Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/3b7485-8b74-4d50-974a-1b501520532b/1/1FcukWf3D28-2vpsmG425-nyLf4.roa
File: 1FcukWf3D28-2vpsmG425-nyLf4.roa (raw, json)
Hash identifier: Dw/19WocyeJvL2oUHDrTlqgDKpnQlv1NPiU5gJyDBHA=
Subject key identifier: D4:57:2E:91:67:F7:0F:6F:3E:DA:FA:6C:98:6E:36:E7:E9:F2:2D:FE
Certificate issuer: /CN=cccdf6516237d425e9ae3817ecb141f481773c12
Certificate serial: E072DA
Authority key identifier: CC:CD:F6:51:62:37:D4:25:E9:AE:38:17:EC:B1:41:F4:81:77:3C:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zM32UWI31CXprjgX7LFB9IF3PBI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/3b7485-8b74-4d50-974a-1b501520532b/1/1FcukWf3D28-2vpsmG425-nyLf4.roa
Signing time: Sat 01 Jan 2022 05:59:37 +0000
ROA not before: Sat 01 Jan 2022 05:59:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210649
IP address blocks: 37.140.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14709466 (0xe072da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cccdf6516237d425e9ae3817ecb141f481773c12
Validity
Not Before: Jan 1 05:59:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d4572e9167f70f6f3edafa6c986e36e7e9f22dfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c8:78:62:67:78:e8:cc:07:bb:d5:bc:f7:4d:
6d:ae:5d:6c:31:6d:90:38:6c:89:bb:31:41:4d:aa:
15:45:6f:0a:07:6d:54:9f:51:11:10:78:cf:60:19:
7f:8a:b2:6e:63:3e:a8:b6:39:7b:20:31:4f:be:e9:
9b:15:73:c1:f9:c7:df:bd:f3:81:a2:64:c6:ce:0a:
31:a1:29:01:d8:76:3e:57:72:fc:4f:2e:96:0d:26:
5e:62:56:ec:fc:db:5d:f9:b2:64:f2:39:f6:60:cf:
ff:8e:98:3c:3f:50:64:c1:5f:1c:3c:ad:0e:7f:9b:
8c:63:3f:31:17:96:bb:d3:83:e4:3a:dd:d8:21:61:
31:c2:a3:48:ef:4e:52:12:8e:fb:7d:7d:d9:7c:b8:
f3:bf:da:41:62:9d:54:38:d3:02:24:0c:31:78:58:
e9:54:d1:c0:79:74:1c:f7:dc:ca:8d:a1:5c:fc:92:
c9:3a:da:4a:85:4d:b1:89:bc:ed:d8:11:76:b5:b2:
8e:40:10:2f:e8:98:bf:25:94:77:d1:37:77:c1:e8:
76:68:26:6c:d5:a4:8d:27:f5:b6:3f:60:10:28:65:
21:5e:6c:b8:ec:e9:17:62:3e:87:3d:43:fb:49:a1:
fa:56:4f:38:1c:ad:4c:18:8e:f3:2c:88:ec:c2:23:
d5:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:57:2E:91:67:F7:0F:6F:3E:DA:FA:6C:98:6E:36:E7:E9:F2:2D:FE
X509v3 Authority Key Identifier:
keyid:CC:CD:F6:51:62:37:D4:25:E9:AE:38:17:EC:B1:41:F4:81:77:3C:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zM32UWI31CXprjgX7LFB9IF3PBI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3b7485-8b74-4d50-974a-1b501520532b/1/1FcukWf3D28-2vpsmG425-nyLf4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3b7485-8b74-4d50-974a-1b501520532b/1/zM32UWI31CXprjgX7LFB9IF3PBI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.249.0/24
Signature Algorithm: sha256WithRSAEncryption
58:7d:2a:1d:9d:c3:6a:e2:4c:9e:34:3a:fc:52:c4:b4:f8:dc:
19:ae:ee:8e:be:e8:50:2e:56:31:6d:93:3d:27:e0:eb:49:c1:
31:e8:6f:46:f1:6a:c3:d6:dd:30:de:e0:d1:09:09:ba:47:44:
e4:4b:ca:76:62:34:f0:34:59:9d:d9:98:bb:35:7a:b2:4c:dc:
e3:f5:e2:2c:d0:d7:6b:64:b2:99:7a:3f:f2:d2:17:b6:9b:92:
1f:d4:78:63:65:36:d9:ca:ce:bf:fa:1e:14:18:0d:14:d4:a7:
a6:68:8d:7e:7a:a9:54:e4:71:aa:95:8f:a4:c5:d1:38:f5:65:
c9:67:7f:f0:71:12:cc:02:1f:9d:a3:d5:51:a2:1b:5d:c7:5d:
88:25:18:f0:99:f3:4d:0c:06:0c:0a:20:14:73:7d:74:de:0a:
cc:50:ab:46:ec:e5:67:5b:ca:cf:e9:75:f0:b0:1a:2b:89:54:
32:30:d4:76:6a:ca:44:79:7c:e2:55:c1:61:8e:48:c0:d3:53:
b8:40:e0:26:57:91:9d:34:14:31:4f:3d:35:69:aa:66:d2:e6:
af:3b:54:1d:26:c5:65:c7:ea:1b:36:ef:bf:18:ae:26:bb:e9:
7b:98:a3:ab:68:80:8d:47:f4:15:82:24:7d:83:7a:9d:8c:07:
1d:1a:9f:dd
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAOBy2jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
Y2NkZjY1MTYyMzdkNDI1ZTlhZTM4MTdlY2IxNDFmNDgxNzczYzEyMB4XDTIyMDEw
MTA1NTkzN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDQ1NzJlOTE2N2Y3
MGY2ZjNlZGFmYTZjOTg2ZTM2ZTdlOWYyMmRmZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALfIeGJneOjMB7vVvPdNba5dbDFtkDhsibsxQU2qFUVvCgdt
VJ9RERB4z2AZf4qybmM+qLY5eyAxT77pmxVzwfnH373zgaJkxs4KMaEpAdh2Pldy
/E8ulg0mXmJW7PzbXfmyZPI59mDP/46YPD9QZMFfHDytDn+bjGM/MReWu9OD5Drd
2CFhMcKjSO9OUhKO+3192Xy487/aQWKdVDjTAiQMMXhY6VTRwHl0HPfcyo2hXPyS
yTraSoVNsYm87dgRdrWyjkAQL+iYvyWUd9E3d8HodmgmbNWkjSf1tj9gEChlIV5s
uOzpF2I+hz1D+0mh+lZPOBytTBiO8yyI7MIj1VECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTUVy6RZ/cPbz7a+myYbjbn6fIt/jAfBgNVHSMEGDAWgBTMzfZRYjfUJemu
OBfssUH0gXc8EjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3pNMzJVV0kzMUNYcHJqZ1g3TEZCOUlGM1BCSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjcvM2I3NDg1LThiNzQtNGQ1MC05NzRhLTFiNTAxNTIwNTMyYi8x
LzFGY3VrV2YzRDI4LTJ2cHNtRzQyNS1ueUxmNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjcv
M2I3NDg1LThiNzQtNGQ1MC05NzRhLTFiNTAxNTIwNTMyYi8xL3pNMzJVV0kzMUNY
cHJqZ1g3TEZCOUlGM1BCSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACWM+TANBgkqhkiG9w0BAQsFAAOC
AQEAWH0qHZ3DauJMnjQ6/FLEtPjcGa7ujr7oUC5WMW2TPSfg60nBMehvRvFqw9bd
MN7g0QkJukdE5EvKdmI08DRZndmYuzV6skzc4/XiLNDXa2SymXo/8tIXtpuSH9R4
Y2U22crOv/oeFBgNFNSnpmiNfnqpVORxqpWPpMXROPVlyWd/8HESzAIfnaPVUaIb
XcddiCUY8JnzTQwGDAogFHN9dN4KzFCrRuzlZ1vKz+l18LAaK4lUMjDUdmrKRHl8
4lXBYY5IwNNTuEDgJleRnTQUMU89NWmqZtLmrztUHSbFZcfqGzbvvxiuJrvpe5ij
q2iAjUf0FYIkfYN6nYwHHRqf3Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:04 2024 by rpki-client on console-fra.rpki-client.org