Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/8fdf6d-cba6-4494-9028-577e9935bd75/1/HitKNM-L-ZvYOdmFYw1MuommGPY.roa
File: HitKNM-L-ZvYOdmFYw1MuommGPY.roa (raw, json)
Hash identifier: DsKEHY1PappvIL1J0n5CAZBql/msN6zdRrI4G4Ofm3I=
Subject key identifier: 1E:2B:4A:34:CF:8B:F9:9B:D8:39:D9:85:63:0D:4C:BA:89:A6:18:F6
Certificate issuer: /CN=49f26233f5bb4226c2a7a7b9003008d19e34785b
Certificate serial: 029F174C
Authority key identifier: 49:F2:62:33:F5:BB:42:26:C2:A7:A7:B9:00:30:08:D1:9E:34:78:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SfJiM_W7QibCp6e5ADAI0Z40eFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/8fdf6d-cba6-4494-9028-577e9935bd75/1/HitKNM-L-ZvYOdmFYw1MuommGPY.roa
Signing time: Sat 01 Jan 2022 08:00:54 +0000
ROA not before: Sat 01 Jan 2022 08:00:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64482
IP address blocks: 185.216.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43980620 (0x29f174c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49f26233f5bb4226c2a7a7b9003008d19e34785b
Validity
Not Before: Jan 1 08:00:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e2b4a34cf8bf99bd839d985630d4cba89a618f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:cc:82:9d:9e:6f:cc:ce:32:c4:58:51:a9:cb:
4f:08:ba:fd:65:60:e7:bb:cf:92:29:00:3a:8a:4c:
a1:20:fc:bf:47:41:79:ae:0d:81:22:f1:65:40:26:
f9:fd:01:f1:a9:69:f8:c4:5f:03:28:98:86:b6:2e:
86:7b:b0:f7:a6:97:83:f0:b1:e6:dd:c3:61:f8:14:
e2:fb:20:7a:cf:71:df:22:ae:8a:77:7d:93:27:e5:
38:62:5d:de:53:5c:06:31:d0:81:d3:f3:ab:bd:c3:
ce:f5:52:a2:0b:c5:02:e7:7d:62:43:43:e9:87:68:
75:66:2d:f5:2b:f4:8a:57:a2:63:91:fa:a7:78:f6:
37:c8:c9:5d:aa:de:5a:40:4a:f7:fa:eb:da:39:b2:
ad:e4:be:43:3f:d9:ab:65:8d:96:71:a5:bd:b7:c7:
ad:5f:a8:a0:2a:00:5c:c3:6f:92:4f:c4:eb:dc:17:
ff:8e:55:09:7d:dd:fa:ee:c0:2d:19:d5:29:64:41:
33:3b:ed:0f:a4:57:0b:97:5b:3b:53:1b:ed:1a:90:
2a:8e:a7:ae:6e:89:d6:df:98:ea:37:d8:0d:bb:32:
ea:ed:15:6d:06:1c:b3:da:48:1b:0b:28:90:fa:fc:
1a:00:23:5a:50:aa:5b:63:58:91:63:88:82:07:53:
9a:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:2B:4A:34:CF:8B:F9:9B:D8:39:D9:85:63:0D:4C:BA:89:A6:18:F6
X509v3 Authority Key Identifier:
keyid:49:F2:62:33:F5:BB:42:26:C2:A7:A7:B9:00:30:08:D1:9E:34:78:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SfJiM_W7QibCp6e5ADAI0Z40eFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8fdf6d-cba6-4494-9028-577e9935bd75/1/HitKNM-L-ZvYOdmFYw1MuommGPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8fdf6d-cba6-4494-9028-577e9935bd75/1/SfJiM_W7QibCp6e5ADAI0Z40eFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.10.0/24
Signature Algorithm: sha256WithRSAEncryption
93:c2:7e:82:e2:ac:fd:ae:d6:d4:0f:90:2d:e5:d6:0c:04:a7:
fe:6d:07:c2:4b:a9:73:e4:0c:8c:5b:30:74:b4:3a:23:c7:7b:
29:55:b1:18:5a:ad:38:57:fb:ab:13:82:1e:1d:5a:61:6c:62:
35:a7:6a:f6:1f:d1:e2:63:a1:32:a3:8c:d5:05:74:cf:d2:45:
2f:a1:7a:0b:e8:c6:59:6e:32:1b:03:38:28:2c:fc:09:c0:a0:
d9:7b:e4:f9:ec:e9:cd:cd:c9:8e:64:ce:91:62:9b:0b:ee:be:
79:29:4d:3b:c8:e7:21:45:20:30:ce:b6:c8:63:e5:52:b2:92:
74:e7:64:82:b4:1e:84:52:7d:d7:f1:fb:e9:5e:c3:99:0f:51:
79:1f:11:c8:1e:66:3c:61:be:6f:60:e4:16:8d:c4:d9:b0:29:
ed:13:b8:76:17:50:bf:20:77:ef:4e:ec:36:9a:98:fc:34:c7:
79:1e:49:84:cb:e3:16:ba:80:e7:d6:d0:84:72:b0:73:2b:02:
00:89:4e:41:ea:89:db:f3:7a:12:ad:1c:26:e0:8f:70:72:e5:
e1:53:51:98:69:2e:82:5d:e2:80:8e:af:51:2f:0c:56:b8:f7:
5b:af:36:e7:41:e3:52:d9:5f:aa:90:ea:47:da:a7:30:15:16:
2b:c2:f5:56
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAp8XTDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
OWYyNjIzM2Y1YmI0MjI2YzJhN2E3YjkwMDMwMDhkMTllMzQ3ODViMB4XDTIyMDEw
MTA4MDA1NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWUyYjRhMzRjZjhi
Zjk5YmQ4MzlkOTg1NjMwZDRjYmE4OWE2MThmNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANTMgp2eb8zOMsRYUanLTwi6/WVg57vPkikAOopMoSD8v0dB
ea4NgSLxZUAm+f0B8alp+MRfAyiYhrYuhnuw96aXg/Cx5t3DYfgU4vsges9x3yKu
ind9kyflOGJd3lNcBjHQgdPzq73DzvVSogvFAud9YkND6YdodWYt9Sv0ileiY5H6
p3j2N8jJXareWkBK9/rr2jmyreS+Qz/Zq2WNlnGlvbfHrV+ooCoAXMNvkk/E69wX
/45VCX3d+u7ALRnVKWRBMzvtD6RXC5dbO1Mb7RqQKo6nrm6J1t+Y6jfYDbsy6u0V
bQYcs9pIGwsokPr8GgAjWlCqW2NYkWOIggdTmukCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQeK0o0z4v5m9g52YVjDUy6iaYY9jAfBgNVHSMEGDAWgBRJ8mIz9btCJsKn
p7kAMAjRnjR4WzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1NmSmlNX1c3UWliQ3A2ZTVBREFJMFo0MGVGcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjMvOGZkZjZkLWNiYTYtNDQ5NC05MDI4LTU3N2U5OTM1YmQ3NS8x
L0hpdEtOTS1MLVp2WU9kbUZZdzFNdW9tbUdQWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjMv
OGZkZjZkLWNiYTYtNDQ5NC05MDI4LTU3N2U5OTM1YmQ3NS8xL1NmSmlNX1c3UWli
Q3A2ZTVBREFJMFo0MGVGcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnYCjANBgkqhkiG9w0BAQsFAAOC
AQEAk8J+guKs/a7W1A+QLeXWDASn/m0Hwkupc+QMjFswdLQ6I8d7KVWxGFqtOFf7
qxOCHh1aYWxiNadq9h/R4mOhMqOM1QV0z9JFL6F6C+jGWW4yGwM4KCz8CcCg2Xvk
+ezpzc3JjmTOkWKbC+6+eSlNO8jnIUUgMM62yGPlUrKSdOdkgrQehFJ91/H76V7D
mQ9ReR8RyB5mPGG+b2DkFo3E2bAp7RO4dhdQvyB3707sNpqY/DTHeR5JhMvjFrqA
59bQhHKwcysCAIlOQeqJ2/N6Eq0cJuCPcHLl4VNRmGkugl3igI6vUS8MVrj3W682
50HjUtlfqpDqR9qnMBUWK8L1Vg==
-----END CERTIFICATE-----
Generated at Mon Apr 21 19:25:36 2025 by rpki-client