Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/QJwhMBz3GZ5SlXhJy6de3jkjy0c.roa
File: QJwhMBz3GZ5SlXhJy6de3jkjy0c.roa (raw, json)
Hash identifier: FYawvD0CorFcKP2hL2qgNnOUjZNGakSRkQMVwtbGHBg=
Subject key identifier: 40:9C:21:30:1C:F7:19:9E:52:95:78:49:CB:A7:5E:DE:39:23:CB:47
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 0C014F0F
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/QJwhMBz3GZ5SlXhJy6de3jkjy0c.roa
Signing time: Tue 24 May 2022 05:50:16 +0000
ROA not before: Tue 24 May 2022 05:50:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47241
IP address blocks: 109.60.128.0/17 maxlen: 24
46.160.0.0/18 maxlen: 24
37.98.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 201412367 (0xc014f0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: May 24 05:50:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=409c21301cf7199e52957849cba75ede3923cb47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b6:3b:90:0f:50:e6:5a:cd:87:32:24:35:25:
e7:96:11:40:2f:e0:54:ae:44:5a:3f:b2:d1:0a:b3:
17:4c:11:b1:89:30:cd:50:7f:fd:b2:42:14:32:a5:
99:92:dc:78:10:15:99:d0:7f:5b:fd:44:b3:cf:61:
46:24:8b:85:23:58:05:9f:2e:b9:a5:fb:c2:db:db:
60:9b:08:fc:1d:9c:b3:10:cd:34:d9:f0:7f:5a:50:
47:4f:35:d0:f6:7d:71:76:5f:99:6c:a5:9d:46:33:
f3:af:0f:37:57:13:ad:17:8d:80:06:b1:5b:37:a2:
1b:b6:46:f6:52:4b:db:12:90:50:56:c6:ee:86:13:
0a:7c:84:2f:d4:bf:e0:80:36:ac:83:d6:30:51:7a:
3c:de:29:eb:82:d4:24:e5:da:48:7b:37:6c:e0:4f:
e7:b7:dd:7c:14:43:38:85:8b:06:e9:b1:36:c9:86:
57:cd:61:60:b8:bf:df:2a:32:e2:0c:76:4e:0c:7c:
9c:1b:3d:8d:6b:e3:e4:73:0d:b8:5b:89:41:73:25:
ad:7b:f9:be:13:74:d4:36:d2:b6:7c:11:27:7a:bc:
58:00:33:83:a6:19:0f:b8:c6:ec:79:28:a1:e4:6d:
de:d5:e9:15:87:79:d8:3d:d0:f4:77:06:c2:58:d7:
1b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:9C:21:30:1C:F7:19:9E:52:95:78:49:CB:A7:5E:DE:39:23:CB:47
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/QJwhMBz3GZ5SlXhJy6de3jkjy0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.98.160.0/19
46.160.0.0/18
109.60.128.0/17
Signature Algorithm: sha256WithRSAEncryption
0a:34:79:79:b8:80:83:83:7e:c6:46:01:9b:49:f6:13:c0:fb:
25:32:95:f5:8a:d1:c3:0d:de:37:57:f9:63:9f:27:1f:d0:51:
49:75:50:a9:04:22:1b:cc:ac:a9:21:6d:3b:dd:fb:3a:ab:0a:
85:7c:7a:2b:ba:4c:0a:46:82:0e:c0:ab:c5:58:d0:6e:0f:ae:
9b:03:6d:98:c0:4a:04:31:b2:c5:da:8e:a1:b5:47:b0:4f:a0:
fa:bc:df:06:13:4f:5d:01:28:23:16:82:d1:a7:33:13:6d:54:
23:6b:ea:81:f1:33:9e:10:e3:43:0b:20:04:97:fe:ff:63:fc:
d4:45:77:aa:80:fb:55:5e:7d:87:6c:72:ee:3e:7b:65:c4:f4:
59:48:f6:dc:77:b2:2b:87:f4:27:bc:0c:2b:f8:99:23:35:af:
a3:3a:23:68:e0:79:4d:b6:86:df:67:16:a3:9c:0b:e0:1c:01:
ec:8d:21:65:5f:72:14:ff:38:8a:09:1e:40:66:cb:75:47:ac:
8f:a8:62:f0:8f:38:26:0b:14:f0:bf:2e:e1:5e:9e:d5:6b:76:
be:ba:b8:35:9e:24:4d:e1:61:85:af:79:ff:21:35:2f:8a:10:
e4:b9:9f:46:25:79:c4:0c:09:6e:cf:76:56:b1:39:37:1e:ae:
18:08:e9:ee
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEDAFPDzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
ZGFjODMwY2NhYTc0NzgzZGQ5NjFmYWIyNDFhMjI4ZDdjYzZmODA4MB4XDTIyMDUy
NDA1NTAxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDA5YzIxMzAxY2Y3
MTk5ZTUyOTU3ODQ5Y2JhNzVlZGUzOTIzY2I0NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKu2O5APUOZazYcyJDUl55YRQC/gVK5EWj+y0QqzF0wRsYkw
zVB//bJCFDKlmZLceBAVmdB/W/1Es89hRiSLhSNYBZ8uuaX7wtvbYJsI/B2csxDN
NNnwf1pQR0810PZ9cXZfmWylnUYz868PN1cTrReNgAaxWzeiG7ZG9lJL2xKQUFbG
7oYTCnyEL9S/4IA2rIPWMFF6PN4p64LUJOXaSHs3bOBP57fdfBRDOIWLBumxNsmG
V81hYLi/3yoy4gx2Tgx8nBs9jWvj5HMNuFuJQXMlrXv5vhN01DbStnwRJ3q8WAAz
g6YZD7jG7HkooeRt3tXpFYd52D3Q9HcGwljXG0UCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBRAnCEwHPcZnlKVeEnLp17eOSPLRzAfBgNVHSMEGDAWgBStrIMMyqdHg92W
H6skGiKNfMb4CDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3JheURETXFuUjRQZGxoLXJKQm9palh6Ry1BZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODIvMzI1YzhkLWQzNjgtNGVlZS05Y2E4LTkyOWY3ZDYzNWY0Yi8x
L1FKd2hNQnozR1o1U2xYaEp5NmRlM2prankwYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODIv
MzI1YzhkLWQzNjgtNGVlZS05Y2E4LTkyOWY3ZDYzNWY0Yi8xL3JheURETXFuUjRQ
ZGxoLXJKQm9palh6Ry1BZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEBSVioAMEBi6gAAMEB208gDANBgkq
hkiG9w0BAQsFAAOCAQEACjR5ebiAg4N+xkYBm0n2E8D7JTKV9YrRww3eN1f5Y58n
H9BRSXVQqQQiG8ysqSFtO937OqsKhXx6K7pMCkaCDsCrxVjQbg+umwNtmMBKBDGy
xdqOobVHsE+g+rzfBhNPXQEoIxaC0aczE21UI2vqgfEznhDjQwsgBJf+/2P81EV3
qoD7VV59h2xy7j57ZcT0WUj23HeyK4f0J7wMK/iZIzWvozojaOB5TbaG32cWo5wL
4BwB7I0hZV9yFP84igkeQGbLdUesj6hi8I84JgsU8L8u4V6e1Wt2vrq4NZ4kTeFh
ha95/yE1L4oQ5LmfRiV5xAwJbs92VrE5Nx6uGAjp7g==
-----END CERTIFICATE-----
Generated at Sun Apr 20 13:53:53 2025 by rpki-client