:9a:2d:c4:af:11:7c:47:2d:
e0:b0:6d:45:b8:d5:b2:81:f9:17:35:fb:c4:e0:43:
db:38:fb:22:28:0a:38:28:c6:a9:4e:e5:0c:f4:18:
3d:0f:60:26:e4:e6:4c:43:37:86:7f:38:f8:cc:28:
c6:85:5c:29:76:09:45:01:7e:d2:a9:1d:cb:d7:8c:
65:54:20:b8:49:8f:78:83:9e:32:2b:01:f1:f1:76:
6d:cb:b0:4d:a8:5b:e5:c0:ba:5b:e9:9c:82:f1:db:
d4:85:2e:94:bb:c1:b3:55:23:2b:93:b2:07:74:3e:
a0:1d:23:87:cc:e2:d7:59:0b:c3:bc:ee:e7:5e:18:
9e:88:4a:17:62:a8:e0:18:d9:ea:5c:c8:a1:06:8f:
25:0d:a8:1b:93:fd:ee:44:12:3e:33:50:67:b0:92:
ce:71:17:1f:7c:f0:57:a1:74:3a:cc:3f:39:0c:a5:
d0:d7:16:39:24:1c:37:07:d9:e7:f7:ba:a7:5b:0e:
9b:0e:bc:d6:b5:20:0c:25:a5:bc:d5:1e:01:cb:57:
ac:d3:df:80:f8:63:65:0b:37:ec:d0:be:c7:78:4b:
29:f0:a2:33:49:87:13:3c:87:5b:e0:4a:f2:2d:89:
b5:4f:59:2f:2f:d0:ba:04:dc:f7:6b:c2:24:dc:11:
38:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:DD:BD:41:63:8A:F1:2A:8B:AA:05:2E:82:DA:27:56:44:2B:EC:21
X509v3 Authority Key Identifier:
keyid:1A:CB:63:76:A1:64:8D:49:D5:5E:4D:7B:01:37:13:67:B0:DC:2A:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GstjdqFkjUnVXk17ATcTZ7DcKvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/q929QWOK8SqLqgUugtonVkQr7CE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/GstjdqFkjUnVXk17ATcTZ7DcKvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.149.244.0/22
Signature Algorithm: sha256WithRSAEncryption
db:ae:36:72:97:cb:e6:14:aa:22:07:2b:26:11:a0:a9:c7:85:
7f:b9:37:be:69:6b:77:11:da:10:2c:bd:d1:74:4c:3e:10:47:
c2:a1:15:8d:14:66:4b:1a:03:db:77:a7:d7:2d:22:8a:1f:2f:
45:cd:04:a8:14:20:7e:a8:d2:29:0f:8a:a4:be:66:00:0f:89:
f2:ec:56:cc:c5:55:82:5d:6f:68:f7:3c:ca:17:3a:39:09:46:
05:98:4e:db:e5:8f:94:ff:62:5b:63:b0:03:ac:0c:9c:d4:3e:
15:a7:c0:5a:26:c9:fa:7c:48:61:9d:74:83:28:0d:36:9a:2b:
cc:f9:42:75:74:d5:4c:cb:db:98:e5:ca:a1:7f:91:5d:89:4b:
bf:81:7b:b9:df:87:8d:73:60:17:c4:9a:53:87:77:2a:fa:e7:
a0:49:30:0b:f9:35:d4:84:c0:f3:a0:97:68:de:47:c3:62:2c:
f3:7e:61:a5:59:c8:06:d1:b3:a2:3b:8d:33:c6:00:ed:2c:f5:
d0:61:a9:27:59:99:64:57:2f:36:56:95:0a:eb:a6:40:0c:2e:
af:0c:55:db:0f:b7:9c:77:81:4f:33:cc:24:59:3a:f1:c3:6d:
0a:5e:29:33:f4:ad:50:1c:7f:3d:7b:fa:43:b0:87:da:f0:30:
a2:20:31:52
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYUqty6wqQ0ZDFZd+hUIdySfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFhY2I2Mzc2YTE2NDhkNDlkNTVlNGQ3YjAxMzcxMzY3YjBk
YzJhZjkwHhcNMjIxMjE5MTQwODQ2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYmRkYmQ0MTYzOGFmMTJhOGJhYTA1MmU4MmRhMjc1NjQ0MmJlYzIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1hiHHCr+mi3ErxF8Ry3gsG1FuNWy
gfkXNfvE4EPbOPsiKAo4KMapTuUM9Bg9D2Am5OZMQzeGfzj4zCjGhVwpdglFAX7S
qR3L14xlVCC4SY94g54yKwHx8XZty7BNqFvlwLpb6ZyC8dvUhS6Uu8GzVSMrk7IH
dD6gHSOHzOLXWQvDvO7nXhieiEoXYqjgGNnqXMihBo8lDagbk/3uRBI+M1BnsJLO
cRcffPBXoXQ6zD85DKXQ1xY5JBw3B9nn97qnWw6bDrzWtSAMJaW81R4By1es09+A
+GNlCzfs0L7HeEsp8KIzSYcTPIdb4EryLYm1T1kvL9C6BNz3a8Ik3BE4+QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKvdvUFjivEqi6oFLoLaJ1ZEK+whMB8GA1UdIwQY
MBaAFBrLY3ahZI1J1V5NewE3E2ew3Cr5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3N0amRxRmtqVW5WWGsxN0FUY1RaN0RjS3ZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS83MjQ3YjAtNDk4OS00M2VhLTkzNTAt
N2E5MzY3NTFkYjFiLzEvcTkyOVFXT0s4U3FMcWdVdWd0b25Wa1FyN0NFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS83MjQ3YjAtNDk4OS00M2VhLTkzNTAtN2E5MzY3NTFkYjFi
LzEvR3N0amRxRmtqVW5WWGsxN0FUY1RaN0RjS3ZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCW5X0MA0G
CSqGSIb3DQEBCwUAA4IBAQDbrjZyl8vmFKoiBysmEaCpx4V/uTe+aWt3EdoQLL3R
dEw+EEfCoRWNFGZLGgPbd6fXLSKKHy9FzQSoFCB+qNIpD4qkvmYAD4ny7FbMxVWC
XW9o9zzKFzo5CUYFmE7b5Y+U/2JbY7ADrAyc1D4Vp8BaJsn6fEhhnXSDKA02mivM
+UJ1dNVMy9uY5cqhf5FdiUu/gXu534eNc2AXxJpTh3cq+uegSTAL+TXUhMDzoJdo
3kfDYizzfmGlWcgG0bOiO40zxgDtLPXQYaknWZlkVy82VpUK66ZADC6vDFXbD7ec
d4FPM8wkWTrxw20KXikz9K1QHH89e/pDsIfa8DCiIDFS
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:21 2024 by rpki-client on console-fra.rpki-client.org