Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/FVu3g2WwUkhU57rUEslHqoQFMBA.roa
File: FVu3g2WwUkhU57rUEslHqoQFMBA.roa (raw, json)
Hash identifier: JrBWufHn8/yJXtNoG62jLAgG5wfsDqdoXgze+No6GRo=
Subject key identifier: 15:5B:B7:83:65:B0:52:48:54:E7:BA:D4:12:C9:47:AA:84:05:30:10
Certificate issuer: /CN=cfcd73f82c260da87386dcf7be26d5c5445526fa
Certificate serial: 061E3F99
Authority key identifier: CF:CD:73:F8:2C:26:0D:A8:73:86:DC:F7:BE:26:D5:C5:44:55:26:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z81z-CwmDahzhtz3vibVxURVJvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/FVu3g2WwUkhU57rUEslHqoQFMBA.roa
Signing time: Sat 01 Jan 2022 06:56:43 +0000
ROA not before: Sat 01 Jan 2022 06:56:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213064
IP address blocks: 2a09:d2c2:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102645657 (0x61e3f99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfcd73f82c260da87386dcf7be26d5c5445526fa
Validity
Not Before: Jan 1 06:56:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=155bb78365b0524854e7bad412c947aa84053010
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:29:11:b3:b7:80:ea:81:db:d5:91:99:0f:96:
91:dc:a5:ef:af:00:ae:a7:00:af:01:7a:be:fa:83:
43:44:03:f4:95:6e:3e:99:7b:81:43:c0:34:0e:b3:
01:ab:c3:9d:19:96:2f:0e:d8:2d:9d:bc:e3:c7:3e:
49:3e:15:ed:e0:4f:3a:9b:d4:ce:24:a4:99:8f:aa:
08:7a:8b:8e:d9:a7:d2:f0:9f:55:de:c6:5f:92:79:
2f:77:e6:b0:e5:ef:51:e5:57:5a:d5:f3:e4:cf:f3:
34:44:a6:7d:6b:86:36:6a:a5:ac:40:61:e7:71:36:
95:5c:6b:4e:c1:ef:cf:32:31:e3:00:82:c5:a2:4a:
14:8d:41:b9:40:4b:6b:89:d0:98:92:83:c9:5b:05:
80:b4:36:32:4f:a1:b4:8b:ac:83:b9:5b:5c:f4:d1:
99:5d:4e:99:08:fc:5c:1a:0f:cd:25:3e:05:bc:22:
ff:b8:a9:af:80:e8:6d:c1:7c:29:40:74:85:a3:bb:
6f:76:a1:82:cf:26:76:0e:7a:cc:ce:00:84:79:f9:
cd:30:20:e5:ea:b5:c0:bd:65:82:2a:d1:fe:e1:f9:
10:0d:0d:04:63:29:3e:30:c5:df:02:e8:fc:49:52:
db:4f:d1:51:f4:da:80:41:ac:08:1d:0e:ff:0d:ee:
7b:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:5B:B7:83:65:B0:52:48:54:E7:BA:D4:12:C9:47:AA:84:05:30:10
X509v3 Authority Key Identifier:
keyid:CF:CD:73:F8:2C:26:0D:A8:73:86:DC:F7:BE:26:D5:C5:44:55:26:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z81z-CwmDahzhtz3vibVxURVJvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/FVu3g2WwUkhU57rUEslHqoQFMBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/z81z-CwmDahzhtz3vibVxURVJvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:d2c2:1::/48
Signature Algorithm: sha256WithRSAEncryption
80:2b:c9:57:0f:8d:a7:03:43:05:d1:ad:7e:52:eb:6d:5f:ef:
85:6d:90:d7:5d:56:61:7b:11:4f:86:dc:a9:3d:68:84:93:4e:
1c:28:90:be:15:7c:a4:c0:33:b0:c3:25:46:2b:c6:0c:32:f5:
52:f4:97:b0:78:c0:e2:8e:3c:ef:af:dc:74:6e:4f:84:b2:66:
8b:a5:04:5a:b1:06:9a:e3:95:e3:6c:a6:9a:76:b5:47:b8:75:
52:45:7e:c5:25:be:8a:07:bd:c0:5e:1b:f3:29:3a:c9:2c:f7:
0f:75:a7:5a:2b:eb:33:28:1c:3a:7c:d8:2a:85:7a:e8:f0:74:
ec:83:32:e3:0d:f7:e6:c9:a3:28:2d:1c:e0:a9:5e:88:ad:4a:
3f:47:df:63:04:e3:a2:bf:95:f6:59:50:2a:d1:9f:be:68:39:
94:01:18:75:36:95:bc:3e:89:fb:bc:7f:d8:b1:26:f9:de:3b:
f7:ba:b5:8d:49:8b:fc:3c:14:08:ea:2f:37:87:9a:e8:2d:20:
6e:ba:51:a2:49:91:3d:2b:f2:ca:fc:92:fa:f9:34:b5:5b:7e:
86:a4:b9:33:8d:af:47:17:20:5f:69:cb:fd:83:c5:dc:43:82:
39:7e:45:ad:6c:cd:e5:1b:b6:47:2b:06:26:ac:cb:4b:fc:b5:
7a:81:26:98
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEBh4/mTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
ZmNkNzNmODJjMjYwZGE4NzM4NmRjZjdiZTI2ZDVjNTQ0NTUyNmZhMB4XDTIyMDEw
MTA2NTY0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTU1YmI3ODM2NWIw
NTI0ODU0ZTdiYWQ0MTJjOTQ3YWE4NDA1MzAxMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALwpEbO3gOqB29WRmQ+Wkdyl768ArqcArwF6vvqDQ0QD9JVu
Ppl7gUPANA6zAavDnRmWLw7YLZ2848c+ST4V7eBPOpvUziSkmY+qCHqLjtmn0vCf
Vd7GX5J5L3fmsOXvUeVXWtXz5M/zNESmfWuGNmqlrEBh53E2lVxrTsHvzzIx4wCC
xaJKFI1BuUBLa4nQmJKDyVsFgLQ2Mk+htIusg7lbXPTRmV1OmQj8XBoPzSU+Bbwi
/7ipr4DobcF8KUB0haO7b3ahgs8mdg56zM4AhHn5zTAg5eq1wL1lgirR/uH5EA0N
BGMpPjDF3wLo/ElS20/RUfTagEGsCB0O/w3uezcCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBQVW7eDZbBSSFTnutQSyUeqhAUwEDAfBgNVHSMEGDAWgBTPzXP4LCYNqHOG
3Pe+JtXFRFUm+jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3o4MXotQ3dtRGFoemh0ejN2aWJWeFVSVkp2by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGMvNDBhZGUwLTk4ZGEtNGFhNS1iODE3LTZlZGMxYjIyNTYyNS8x
L0ZWdTNnMld3VWtoVTU3clVFc2xIcW9RRk1CQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGMv
NDBhZGUwLTk4ZGEtNGFhNS1iODE3LTZlZGMxYjIyNTYyNS8xL3o4MXotQ3dtRGFo
emh0ejN2aWJWeFVSVkp2by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoJ0sIAATANBgkqhkiG9w0BAQsF
AAOCAQEAgCvJVw+NpwNDBdGtflLrbV/vhW2Q111WYXsRT4bcqT1ohJNOHCiQvhV8
pMAzsMMlRivGDDL1UvSXsHjA4o4876/cdG5PhLJmi6UEWrEGmuOV42ymmna1R7h1
UkV+xSW+ige9wF4b8yk6ySz3D3WnWivrMygcOnzYKoV66PB07IMy4w335smjKC0c
4KleiK1KP0ffYwTjor+V9llQKtGfvmg5lAEYdTaVvD6J+7x/2LEm+d4797q1jUmL
/DwUCOovN4ea6C0gbrpRokmRPSvyyvyS+vk0tVt+hqS5M42vRxcgX2nL/YPF3EOC
OX5FrWzN5Ru2RysGJqzLS/y1eoEmmA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:36 2024 by rpki-client on console-fra.rpki-client.org