Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/HhKky6NM33iEguU_MO4I18qt9o8.roa
File: HhKky6NM33iEguU_MO4I18qt9o8.roa (raw, json)
Hash identifier: RM/1GzTfHV9WUDtItZqfqwGc6YNmWHSNIlAf7jtzNpU=
Subject key identifier: 1E:12:A4:CB:A3:4C:DF:78:84:82:E5:3F:30:EE:08:D7:CA:AD:F6:8F
Certificate issuer: /CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Certificate serial: 02FC140D
Authority key identifier: 37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/HhKky6NM33iEguU_MO4I18qt9o8.roa
Signing time: Sat 01 Jan 2022 16:03:39 +0000
ROA not before: Sat 01 Jan 2022 16:03:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213392
IP address blocks: 2a0e:46c3:800::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50074637 (0x2fc140d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Validity
Not Before: Jan 1 16:03:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e12a4cba34cdf788482e53f30ee08d7caadf68f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e8:f4:e8:19:34:7c:6d:3c:da:42:77:e8:73:
bf:9e:fd:25:aa:d8:c2:7b:ae:1f:40:83:bc:bb:6e:
50:3a:b6:40:12:39:a5:36:b0:f3:8f:32:02:b2:ea:
58:85:dd:02:68:4b:39:36:32:b8:27:17:81:a4:d7:
2d:16:0a:2a:69:43:6b:63:52:d7:3d:bb:94:35:38:
a2:71:0a:22:1c:dd:23:78:52:1e:81:fa:32:2c:3d:
5b:ac:8b:01:43:b9:c9:17:c9:28:f5:28:cf:c3:ca:
bc:71:5c:a4:2f:02:3e:03:52:9b:5a:7a:df:1a:66:
b6:6e:92:a7:91:6f:74:b4:c0:b2:28:b1:c9:8a:72:
5b:ab:64:2f:fc:72:a7:92:15:53:95:2e:67:59:6c:
60:52:d6:bd:9d:c4:85:5b:cd:62:bc:8d:eb:22:5b:
7e:92:49:48:32:26:99:d4:c3:67:37:11:5e:de:30:
4f:5a:23:93:bd:43:7d:a6:25:ec:7e:91:90:4d:4f:
00:6d:01:1c:15:ab:f6:8c:e4:4f:bc:fa:13:d2:8c:
24:b0:78:14:78:a5:4a:03:67:64:78:00:56:06:57:
66:e1:c4:5a:19:63:a7:0c:a4:e7:7b:4d:a2:23:67:
af:f3:91:3c:d2:e6:b4:99:31:70:86:fa:e7:9f:cb:
35:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:12:A4:CB:A3:4C:DF:78:84:82:E5:3F:30:EE:08:D7:CA:AD:F6:8F
X509v3 Authority Key Identifier:
keyid:37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/HhKky6NM33iEguU_MO4I18qt9o8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:46c3:800::/40
Signature Algorithm: sha256WithRSAEncryption
77:bd:79:fc:f5:97:8a:c2:8a:d8:62:ef:62:4a:dc:f6:eb:99:
cb:91:82:93:41:d6:87:c8:bc:29:6a:07:3d:b6:87:f3:d6:41:
3c:21:6e:70:e2:c4:2e:12:f7:cf:62:4e:f6:0a:12:6a:38:10:
23:f8:ca:19:72:f1:85:4b:48:e3:4f:32:44:7c:27:29:03:f1:
b6:e3:fe:01:3f:8f:ce:25:fb:e5:ec:e0:c4:63:87:3f:6c:e4:
33:1e:b0:e6:00:af:46:e0:4d:ce:db:87:15:60:de:51:1e:9b:
7d:c2:ab:1c:1b:8f:93:a3:fb:34:83:5b:7e:37:4d:42:f8:c4:
95:4f:45:d4:a2:41:b0:a5:72:bb:8c:4a:9b:eb:38:c0:fd:ad:
0a:64:f4:29:e5:c3:81:7e:7b:9e:c5:91:f4:74:0f:c0:78:0b:
31:ee:19:18:6a:ae:10:54:da:c5:b5:16:84:77:ef:fc:f2:76:
c9:df:02:dd:84:48:65:fe:f0:58:c3:39:d2:37:56:1f:a9:e9:
3c:22:d2:22:82:b2:cc:ee:2c:3c:34:e8:b8:fc:ee:15:11:e5:
4c:a1:08:08:4b:f0:8f:ad:a6:67:e5:0f:5f:62:ec:12:5d:9f:
b4:2c:67:9b:d5:01:79:0a:f1:20:3c:0c:58:3d:18:9b:19:67:
e7:d5:eb:03
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIEAvwUDTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NzBlNTQ1MGQxNDg2NzgwYWJhNTRmMDQ1ZWM0ODAyZjE5ZjBiNGY3MB4XDTIyMDEw
MTE2MDMzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWUxMmE0Y2JhMzRj
ZGY3ODg0ODJlNTNmMzBlZTA4ZDdjYWFkZjY4ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL/o9OgZNHxtPNpCd+hzv579JarYwnuuH0CDvLtuUDq2QBI5
pTaw848yArLqWIXdAmhLOTYyuCcXgaTXLRYKKmlDa2NS1z27lDU4onEKIhzdI3hS
HoH6Miw9W6yLAUO5yRfJKPUoz8PKvHFcpC8CPgNSm1p63xpmtm6Sp5FvdLTAsiix
yYpyW6tkL/xyp5IVU5UuZ1lsYFLWvZ3EhVvNYryN6yJbfpJJSDImmdTDZzcRXt4w
T1ojk71DfaYl7H6RkE1PAG0BHBWr9ozkT7z6E9KMJLB4FHilSgNnZHgAVgZXZuHE
Whljpwyk53tNoiNnr/ORPNLmtJkxcIb655/LNWECAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBQeEqTLo0zfeISC5T8w7gjXyq32jzAfBgNVHSMEGDAWgBQ3DlRQ0UhngKul
TwRexIAvGfC09zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L053NVVVTkZJWjRDcnBVOEVYc1NBTHhud3RQYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWYvZjBmNzBjLTA2ZTctNDFhYy1hMmI4LTg1OGRjZTU3ZmNkYi8x
L0hoS2t5Nk5NMzNpRWd1VV9NTzRJMThxdDlvOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWYv
ZjBmNzBjLTA2ZTctNDFhYy1hMmI4LTg1OGRjZTU3ZmNkYi8xL053NVVVTkZJWjRD
cnBVOEVYc1NBTHhud3RQYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh
BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoORsMIMA0GCSqGSIb3DQEBCwUA
A4IBAQB3vXn89ZeKworYYu9iStz265nLkYKTQdaHyLwpagc9tofz1kE8IW5w4sQu
EvfPYk72ChJqOBAj+MoZcvGFS0jjTzJEfCcpA/G24/4BP4/OJfvl7ODEY4c/bOQz
HrDmAK9G4E3O24cVYN5RHpt9wqscG4+To/s0g1t+N01C+MSVT0XUokGwpXK7jEqb
6zjA/a0KZPQp5cOBfnuexZH0dA/AeAsx7hkYaq4QVNrFtRaEd+/88nbJ3wLdhEhl
/vBYwznSN1Yfqek8ItIigrLM7iw8NOi4/O4VEeVMoQgIS/CPraZn5Q9fYuwSXZ+0
LGeb1QF5CvEgPAxYPRibGWfn1esD
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:02:25 2025 by rpki-client