Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/17e450-8818-4a27-9f35-518cd14713eb/1/hHeNnuDcrP1M0Ywi_S23ERjHF88.roa
File: hHeNnuDcrP1M0Ywi_S23ERjHF88.roa (raw, json)
Hash identifier: atlz46ltTTcxm+O7JAxWj0e2Tm0aucD9IxlUg/2zbt0=
Subject key identifier: 84:77:8D:9E:E0:DC:AC:FD:4C:D1:8C:22:FD:2D:B7:11:18:C7:17:CF
Certificate issuer: /CN=b7733e9de9485b44671c8e511da221e4153c711b
Certificate serial: 09EF9F9D
Authority key identifier: B7:73:3E:9D:E9:48:5B:44:67:1C:8E:51:1D:A2:21:E4:15:3C:71:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t3M-nelIW0RnHI5RHaIh5BU8cRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/17e450-8818-4a27-9f35-518cd14713eb/1/hHeNnuDcrP1M0Ywi_S23ERjHF88.roa
Signing time: Sat 01 Jan 2022 08:01:07 +0000
ROA not before: Sat 01 Jan 2022 08:01:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 2a0c:8dc7::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166698909 (0x9ef9f9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7733e9de9485b44671c8e511da221e4153c711b
Validity
Not Before: Jan 1 08:01:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=84778d9ee0dcacfd4cd18c22fd2db71118c717cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:61:a3:8b:32:d2:67:b4:d8:3d:f7:12:3a:b9:
42:95:de:a6:e6:65:04:2f:7a:9a:e1:fa:cf:5d:6a:
7c:e2:5f:2f:92:3c:79:e3:1c:83:be:59:bd:5e:a7:
fa:df:63:cb:6c:7b:db:f2:40:c9:df:71:51:4f:5c:
bd:c4:a5:a4:e4:2f:94:51:ba:d3:03:cc:1e:aa:90:
ef:19:46:bc:70:0b:9b:7e:02:33:f7:3f:04:f1:bb:
ac:10:03:a5:7a:32:1a:32:03:b5:57:60:bf:34:c6:
a1:d2:d5:9c:8f:e0:df:5b:5a:ce:e9:e9:22:3e:45:
5b:4c:99:8a:57:9e:de:d7:ef:b3:aa:d1:8d:f7:fe:
ed:94:6e:0b:ea:23:c3:29:14:e0:2f:6a:44:87:72:
31:0d:c6:6c:c1:d9:47:c1:02:1d:e4:dd:5d:10:86:
7f:fb:28:b7:25:b0:94:66:29:15:ba:9a:40:94:3d:
90:e6:a9:c2:48:f1:39:fb:e6:8f:0b:3f:c6:de:4a:
6c:f2:21:53:a7:aa:a1:c7:7f:46:86:66:2c:a8:f9:
1e:6b:3b:71:6f:42:bd:a5:a8:b3:b4:e6:a8:59:38:
61:aa:9e:3f:9a:db:57:e6:73:b8:d3:07:b6:d6:d3:
07:73:21:b6:51:05:6f:04:16:3d:bf:bd:c6:35:78:
4e:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:77:8D:9E:E0:DC:AC:FD:4C:D1:8C:22:FD:2D:B7:11:18:C7:17:CF
X509v3 Authority Key Identifier:
keyid:B7:73:3E:9D:E9:48:5B:44:67:1C:8E:51:1D:A2:21:E4:15:3C:71:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t3M-nelIW0RnHI5RHaIh5BU8cRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/17e450-8818-4a27-9f35-518cd14713eb/1/hHeNnuDcrP1M0Ywi_S23ERjHF88.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/17e450-8818-4a27-9f35-518cd14713eb/1/t3M-nelIW0RnHI5RHaIh5BU8cRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:8dc7::/32
Signature Algorithm: sha256WithRSAEncryption
24:fc:cc:ed:93:63:4a:59:86:b3:02:31:36:23:32:72:93:2a:
21:10:66:de:97:8d:6f:33:a5:43:8f:a5:30:3c:5e:1e:31:af:
6c:91:f9:35:5b:1d:bb:c8:62:6d:2d:29:af:bb:af:2f:e1:e1:
7c:42:3d:37:74:88:94:2b:f0:ed:cf:a0:b8:cf:ca:0b:6a:e0:
74:9e:77:03:1a:6e:b8:08:1b:02:c9:79:97:98:1a:62:b9:f8:
0d:fc:74:77:e7:82:84:29:82:7b:84:37:bf:71:08:eb:9e:99:
0d:d9:7b:1e:57:29:a3:30:f5:50:60:d5:8b:7d:e3:17:d1:e3:
c5:b1:c9:cc:19:2c:71:11:8c:ff:f1:4c:84:9b:ee:d5:53:77:
4b:6c:9b:0c:e3:fb:7e:26:e9:7e:93:55:b2:a4:88:f3:47:42:
92:21:4a:77:77:33:75:ad:f1:7d:39:f1:6f:30:56:89:48:95:
67:60:69:1f:c3:fd:6d:bc:b1:10:83:d0:1c:bc:ad:59:99:54:
be:08:e8:f7:f8:68:b6:aa:90:73:d0:b2:9d:ea:33:de:fc:dd:
4f:94:4c:e7:c4:32:d0:93:19:52:3b:90:e4:78:5c:99:86:7f:
ea:97:3e:1c:b3:47:c3:8b:dc:a8:21:e0:f5:e2:16:84:86:7e:
b6:a7:f0:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:39:42 2025 by rpki-client