Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/HYRO_JTLBKPmbjbdalPdFmgsXYA.roa
File: HYRO_JTLBKPmbjbdalPdFmgsXYA.roa (raw, json)
Hash identifier: EuvxnOWcG7F8bZ3F1E3Hq4CCpEPNWd/0Lk/5zHc0JGo=
Subject key identifier: 1D:84:4E:FC:94:CB:04:A3:E6:6E:36:DD:6A:53:DD:16:68:2C:5D:80
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 1D2F1646
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/HYRO_JTLBKPmbjbdalPdFmgsXYA.roa
Signing time: Sat 21 May 2022 10:21:28 +0000
ROA not before: Sat 21 May 2022 10:21:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 89.185.24.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 489625158 (0x1d2f1646)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: May 21 10:21:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d844efc94cb04a3e66e36dd6a53dd16682c5d80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:bc:e4:ff:8b:0e:c1:7e:9b:bf:4c:70:92:5d:
d7:09:40:77:56:ee:1d:a1:77:73:e1:b0:45:29:8b:
41:f7:ff:30:6e:4a:a2:ea:3b:6f:b3:99:e2:3f:ad:
78:62:c3:d0:b1:a5:1d:48:2c:aa:b3:90:f0:33:58:
0c:50:30:75:c0:db:2c:0f:4b:4f:ac:3f:19:6a:86:
ad:5e:d3:73:91:1f:eb:42:47:dd:19:40:3c:81:f3:
5e:55:69:a2:6e:82:08:15:c2:08:09:62:5c:2f:80:
10:6a:68:a5:e0:11:b0:b2:14:0b:e8:09:65:4e:55:
76:69:8a:a2:99:21:c8:f8:42:cc:bf:28:9b:27:3b:
8a:2a:53:8f:51:07:12:26:03:03:9d:73:69:b0:1e:
7b:9e:69:6a:af:ea:db:d5:04:d5:93:57:bd:b8:a2:
c3:3a:18:ce:93:4c:84:e9:3e:8b:1c:81:7c:95:3d:
d3:7a:aa:a2:46:91:9c:eb:fc:84:2a:68:e1:29:f1:
35:f8:a3:84:7d:60:c3:43:fa:68:1b:17:4f:41:27:
99:7e:c3:cd:83:0e:24:f8:b9:0b:25:73:d7:42:5c:
ea:7b:c2:6d:4a:d6:43:34:70:57:1e:d2:35:26:b4:
ed:85:55:45:fb:e5:37:23:95:da:6a:9e:51:c3:36:
a1:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:84:4E:FC:94:CB:04:A3:E6:6E:36:DD:6A:53:DD:16:68:2C:5D:80
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/HYRO_JTLBKPmbjbdalPdFmgsXYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.24.0/21
Signature Algorithm: sha256WithRSAEncryption
71:60:ac:11:cb:86:7e:d2:5b:e8:c5:79:cc:fe:08:b1:89:de:
d2:2b:fd:6e:28:8f:54:41:70:41:96:bc:24:78:03:27:df:3c:
dd:a6:06:00:cd:ba:58:cf:56:c5:33:a0:f1:c4:df:dd:11:a2:
26:85:bd:40:66:bf:08:ee:96:ed:67:d1:c3:e8:9e:c5:cb:61:
6a:68:9e:dc:a5:bd:8f:6c:bf:f9:e1:98:c4:1f:fa:e6:9b:b7:
97:db:2c:ae:01:9e:0f:0b:8a:f9:88:62:e0:1e:d7:ae:bb:c8:
4c:7f:06:d9:6d:ef:31:7e:50:6d:29:aa:f2:07:99:d7:02:97:
84:be:a5:64:a8:6f:96:1f:73:3f:fb:c5:db:78:02:60:4b:62:
a8:aa:09:24:79:cb:6f:77:f0:ba:eb:1c:da:14:5b:3b:db:1b:
f7:ff:2f:09:69:ec:a6:83:44:a9:96:f3:c5:30:3f:6d:1d:50:
af:f5:c1:bc:f0:09:81:02:cf:33:3a:ec:6e:52:2c:fc:2d:47:
b2:73:c5:1d:31:bd:35:21:7c:f4:79:ff:c4:a9:dc:66:0c:bf:
89:cd:bb:3e:f3:3a:19:64:d6:4b:b5:d7:6e:0f:c5:a2:73:a4:
57:62:67:1b:06:c2:bf:6d:4a:71:38:eb:52:a5:38:00:1e:12:
00:dd:e9:a8
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEHS8WRjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ODJjZjgwOWMwZTNlOGU1NTUyZjlkMGRkMmUyN2UwZGQyZDhkYWJlMB4XDTIyMDUy
MTEwMjEyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWQ4NDRlZmM5NGNi
MDRhM2U2NmUzNmRkNmE1M2RkMTY2ODJjNWQ4MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALS85P+LDsF+m79McJJd1wlAd1buHaF3c+GwRSmLQff/MG5K
ouo7b7OZ4j+teGLD0LGlHUgsqrOQ8DNYDFAwdcDbLA9LT6w/GWqGrV7Tc5Ef60JH
3RlAPIHzXlVpom6CCBXCCAliXC+AEGpopeARsLIUC+gJZU5VdmmKopkhyPhCzL8o
myc7iipTj1EHEiYDA51zabAee55paq/q29UE1ZNXvbiiwzoYzpNMhOk+ixyBfJU9
03qqokaRnOv8hCpo4SnxNfijhH1gw0P6aBsXT0EnmX7DzYMOJPi5CyVz10Jc6nvC
bUrWQzRwVx7SNSa07YVVRfvlNyOV2mqeUcM2oW0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQdhE78lMsEo+ZuNt1qU90WaCxdgDAfBgNVHSMEGDAWgBSYLPgJwOPo5VUv
nQ3S4n4N0tjavjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L21DejRDY0RqNk9WVkw1ME4wdUotRGRMWTJyNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2QvNjE2OGQ3LTk0NmMtNDU3NC05MWVhLTgyYWQxNDU1NWVhYS8x
L0hZUk9fSlRMQktQbWJqYmRhbFBkRm1nc1hZQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Qv
NjE2OGQ3LTk0NmMtNDU3NC05MWVhLTgyYWQxNDU1NWVhYS8xL21DejRDY0RqNk9W
Vkw1ME4wdUotRGRMWTJyNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA1m5GDANBgkqhkiG9w0BAQsFAAOC
AQEAcWCsEcuGftJb6MV5zP4IsYne0iv9biiPVEFwQZa8JHgDJ9883aYGAM26WM9W
xTOg8cTf3RGiJoW9QGa/CO6W7WfRw+iexcthamie3KW9j2y/+eGYxB/65pu3l9ss
rgGeDwuK+Yhi4B7XrrvITH8G2W3vMX5QbSmq8geZ1wKXhL6lZKhvlh9zP/vF23gC
YEtiqKoJJHnLb3fwuusc2hRbO9sb9/8vCWnspoNEqZbzxTA/bR1Qr/XBvPAJgQLP
MzrsblIs/C1HsnPFHTG9NSF89Hn/xKncZgy/ic27PvM6GWTWS7XXbg/FonOkV2Jn
GwbCv21KcTjrUqU4AB4SAN3pqA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:45 2024 by rpki-client on console-ams.rpki-client.org