Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/1cbc1e-4d46-4b5b-b249-3208de39c09d/1/HryLvIic_2fqa_vR5hq_O6ycpoE.roa
File: HryLvIic_2fqa_vR5hq_O6ycpoE.roa (raw, json)
Hash identifier: 8YQWG7vCnKXaanBa/peYds4JLQyO9smqODSIDq+FENM=
Subject key identifier: 1E:BC:8B:BC:88:9C:FF:67:EA:6B:FB:D1:E6:1A:BF:3B:AC:9C:A6:81
Certificate issuer: /CN=96e6f77cbda101987d9dfc84be90b6fba66adc9f
Certificate serial: 038B699E
Authority key identifier: 96:E6:F7:7C:BD:A1:01:98:7D:9D:FC:84:BE:90:B6:FB:A6:6A:DC:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lub3fL2hAZh9nfyEvpC2-6Zq3J8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/1cbc1e-4d46-4b5b-b249-3208de39c09d/1/HryLvIic_2fqa_vR5hq_O6ycpoE.roa
Signing time: Sat 01 Jan 2022 05:02:53 +0000
ROA not before: Sat 01 Jan 2022 05:02:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212263
IP address blocks: 185.222.21.0/24 maxlen: 24
2a10:f300::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59468190 (0x38b699e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96e6f77cbda101987d9dfc84be90b6fba66adc9f
Validity
Not Before: Jan 1 05:02:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ebc8bbc889cff67ea6bfbd1e61abf3bac9ca681
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:62:be:5a:99:16:9b:13:f8:a5:e4:71:64:d1:
5b:66:6d:68:97:6e:63:f8:a8:8a:14:0e:69:6d:48:
ed:da:b5:bc:c8:3f:63:0a:d7:5e:b1:a4:f5:b6:30:
ea:3f:48:24:94:46:ae:fd:f8:87:20:1a:98:46:11:
31:71:e4:55:8c:78:09:91:ab:3d:a8:58:f6:68:ae:
23:00:84:db:d2:07:47:c8:45:66:b9:0a:e7:5d:e5:
ae:40:dc:e2:43:27:96:91:d3:bf:03:dc:32:93:14:
71:9e:2e:8c:33:eb:38:38:81:48:6f:c5:6b:52:27:
51:3f:77:96:8a:a1:14:71:b3:21:f2:4e:19:c4:d4:
dd:3e:0c:73:a2:b1:8f:3f:77:e1:f3:51:77:95:2d:
43:71:0e:6d:0d:4e:42:52:3a:4a:ea:03:9f:29:e8:
14:47:03:02:46:f3:71:a3:e0:d5:32:a4:39:a1:7c:
bd:8a:d2:7c:df:34:d7:e0:fa:14:61:16:10:ae:69:
df:72:fc:9a:59:6a:8d:ed:66:63:07:fe:cd:8f:dd:
39:df:05:ce:75:13:32:ca:b3:17:33:fd:13:22:cd:
f0:df:3f:a2:a5:df:ba:24:77:f4:35:2c:57:5c:00:
19:45:4e:ea:d9:60:5f:5f:76:d7:10:2a:b4:19:bb:
a9:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:BC:8B:BC:88:9C:FF:67:EA:6B:FB:D1:E6:1A:BF:3B:AC:9C:A6:81
X509v3 Authority Key Identifier:
keyid:96:E6:F7:7C:BD:A1:01:98:7D:9D:FC:84:BE:90:B6:FB:A6:6A:DC:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lub3fL2hAZh9nfyEvpC2-6Zq3J8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/1cbc1e-4d46-4b5b-b249-3208de39c09d/1/HryLvIic_2fqa_vR5hq_O6ycpoE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/1cbc1e-4d46-4b5b-b249-3208de39c09d/1/lub3fL2hAZh9nfyEvpC2-6Zq3J8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.21.0/24
IPv6:
2a10:f300::/29
Signature Algorithm: sha256WithRSAEncryption
22:d9:a9:0f:63:5f:c0:ce:d9:5d:89:22:e3:fb:b1:09:c4:a6:
31:37:96:18:43:c5:29:0e:91:86:a4:a2:4d:1e:8c:0d:a3:da:
89:27:ba:d1:e3:f1:26:cc:ce:e0:fd:05:4d:48:63:8a:f6:35:
06:ce:d7:e8:6f:78:6e:2e:6d:fc:47:12:e0:45:32:fe:51:2c:
da:9a:32:6e:52:d8:13:8c:52:75:05:41:df:b4:9f:36:64:46:
bc:0e:d4:76:60:6c:26:59:2c:d4:6a:6d:49:9b:87:64:91:fe:
34:10:7f:d2:5a:c2:95:18:e7:0d:16:fa:82:99:c3:de:df:ff:
21:25:9d:83:2a:df:ff:1a:9e:bf:86:e8:e7:94:90:67:a1:8c:
eb:a8:5e:88:0c:46:0c:20:eb:7f:47:07:d1:f3:03:0a:0d:37:
eb:18:00:80:5e:11:d4:4f:cd:78:2c:a1:5b:1c:9f:1f:03:a3:
6f:09:dc:1d:f3:33:0b:4a:bf:c6:ed:2d:5a:b5:dc:74:09:5a:
f3:0f:af:e1:7a:da:53:15:40:c2:48:f5:fe:e6:a0:ae:c1:2a:
9d:40:a1:2c:58:c7:63:7d:c5:cd:61:bf:3f:8b:82:86:a6:92:
ac:aa:9b:5a:9d:e2:f6:ca:cc:48:ce:b4:76:a3:9c:d1:1c:50:
2b:c4:54:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:04 2024 by rpki-client on console-fra.rpki-client.org