Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/8BbIN4K-G3q213ThQxq6SsV-zII.roa
File: 8BbIN4K-G3q213ThQxq6SsV-zII.roa (raw, json)
Hash identifier: yz1XGVvLNmTnr9l+eAHJeKz+OAHrBo+Tn4ZRlTihfPI=
Subject key identifier: F0:16:C8:37:82:BE:1B:7A:B6:D7:74:E1:43:1A:BA:4A:C5:7E:CC:82
Certificate issuer: /CN=88a8d325f97b03713342682fc408d53368740e7d
Certificate serial: 0191504B53A982579E9173B871D02032A52A
Authority key identifier: 88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/8BbIN4K-G3q213ThQxq6SsV-zII.roa
Signing time: Wed 14 Aug 2024 09:49:59 +0000
ROA not before: Wed 14 Aug 2024 09:49:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60895
IP address blocks: 185.23.112.0/22 maxlen: 22
185.23.112.0/23 maxlen: 23
185.23.112.0/24 maxlen: 24
185.23.113.0/24 maxlen: 24
185.23.114.0/23 maxlen: 23
185.23.114.0/24 maxlen: 24
185.23.115.0/24 maxlen: 24
2a00:6d20::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:50:4b:53:a9:82:57:9e:91:73:b8:71:d0:20:32:a5:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a8d325f97b03713342682fc408d53368740e7d
Validity
Not Before: Aug 14 09:49:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f016c83782be1b7ab6d774e1431aba4ac57ecc82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:1a:e7:02:5a:fc:ab:a2:21:f8:1c:17:c7:0c:
ff:f7:ee:43:92:fb:33:16:8d:60:d6:78:a7:de:cf:
be:12:15:73:06:f1:b3:1d:c8:fe:80:69:66:68:b6:
e3:a1:a6:9a:97:90:0e:ec:61:7b:81:6d:28:6f:65:
5b:fb:9b:f3:68:0a:5e:c2:e6:93:0f:01:29:38:c0:
25:38:09:60:97:a2:5c:3d:05:d9:0d:da:41:55:f7:
53:92:c1:52:db:f7:f1:2f:b7:bc:03:bb:23:d3:6f:
72:3a:84:2c:62:13:fc:4c:ea:39:30:ba:fc:d3:ee:
8f:92:dc:31:f4:9e:6a:28:b4:07:14:a1:6e:59:71:
be:b2:c6:bb:6b:50:65:38:5d:78:db:ba:d1:2e:02:
97:64:4f:09:61:b6:e0:39:e9:7c:6a:19:2a:a7:5d:
d7:4e:95:cd:5a:8b:b6:c4:91:fe:a2:fd:34:0c:94:
20:24:6c:53:89:de:7d:6d:ab:9d:82:35:7c:a2:b4:
37:21:79:14:43:3c:31:97:91:2b:31:80:25:c8:73:
01:86:12:89:4e:41:7e:15:fa:1a:3b:d0:12:fd:75:
38:bb:40:40:b3:b3:be:25:0d:05:5c:7d:f2:d1:22:
dc:a6:cc:02:b7:b0:66:92:c1:03:aa:39:b5:ab:7c:
ac:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:16:C8:37:82:BE:1B:7A:B6:D7:74:E1:43:1A:BA:4A:C5:7E:CC:82
X509v3 Authority Key Identifier:
keyid:88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/8BbIN4K-G3q213ThQxq6SsV-zII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.112.0/22
IPv6:
2a00:6d20::/32
Signature Algorithm: sha256WithRSAEncryption
16:d7:ae:fe:1c:90:22:6d:90:d5:a7:48:21:a1:c1:f9:d5:4b:
0b:a8:c2:57:bf:09:ca:0d:ac:8a:73:42:28:3a:a4:c7:f9:c7:
f7:1c:2a:34:ee:96:83:62:9d:15:53:a3:5e:19:d2:17:45:26:
f9:6c:fb:10:8d:16:2b:c3:1e:02:cb:5f:9e:6c:9a:62:c8:24:
56:0c:c2:88:95:3c:4a:d6:13:56:37:d3:a8:8c:11:a6:7f:52:
f3:43:e8:54:97:cd:7a:1d:d2:97:cc:0d:69:1b:85:4a:fd:63:
9a:4c:a5:15:01:74:1a:bf:d4:e5:6f:db:99:60:07:c3:ad:13:
d3:cc:69:3a:30:f7:20:69:ab:20:c2:cd:9f:f5:03:85:53:40:
18:10:1b:91:7a:19:ab:d0:36:d8:1c:55:bf:4a:f2:1a:ad:9a:
cb:99:db:a0:3d:9b:6c:13:c3:3d:a8:24:f7:a9:2a:35:00:b0:
05:53:91:c9:9e:2b:4a:d5:dc:95:ec:80:e4:a0:b5:d1:f6:52:
40:df:ae:5b:65:7d:bb:1e:4e:8a:25:e8:05:20:22:21:f9:85:
00:f7:df:44:4c:6a:a7:6c:95:2f:ae:22:31:cb:c3:03:7f:b3:
27:fb:d3:81:e4:d9:4f:57:94:a7:30:98:26:80:d8:50:1f:93:
60:2a:a3:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:43 2024 by rpki-client on console.sobornost.net