Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/ULWv02virWpxZdKoeqpBVk_l_nM.roa
File: ULWv02virWpxZdKoeqpBVk_l_nM.roa (raw, json)
Hash identifier: ZWHmY9gGKNKnG6vx34gZCZ77ssPu00c1CVIjs++fumE=
Subject key identifier: 50:B5:AF:D3:6B:E2:AD:6A:71:65:D2:A8:7A:AA:41:56:4F:E5:FE:73
Certificate issuer: /CN=38203463eb944b25c65135ca47bdbdab646f3984
Certificate serial: 03E2D808
Authority key identifier: 38:20:34:63:EB:94:4B:25:C6:51:35:CA:47:BD:BD:AB:64:6F:39:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCA0Y-uUSyXGUTXKR729q2RvOYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/ULWv02virWpxZdKoeqpBVk_l_nM.roa
Signing time: Sat 01 Jan 2022 06:56:37 +0000
ROA not before: Sat 01 Jan 2022 06:56:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207134
IP address blocks: 2a00:8860:500::/40 maxlen: 64
2a00:8861:500::/40 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65198088 (0x3e2d808)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38203463eb944b25c65135ca47bdbdab646f3984
Validity
Not Before: Jan 1 06:56:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=50b5afd36be2ad6a7165d2a87aaa41564fe5fe73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:0d:af:ab:c0:4b:84:71:69:3d:b8:7c:7e:bd:
3b:16:c8:bf:95:3e:8b:66:ea:e0:10:96:db:4a:5c:
c7:ad:c7:16:ef:10:44:98:6e:c5:fa:d5:8d:e5:73:
e4:f0:1a:84:8b:8a:a9:ab:54:36:65:0b:4f:e3:3b:
1b:27:e2:02:f2:b9:35:a1:af:af:e4:01:b6:1e:d8:
08:44:be:5a:0b:04:c5:c5:63:31:c0:34:c7:79:b0:
6e:71:13:24:80:69:8e:cb:46:6a:d2:b0:f5:9a:1f:
3a:40:5b:8f:c7:f1:b5:5b:17:75:56:8e:35:bf:41:
38:70:e2:89:d4:17:e9:05:f5:14:3b:c9:a7:93:b0:
ab:f7:c5:0e:21:fe:2a:6d:ee:c0:95:a2:ce:12:66:
26:60:f6:4d:3c:db:02:8d:89:cd:94:9a:f4:8d:df:
3b:a7:b4:d7:f4:b2:08:14:e4:22:10:6e:56:9d:de:
91:36:08:11:53:ba:4e:35:1e:18:9c:45:cb:f8:c5:
cd:dc:96:ce:88:02:60:1b:29:7e:58:02:89:f5:29:
2f:b0:30:8c:50:33:ca:b2:88:2b:3a:d5:80:db:66:
0e:dc:81:59:9c:70:8e:0c:91:a4:48:46:20:f5:68:
00:ba:d1:4a:20:96:68:42:54:17:bd:10:d4:1a:99:
e9:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:B5:AF:D3:6B:E2:AD:6A:71:65:D2:A8:7A:AA:41:56:4F:E5:FE:73
X509v3 Authority Key Identifier:
keyid:38:20:34:63:EB:94:4B:25:C6:51:35:CA:47:BD:BD:AB:64:6F:39:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCA0Y-uUSyXGUTXKR729q2RvOYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/ULWv02virWpxZdKoeqpBVk_l_nM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/OCA0Y-uUSyXGUTXKR729q2RvOYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:8860:500::/40
2a00:8861:500::/40
Signature Algorithm: sha256WithRSAEncryption
4f:7d:4b:f0:a3:7c:9c:60:f5:9e:1a:ba:e8:dd:47:b8:33:49:
96:d2:e8:a1:3c:55:f4:d8:f0:2c:fd:f4:22:bd:d0:c7:af:d6:
89:94:c1:68:9a:f6:ff:1b:cb:3b:5c:60:95:c6:54:7b:53:65:
1e:8a:fa:3d:b7:a1:28:b1:16:9c:de:2a:ae:9d:b1:01:8e:af:
df:be:72:d0:16:fb:d9:e5:f3:0c:6d:a1:66:86:92:bd:3f:78:
ae:a7:06:ed:e3:06:0c:46:4d:30:10:95:5a:c8:f4:f3:39:3e:
d4:d7:29:cd:92:53:f8:bb:f2:c8:e3:48:62:74:dc:97:d1:1a:
6e:3c:ee:1a:66:c9:6e:c5:73:70:03:ac:66:9d:00:d0:ee:73:
60:76:7c:34:93:b8:3a:4d:35:13:46:dc:9a:54:87:ad:7c:50:
a2:75:12:89:f0:65:5a:a4:d1:8b:18:5d:9d:39:68:8d:13:64:
98:a2:60:1a:ab:d6:f5:4e:86:82:5a:50:5a:3c:3d:4a:8f:20:
8c:d6:21:c4:50:c0:46:d9:3d:c0:67:cd:5f:0e:ed:0c:67:ef:
68:e0:01:c8:e6:c4:3f:71:1a:0f:b2:b4:00:a4:10:ee:f1:e3:
96:77:ba:41:f5:75:06:28:cd:c1:5c:a9:93:de:7a:8a:85:0d:
8a:33:5d:85
-----BEGIN CERTIFICATE-----
MIIE+TCCA+GgAwIBAgIEA+LYCDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
ODIwMzQ2M2ViOTQ0YjI1YzY1MTM1Y2E0N2JkYmRhYjY0NmYzOTg0MB4XDTIyMDEw
MTA2NTYzN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTBiNWFmZDM2YmUy
YWQ2YTcxNjVkMmE4N2FhYTQxNTY0ZmU1ZmU3MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL4Nr6vAS4RxaT24fH69OxbIv5U+i2bq4BCW20pcx63HFu8Q
RJhuxfrVjeVz5PAahIuKqatUNmULT+M7GyfiAvK5NaGvr+QBth7YCES+WgsExcVj
McA0x3mwbnETJIBpjstGatKw9ZofOkBbj8fxtVsXdVaONb9BOHDiidQX6QX1FDvJ
p5Owq/fFDiH+Km3uwJWizhJmJmD2TTzbAo2JzZSa9I3fO6e01/SyCBTkIhBuVp3e
kTYIEVO6TjUeGJxFy/jFzdyWzogCYBspflgCifUpL7AwjFAzyrKIKzrVgNtmDtyB
WZxwjgyRpEhGIPVoALrRSiCWaEJUF70Q1BqZ6QcCAwEAAaOCAhMwggIPMB0GA1Ud
DgQWBBRQta/Ta+KtanFl0qh6qkFWT+X+czAfBgNVHSMEGDAWgBQ4IDRj65RLJcZR
NcpHvb2rZG85hDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L09DQTBZLXVVU3lYR1VUWEtSNzI5cTJSdk9ZUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2YvMGEyOTg0LWE4NjktNDQwZC1iNTc4LTU4OTM1MTc5Yjk4NS8x
L1VMV3YwMnZpcldweFpkS29lcXBCVmtfbF9uTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Yv
MGEyOTg0LWE4NjktNDQwZC1iNTc4LTU4OTM1MTc5Yjk4NS8xL09DQTBZLXVVU3lY
R1VUWEtSNzI5cTJSdk9ZUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAp
BggrBgEFBQcBBwEB/wQaMBgwFgQCAAIwEAMGACoAiGAFAwYAKgCIYQUwDQYJKoZI
hvcNAQELBQADggEBAE99S/CjfJxg9Z4auujdR7gzSZbS6KE8VfTY8Cz99CK90Mev
1omUwWia9v8byztcYJXGVHtTZR6K+j23oSixFpzeKq6dsQGOr9++ctAW+9nl8wxt
oWaGkr0/eK6nBu3jBgxGTTAQlVrI9PM5PtTXKc2SU/i78sjjSGJ03JfRGm487hpm
yW7Fc3ADrGadANDuc2B2fDSTuDpNNRNG3JpUh618UKJ1EonwZVqk0YsYXZ05aI0T
ZJiiYBqr1vVOhoJaUFo8PUqPIIzWIcRQwEbZPcBnzV8O7Qxn72jgAcjmxD9xGg+y
tACkEO7x45Z3ukH1dQYozcFcqZPeeoqFDYozXYU=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:30 2023 by rpki-client on console-fra.rpki-client.org