Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/WuVwH9ZO75Lw27N2r2gEdVVoZkc.roa
File: WuVwH9ZO75Lw27N2r2gEdVVoZkc.roa (raw, json)
Hash identifier: vafP5NWeMJS5U/pqv+KBeAGurDyQ7lLoJAGW2cheSXQ=
Subject key identifier: 5A:E5:70:1F:D6:4E:EF:92:F0:DB:B3:76:AF:68:04:75:55:68:66:47
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0183E6E7C6EE8791F21A806BF9F023569978
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/WuVwH9ZO75Lw27N2r2gEdVVoZkc.roa
Signing time: Mon 17 Oct 2022 17:04:52 +0000
ROA not before: Mon 17 Oct 2022 17:04:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 36369
IP address blocks: 2a0e:15c0:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e6:e7:c6:ee:87:91:f2:1a:80:6b:f9:f0:23:56:99:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Oct 17 17:04:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ae5701fd64eef92f0dbb376af68047555686647
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e9:73:66:4e:de:e7:47:7a:84:02:c6:32:7b:
c9:3a:37:f7:ab:86:39:50:1d:31:95:69:bd:00:8d:
95:63:e9:3e:1d:98:e0:61:db:39:73:c8:e4:f6:43:
d0:e2:71:63:bc:69:72:7c:7a:bd:ac:cb:8e:47:dc:
31:fb:08:03:c8:36:55:18:84:ac:63:6f:43:e5:a8:
26:da:2d:40:51:aa:8f:ac:3f:c5:ae:44:96:52:6b:
2a:ca:42:bc:da:6f:76:dc:a0:85:1b:69:4a:db:98:
f9:2f:74:8d:9b:4f:75:91:5c:aa:00:0a:de:a0:36:
8d:a0:54:7a:25:eb:3e:d6:ec:1f:e4:d7:55:35:03:
6e:2e:c1:dc:26:2d:1c:2c:2c:e1:3a:9b:e5:38:55:
73:c9:d5:01:a4:58:f8:69:4e:76:dd:3c:a1:0e:2e:
7d:72:b3:5b:ed:00:84:24:d4:3b:68:d7:3c:b9:7a:
df:8c:cb:dd:c6:c1:43:7c:49:b5:00:8e:8e:2f:4d:
76:89:a8:db:00:4b:e1:af:51:27:76:c0:c9:5a:8a:
cb:90:c5:2f:2d:a5:37:e1:8e:2d:15:47:b7:bf:62:
bd:8b:31:4a:47:3f:34:10:b2:42:c1:98:bd:61:dd:
ff:24:95:9f:9e:d4:88:6d:30:09:5f:6a:7f:9c:65:
ea:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:E5:70:1F:D6:4E:EF:92:F0:DB:B3:76:AF:68:04:75:55:68:66:47
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/WuVwH9ZO75Lw27N2r2gEdVVoZkc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:15c0:1::/48
Signature Algorithm: sha256WithRSAEncryption
52:98:e9:b7:2d:10:3d:ee:09:a3:21:b0:c8:f8:5e:b4:31:48:
8c:56:58:c9:d9:9f:a0:0a:b4:bc:c6:b2:a8:76:23:93:ea:0b:
25:fc:b1:f7:ad:ac:b6:78:6b:b4:33:c1:b6:44:75:ee:cf:d3:
7e:cd:1f:e2:fc:d1:f5:18:f5:d7:81:bd:f1:8b:23:4d:62:12:
45:83:0b:b6:92:aa:1d:bc:f9:44:bb:5a:a5:7e:a3:2d:25:56:
4f:de:e9:41:c3:17:58:4c:c3:94:80:10:7e:36:35:32:ed:64:
f7:fa:ca:31:4a:ac:98:d9:45:2d:16:87:46:ff:72:2c:95:c8:
bd:d8:64:eb:8c:3a:8f:ab:2a:69:45:21:2e:d5:83:c8:c1:fb:
56:80:79:1f:4e:ca:56:f5:b8:f4:5c:b5:12:84:b3:85:ef:d7:
01:f0:aa:f2:9e:b1:de:f4:c8:ef:d7:e4:13:de:eb:5b:7d:ad:
c2:44:2a:db:81:c0:ac:fe:18:3f:5a:db:7e:eb:0c:c1:6e:35:
c7:17:57:07:ae:87:b3:fe:f9:10:af:b6:0c:72:92:05:bb:b5:
f3:a8:11:1b:ba:57:e9:b3:1d:20:ca:14:1e:fe:a2:2d:a3:8d:
fa:6f:e5:d5:b8:7d:47:ea:13:25:2b:fe:3c:40:d7:e1:d0:59:
f8:0b:d8:2c
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYPm58buh5HyGoBr+fAjVpl4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjIxMDE3MTcwNDUyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YWU1NzAxZmQ2NGVlZjkyZjBkYmIzNzZhZjY4MDQ3NTU1Njg2NjQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvulzZk7e50d6hALGMnvJOjf3q4Y5
UB0xlWm9AI2VY+k+HZjgYds5c8jk9kPQ4nFjvGlyfHq9rMuOR9wx+wgDyDZVGISs
Y29D5agm2i1AUaqPrD/FrkSWUmsqykK82m923KCFG2lK25j5L3SNm091kVyqAAre
oDaNoFR6Jes+1uwf5NdVNQNuLsHcJi0cLCzhOpvlOFVzydUBpFj4aU523TyhDi59
crNb7QCEJNQ7aNc8uXrfjMvdxsFDfEm1AI6OL012iajbAEvhr1EndsDJWorLkMUv
LaU34Y4tFUe3v2K9izFKRz80ELJCwZi9Yd3/JJWfntSIbTAJX2p/nGXqqwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFFrlcB/WTu+S8Nuzdq9oBHVVaGZHMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvV3VWd0g5Wk83NUx3MjdOMnIyZ0VkVlZvWmtjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg4VwAAB
MA0GCSqGSIb3DQEBCwUAA4IBAQBSmOm3LRA97gmjIbDI+F60MUiMVljJ2Z+gCrS8
xrKodiOT6gsl/LH3ray2eGu0M8G2RHXuz9N+zR/i/NH1GPXXgb3xiyNNYhJFgwu2
kqodvPlEu1qlfqMtJVZP3ulBwxdYTMOUgBB+NjUy7WT3+soxSqyY2UUtFodG/3Is
lci92GTrjDqPqyppRSEu1YPIwftWgHkfTspW9bj0XLUShLOF79cB8KrynrHe9Mjv
1+QT3utbfa3CRCrbgcCs/hg/Wtt+6wzBbjXHF1cHroez/vkQr7YMcpIFu7XzqBEb
ulfpsx0gyhQe/qIto436b+XVuH1H6hMlK/48QNfh0Fn4C9gs
-----END CERTIFICATE-----
Generated at Mon Apr 21 20:07:14 2025 by rpki-client