Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/36486b-b7b7-43a2-bb27-77ab05e0cf62/1/UOLKpsggHxdmGmNDByXjEaPBvUo.roa
File: UOLKpsggHxdmGmNDByXjEaPBvUo.roa (raw, json)
Hash identifier: anA23rN/NsKPYMhO+BHcl5isfiD9ayF4LwP2qkPuKrQ=
Subject key identifier: 50:E2:CA:A6:C8:20:1F:17:66:1A:63:43:07:25:E3:11:A3:C1:BD:4A
Certificate issuer: /CN=e24a32278ce7b4cb205dfccad786014a3b0ae323
Certificate serial: 02357F
Authority key identifier: E2:4A:32:27:8C:E7:B4:CB:20:5D:FC:CA:D7:86:01:4A:3B:0A:E3:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4koyJ4zntMsgXfzK14YBSjsK4yM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/36486b-b7b7-43a2-bb27-77ab05e0cf62/1/UOLKpsggHxdmGmNDByXjEaPBvUo.roa
Signing time: Fri 25 Feb 2022 13:04:32 +0000
ROA not before: Fri 25 Feb 2022 13:04:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8535
IP address blocks: 2a02:bd8::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144767 (0x2357f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e24a32278ce7b4cb205dfccad786014a3b0ae323
Validity
Not Before: Feb 25 13:04:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=50e2caa6c8201f17661a63430725e311a3c1bd4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:26:a5:f8:ef:5b:2c:fa:9c:9b:f1:a3:d1:1c:
d0:d1:c9:0c:11:9b:39:8f:a5:0d:5c:43:5f:11:0e:
3c:9b:26:b0:c6:7f:9f:6b:81:bc:37:da:55:ca:38:
a3:20:fe:02:7c:66:fa:83:1e:50:3e:8a:bd:c1:bd:
fa:b2:1a:f7:f4:9b:e5:83:49:17:bf:60:2e:8c:96:
26:1b:a7:76:2c:e8:c7:d6:88:bb:77:ce:52:d3:b2:
31:79:66:09:cd:22:9a:e3:77:1e:cc:96:c8:9a:0d:
ad:d3:60:f4:34:40:8c:ed:f9:71:e0:bd:0b:ce:ff:
68:0d:c1:f3:41:f0:59:c4:0c:a7:3a:c7:90:31:13:
c2:ca:da:5d:72:3d:22:3e:fa:eb:16:51:22:21:58:
42:22:1e:d5:5f:a9:b2:2a:13:31:3e:64:93:18:2e:
97:30:2f:e5:b7:a8:68:77:b0:8f:b2:23:5c:23:8a:
ab:d0:78:68:0b:3e:7e:62:d9:29:d5:6f:90:9c:c0:
41:6e:7a:c3:1b:82:bb:ff:7a:ad:7e:44:71:7e:7c:
5c:a8:6c:7f:c4:f8:ff:c7:5e:68:d9:e6:d7:ac:16:
ee:48:27:81:cf:10:eb:68:24:3c:e5:54:8c:e1:d9:
42:df:18:29:14:80:22:52:c7:8f:50:1d:07:9e:cf:
c4:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:E2:CA:A6:C8:20:1F:17:66:1A:63:43:07:25:E3:11:A3:C1:BD:4A
X509v3 Authority Key Identifier:
keyid:E2:4A:32:27:8C:E7:B4:CB:20:5D:FC:CA:D7:86:01:4A:3B:0A:E3:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4koyJ4zntMsgXfzK14YBSjsK4yM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/36486b-b7b7-43a2-bb27-77ab05e0cf62/1/UOLKpsggHxdmGmNDByXjEaPBvUo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/36486b-b7b7-43a2-bb27-77ab05e0cf62/1/4koyJ4zntMsgXfzK14YBSjsK4yM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:bd8::/32
Signature Algorithm: sha256WithRSAEncryption
62:bf:8a:1e:eb:d6:c6:65:7e:ba:98:10:88:85:b2:7d:db:5a:
ad:77:f2:10:2d:8c:9f:11:c6:d7:3d:b1:2d:19:03:24:52:42:
2d:17:7c:a3:f5:4f:d8:10:8a:6b:29:ec:5b:10:4c:dd:71:6c:
1d:93:48:d0:41:73:64:52:25:d5:97:94:66:44:60:8f:7e:0b:
6a:f3:2b:04:9e:97:b5:8f:81:c4:ad:cc:f6:d4:cd:49:0d:20:
be:53:be:de:80:3e:7f:fd:ab:7c:19:44:e2:b0:e5:e2:a8:cb:
66:c1:51:0f:22:93:4e:de:ea:0d:7d:b3:1a:e2:0b:51:60:e0:
bc:5a:2f:05:40:92:a5:ed:98:eb:8e:59:20:0d:1a:c3:6c:c6:
30:72:12:30:c1:92:7b:93:ef:a0:d7:22:5f:f4:39:3b:17:ff:
f1:bc:0f:d5:a7:34:50:a2:97:70:8b:82:de:9e:93:69:a2:ab:
08:53:36:63:db:f4:3a:f8:75:6c:33:fd:a1:01:5c:1b:be:3b:
b3:2b:b5:3a:db:8d:bd:98:8d:b7:e0:58:fa:91:fb:9b:28:7c:
8d:e3:fb:c2:86:37:b4:55:b9:b7:e5:11:66:b8:e8:fb:cd:aa:
15:12:1f:f0:24:d8:77:f1:1f:7c:0d:04:78:d2:34:52:70:a3:
06:97:23:a9
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIDAjV/MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGUy
NGEzMjI3OGNlN2I0Y2IyMDVkZmNjYWQ3ODYwMTRhM2IwYWUzMjMwHhcNMjIwMjI1
MTMwNDMyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg1MGUyY2FhNmM4MjAx
ZjE3NjYxYTYzNDMwNzI1ZTMxMWEzYzFiZDRhMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA6Cal+O9bLPqcm/Gj0RzQ0ckMEZs5j6UNXENfEQ48myawxn+f
a4G8N9pVyjijIP4CfGb6gx5QPoq9wb36shr39Jvlg0kXv2AujJYmG6d2LOjH1oi7
d85S07IxeWYJzSKa43cezJbImg2t02D0NECM7flx4L0Lzv9oDcHzQfBZxAynOseQ
MRPCytpdcj0iPvrrFlEiIVhCIh7VX6myKhMxPmSTGC6XMC/lt6hod7CPsiNcI4qr
0HhoCz5+Ytkp1W+QnMBBbnrDG4K7/3qtfkRxfnxcqGx/xPj/x15o2ebXrBbuSCeB
zxDraCQ85VSM4dlC3xgpFIAiUsePUB0Hns/EOQIDAQABo4ICCjCCAgYwHQYDVR0O
BBYEFFDiyqbIIB8XZhpjQwcl4xGjwb1KMB8GA1UdIwQYMBaAFOJKMieM57TLIF38
yteGAUo7CuMjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
NGtveUo0em50TXNnWGZ6SzE0WUJTanNLNHlNLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9iNi8zNjQ4NmItYjdiNy00M2EyLWJiMjctNzdhYjA1ZTBjZjYyLzEv
VU9MS3BzZ2dIeGRtR21OREJ5WGpFYVBCdlVvLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi8z
NjQ4NmItYjdiNy00M2EyLWJiMjctNzdhYjA1ZTBjZjYyLzEvNGtveUo0em50TXNn
WGZ6SzE0WUJTanNLNHlNLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAG
CCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgIL2DANBgkqhkiG9w0BAQsFAAOC
AQEAYr+KHuvWxmV+upgQiIWyfdtarXfyEC2MnxHG1z2xLRkDJFJCLRd8o/VP2BCK
aynsWxBM3XFsHZNI0EFzZFIl1ZeUZkRgj34LavMrBJ6XtY+BxK3M9tTNSQ0gvlO+
3oA+f/2rfBlE4rDl4qjLZsFRDyKTTt7qDX2zGuILUWDgvFovBUCSpe2Y645ZIA0a
w2zGMHISMMGSe5PvoNciX/Q5Oxf/8bwP1ac0UKKXcIuC3p6TaaKrCFM2Y9v0Ovh1
bDP9oQFcG747syu1OtuNvZiNt+BY+pH7myh8jeP7woY3tFW5t+URZrjo+82qFRIf
8CTYd/EffA0EeNI0UnCjBpcjqQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:32 2023 by rpki-client on console-ams.rpki-client.org