Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/HmbX3OhK6KVXtpvWTyYEhoiJIPI.roa
File: HmbX3OhK6KVXtpvWTyYEhoiJIPI.roa (raw, json)
Hash identifier: MifbC1jxQDTX3eqlJ8qf8QBttzEypFPX/n6QOPJT47Y=
Subject key identifier: 1E:66:D7:DC:E8:4A:E8:A5:57:B6:9B:D6:4F:26:04:86:88:89:20:F2
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 08D160B9
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/HmbX3OhK6KVXtpvWTyYEhoiJIPI.roa
Signing time: Tue 01 Mar 2022 08:04:02 +0000
ROA not before: Tue 01 Mar 2022 08:04:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48528
IP address blocks: 212.22.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147939513 (0x8d160b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Mar 1 08:04:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e66d7dce84ae8a557b69bd64f260486888920f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:3c:5b:6d:48:5a:26:cd:08:f4:00:c4:f0:40:
ae:31:32:3c:35:64:30:50:bc:0e:fb:80:c9:ba:a3:
a3:d9:62:03:35:9e:f9:c7:c7:a8:05:48:8a:3d:57:
ac:2a:bb:35:2d:e2:84:a7:ed:d1:57:76:ec:7f:20:
50:97:ff:22:6a:c4:f3:dd:e9:21:a4:2e:70:4a:a5:
63:e1:83:5e:20:70:79:84:1b:52:3c:6f:bb:35:b2:
d1:d8:06:06:61:de:0a:36:87:f4:30:31:75:1c:4a:
d8:6b:69:78:16:c0:c0:64:7b:03:22:c7:10:bb:72:
59:1d:98:d2:07:14:29:7d:0c:eb:3a:fa:eb:21:e6:
33:5c:f2:e3:4d:84:a5:49:a1:57:09:33:6b:ad:5b:
74:be:51:85:4b:49:01:0c:e6:b9:30:94:7f:25:a6:
69:f7:6d:6a:dc:e1:7b:7a:fd:2c:d3:ef:93:3b:95:
c6:b0:ef:60:af:3a:06:d7:87:90:63:da:d5:81:a1:
cd:2b:1e:24:98:2b:b5:f0:1a:5d:51:01:72:e0:9b:
cd:5c:9f:97:c5:b4:6f:68:1f:fa:15:d4:9b:8e:55:
4c:4a:7e:e2:7a:b4:ed:dc:5b:bd:6a:41:fc:5b:94:
97:5d:c1:8c:a5:24:88:a2:4c:9f:fc:55:0b:0f:0b:
d1:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:66:D7:DC:E8:4A:E8:A5:57:B6:9B:D6:4F:26:04:86:88:89:20:F2
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/HmbX3OhK6KVXtpvWTyYEhoiJIPI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.22.71.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:38:32:2d:5d:40:5b:7b:cc:71:00:a6:de:8d:98:b3:9c:24:
01:27:29:77:6f:23:b8:de:6a:61:64:3a:d9:69:43:ff:71:71:
74:d2:ee:57:2c:ea:a1:e8:55:df:f6:35:63:ff:19:a7:8d:31:
11:5b:cb:b2:67:bf:8f:ad:76:e7:93:49:86:19:d6:cc:15:9d:
93:a4:0a:30:89:2f:b1:fb:8e:5a:7c:29:5c:60:9d:74:45:6c:
89:ae:99:44:11:0a:2f:43:b9:b3:92:96:61:8b:65:05:a0:ec:
35:67:ac:3f:7d:e0:40:80:d4:0e:5f:ec:e4:53:d7:4c:71:d8:
f3:2a:86:21:aa:f4:f3:92:f4:1e:5c:e3:64:2a:ad:63:58:e2:
ef:6c:0a:8f:5f:fe:ec:5a:f5:5a:16:5c:31:0d:a9:95:ec:ea:
9a:ae:e7:06:e1:6c:30:f2:19:11:12:0a:7c:69:9d:1c:63:35:
a2:e9:5b:58:3f:1b:a0:fa:16:0a:f4:3a:5e:c3:0d:1b:26:0c:
6c:b1:a4:a9:97:97:b0:bd:34:e4:0b:89:24:16:1a:6a:69:64:
e9:95:13:f2:b1:cb:2a:68:3c:7a:d5:2d:ee:52:d5:33:4e:19:
af:31:7c:08:05:2e:de:1a:27:24:c5:08:44:8b:a5:6a:60:33:
bb:9f:89:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:44 2023 by rpki-client on console-ams.rpki-client.org