Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/807954-aa7e-48e9-87fa-5ebf2a54eb6d/1/qq2CBZBStfFhYajRrOoS_6datJQ.roa
File: qq2CBZBStfFhYajRrOoS_6datJQ.roa (raw, json)
Hash identifier: GXFbi+uEadJxLYejRnyxTULk+EwLOLYpHhf27/R4ZcQ=
Subject key identifier: AA:AD:82:05:90:52:B5:F1:61:61:A8:D1:AC:EA:12:FF:A7:5A:B4:94
Certificate issuer: /CN=c27964aabf404dda3f5e0ecc1c706ab327c6f931
Certificate serial: 0BB719FD
Authority key identifier: C2:79:64:AA:BF:40:4D:DA:3F:5E:0E:CC:1C:70:6A:B3:27:C6:F9:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wnlkqr9ATdo_Xg7MHHBqsyfG-TE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/807954-aa7e-48e9-87fa-5ebf2a54eb6d/1/qq2CBZBStfFhYajRrOoS_6datJQ.roa
Signing time: Sat 01 Jan 2022 05:53:28 +0000
ROA not before: Sat 01 Jan 2022 05:53:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201494
IP address blocks: 185.73.40.0/22 maxlen: 24
2a05:3f80:43::/48 maxlen: 48
2a05:3f80:41::/48 maxlen: 48
2a05:3f80::/29 maxlen: 29
2a05:3f80:42::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 196549117 (0xbb719fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c27964aabf404dda3f5e0ecc1c706ab327c6f931
Validity
Not Before: Jan 1 05:53:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aaad82059052b5f16161a8d1acea12ffa75ab494
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:8e:18:d4:d8:ab:82:e4:a3:5b:1d:53:89:de:
90:f0:f0:7e:c3:e0:9b:aa:11:c4:b1:77:33:53:9f:
19:ef:7b:ba:2b:40:d3:d2:e2:68:2f:c9:76:c2:f6:
5f:6d:c9:5c:0e:51:d3:92:b1:4c:a4:9c:53:ae:ec:
a4:3d:49:15:c5:a2:5c:e3:33:48:89:89:fe:c9:9d:
d7:d7:46:d6:8f:bb:b5:62:b0:0d:66:a4:57:af:3c:
74:25:7d:1d:a7:0f:1d:98:dd:52:6e:12:a0:10:1b:
73:d8:5a:6d:32:f4:b5:78:3e:8a:9d:89:2d:7f:63:
23:c1:30:76:70:75:95:85:eb:9b:24:4d:87:81:1d:
f5:8e:2b:bb:53:19:8b:65:ce:bd:c2:f5:6a:ef:e0:
f6:04:ee:37:8b:a7:7b:0b:9f:ea:17:a8:4d:04:02:
26:c9:da:e1:26:4d:07:dd:37:27:65:1f:b0:46:c4:
7f:68:33:f1:0f:a9:19:36:8e:f9:b2:c5:f4:0b:49:
85:07:89:d4:d1:ed:94:d7:80:19:a9:c3:f4:ca:64:
eb:5c:62:25:40:9a:23:8d:85:a7:9c:c0:b3:22:bd:
a9:9a:14:c3:92:09:f4:ec:9a:95:94:dc:c4:94:77:
4a:3a:bb:7f:33:d3:ab:66:1a:66:cf:c9:ee:e6:36:
d9:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:AD:82:05:90:52:B5:F1:61:61:A8:D1:AC:EA:12:FF:A7:5A:B4:94
X509v3 Authority Key Identifier:
keyid:C2:79:64:AA:BF:40:4D:DA:3F:5E:0E:CC:1C:70:6A:B3:27:C6:F9:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wnlkqr9ATdo_Xg7MHHBqsyfG-TE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/807954-aa7e-48e9-87fa-5ebf2a54eb6d/1/qq2CBZBStfFhYajRrOoS_6datJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/807954-aa7e-48e9-87fa-5ebf2a54eb6d/1/wnlkqr9ATdo_Xg7MHHBqsyfG-TE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.73.40.0/22
IPv6:
2a05:3f80::/29
Signature Algorithm: sha256WithRSAEncryption
3c:11:ad:82:f6:be:e6:29:0d:f0:5d:02:81:a5:c4:72:cb:0d:
5d:03:17:52:97:73:b5:23:1b:af:89:31:7c:45:ce:e6:fa:44:
1d:ff:fc:18:77:31:d3:0d:02:63:dc:14:e4:07:a6:41:ba:65:
70:b8:21:af:a9:79:75:56:ac:e5:9f:18:51:b0:36:26:d4:4b:
99:a4:3c:88:74:ee:4c:c0:96:77:00:a4:d6:ff:81:38:cc:69:
21:0f:1e:5a:09:18:de:a8:5f:47:63:66:3c:8b:c6:60:2a:70:
8e:53:f9:66:39:f4:fa:05:ab:db:d1:5a:49:c8:8a:7c:1c:26:
c1:ff:71:ef:e8:8b:de:88:68:14:3e:a6:41:6a:c5:74:e3:02:
74:5d:a6:af:06:12:1f:0e:3b:4f:65:77:98:53:83:55:05:ba:
fa:cf:22:7d:b9:94:fd:2a:01:96:01:7b:f6:17:3f:c5:4a:01:
a9:98:5b:24:00:3e:a0:8d:c6:c1:e1:7b:e8:b7:81:68:0f:92:
69:f5:29:0e:0c:a0:e3:6c:61:98:07:b9:6a:68:4f:b8:ab:25:
d0:eb:fc:9b:49:b9:71:2c:d8:00:fe:df:1d:92:30:88:20:b3:
00:ae:5a:43:41:9f:ae:e2:ed:12:34:a3:06:80:17:2d:04:59:
a9:29:91:62
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEC7cZ/TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
Mjc5NjRhYWJmNDA0ZGRhM2Y1ZTBlY2MxYzcwNmFiMzI3YzZmOTMxMB4XDTIyMDEw
MTA1NTMyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWFhZDgyMDU5MDUy
YjVmMTYxNjFhOGQxYWNlYTEyZmZhNzVhYjQ5NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMGOGNTYq4Lko1sdU4nekPDwfsPgm6oRxLF3M1OfGe97uitA
09LiaC/JdsL2X23JXA5R05KxTKScU67spD1JFcWiXOMzSImJ/smd19dG1o+7tWKw
DWakV688dCV9HacPHZjdUm4SoBAbc9habTL0tXg+ip2JLX9jI8EwdnB1lYXrmyRN
h4Ed9Y4ru1MZi2XOvcL1au/g9gTuN4unewuf6heoTQQCJsna4SZNB903J2UfsEbE
f2gz8Q+pGTaO+bLF9AtJhQeJ1NHtlNeAGanD9Mpk61xiJUCaI42Fp5zAsyK9qZoU
w5IJ9OyalZTcxJR3Sjq7fzPTq2YaZs/J7uY22S8CAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBSqrYIFkFK18WFhqNGs6hL/p1q0lDAfBgNVHSMEGDAWgBTCeWSqv0BN2j9e
DswccGqzJ8b5MTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3dubGtxcjlBVGRvX1hnN01ISEJxc3lmRy1URS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzIvODA3OTU0LWFhN2UtNDhlOS04N2ZhLTVlYmYyYTU0ZWI2ZC8x
L3FxMkNCWkJTdGZGaFlhalJyT29TXzZkYXRKUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzIv
ODA3OTU0LWFhN2UtNDhlOS04N2ZhLTVlYmYyYTU0ZWI2ZC8xL3dubGtxcjlBVGRv
X1hnN01ISEJxc3lmRy1URS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArlJKDANBAIAAjAHAwUDKgU/gDAN
BgkqhkiG9w0BAQsFAAOCAQEAPBGtgva+5ikN8F0CgaXEcssNXQMXUpdztSMbr4kx
fEXO5vpEHf/8GHcx0w0CY9wU5AemQbplcLghr6l5dVas5Z8YUbA2JtRLmaQ8iHTu
TMCWdwCk1v+BOMxpIQ8eWgkY3qhfR2NmPIvGYCpwjlP5Zjn0+gWr29FaSciKfBwm
wf9x7+iL3ohoFD6mQWrFdOMCdF2mrwYSHw47T2V3mFODVQW6+s8ifbmU/SoBlgF7
9hc/xUoBqZhbJAA+oI3GweF76LeBaA+SafUpDgyg42xhmAe5amhPuKsl0Ov8m0m5
cSzYAP7fHZIwiCCzAK5aQ0GfruLtEjSjBoAXLQRZqSmRYg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:01:38 2025 by rpki-client