Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ULM4C_a6o5C0xmIZLmtDIH0y4vc.roa
File: ULM4C_a6o5C0xmIZLmtDIH0y4vc.roa (raw, json)
Hash identifier: 1kVe6numQf7LMOCQ3Rby7G8Y0a0z2jjjNiSlwH2/ZjY=
Subject key identifier: 50:B3:38:0B:F6:BA:A3:90:B4:C6:62:19:2E:6B:43:20:7D:32:E2:F7
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018565E9D96A006ECE274C7F0CA1D07A6435
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ULM4C_a6o5C0xmIZLmtDIH0y4vc.roa
Signing time: Sat 31 Dec 2022 02:01:42 +0000
ROA not before: Sat 31 Dec 2022 02:01:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210619
IP address blocks: 2a0e:97c0:800::/39 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:65:e9:d9:6a:00:6e:ce:27:4c:7f:0c:a1:d0:7a:64:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Dec 31 02:01:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=50b3380bf6baa390b4c662192e6b43207d32e2f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:b4:2d:4f:1c:49:4c:29:07:01:90:82:0e:0c:
41:04:21:8b:09:76:88:9b:c0:10:e5:ce:36:7a:32:
30:2e:b8:67:b2:0f:dd:8c:b7:b1:de:f3:b6:a2:aa:
e7:89:c2:71:0c:aa:8f:28:2e:cb:0d:06:f3:51:1a:
12:49:a2:4b:e0:20:f4:da:89:83:a3:f9:73:c0:b7:
dc:a7:75:bb:79:a6:c3:31:cd:39:16:4f:69:fb:e8:
fe:77:b3:40:c9:f3:2c:d7:1d:8b:f3:f0:4d:e0:54:
8f:42:28:48:e1:d1:f7:da:89:18:12:8f:be:91:3e:
12:16:e5:95:23:68:96:68:fc:45:6f:05:f7:92:05:
f5:cc:98:26:73:69:e5:19:20:59:ac:a3:71:98:46:
03:1a:ef:d4:86:a3:ec:6e:00:09:bf:c1:e6:b0:91:
7c:30:bf:1e:92:ee:d5:ca:db:73:98:b3:fc:a2:78:
47:f8:90:50:fe:3a:7a:04:c3:ed:4e:14:3b:5c:03:
d6:3b:de:a0:6a:17:b7:8f:9e:50:30:ab:05:34:2c:
a5:7e:de:44:44:1c:2f:69:86:b3:01:ea:ff:56:e9:
d6:a4:59:d8:fc:6f:76:77:fa:f9:ab:5f:6e:3f:28:
32:ba:69:f6:1e:cc:d1:e3:5f:8f:91:c5:e5:22:9a:
61:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:B3:38:0B:F6:BA:A3:90:B4:C6:62:19:2E:6B:43:20:7D:32:E2:F7
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ULM4C_a6o5C0xmIZLmtDIH0y4vc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:800::/39
Signature Algorithm: sha256WithRSAEncryption
13:a8:db:ea:ae:9b:b9:5f:7c:d3:a9:a9:af:08:57:a7:09:3d:
93:f7:e9:cf:3f:f6:43:db:a6:98:1b:e4:16:5e:f8:42:64:15:
89:86:ac:4b:7a:1f:4a:0b:3d:ec:84:7a:78:b6:b4:0e:1d:3d:
d7:cb:9b:1e:c3:61:36:ef:61:8f:c7:cc:e0:9a:87:33:e0:a1:
20:0c:7e:58:9c:79:33:9c:d0:1d:e2:35:ec:c5:0d:b2:0c:92:
59:17:25:95:c5:c9:b8:65:a1:7e:8a:bb:2c:f5:0b:09:5e:39:
de:c1:61:7a:14:f9:42:b3:0b:2b:35:36:12:45:e6:d8:3c:e8:
77:74:58:00:f1:ae:6e:c8:0f:32:11:09:b3:ba:3b:8e:33:73:
12:5d:ab:0c:05:ef:b0:75:70:92:d7:02:86:44:dc:9f:5e:09:
00:df:bb:bd:4b:2d:96:87:cd:36:1a:45:a2:fa:b7:00:5e:a3:
e4:3a:c6:bf:df:47:8a:f0:5e:2f:25:2b:79:35:5b:15:db:7c:
5e:bb:a7:9b:a9:05:6e:1d:71:e3:5f:92:a2:6d:bc:ed:82:0f:
3d:8f:7c:ed:03:cb:ea:73:74:b7:e5:ad:19:c2:ad:40:bb:01:
bd:24:95:da:38:b4:62:eb:eb:47:7b:30:c9:2d:b8:40:56:46:
03:c7:07:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:00 2023 by rpki-client on console-ams.rpki-client.org