Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/_UhZOxspOG2Lw1fSvXJxR6QQOfw.roa
File: _UhZOxspOG2Lw1fSvXJxR6QQOfw.roa (raw, json)
Hash identifier: 4Zz1GfUZNOIUn0IETjluKDmkd2oDiCYjkMXWv5VVPXk=
Subject key identifier: FD:48:59:3B:1B:29:38:6D:8B:C3:57:D2:BD:72:71:47:A4:10:39:FC
Certificate issuer: /CN=0d722e4513a39678d8ab23b2d649775340518cb9
Certificate serial: 0191A4A0BAD2603E0ED13DBAE6711A7183C3
Authority key identifier: 0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/_UhZOxspOG2Lw1fSvXJxR6QQOfw.roa
Signing time: Fri 30 Aug 2024 18:51:22 +0000
ROA not before: Fri 30 Aug 2024 18:51:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 185.21.253.0/24 maxlen: 24
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:a4:a0:ba:d2:60:3e:0e:d1:3d:ba:e6:71:1a:71:83:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d722e4513a39678d8ab23b2d649775340518cb9
Validity
Not Before: Aug 30 18:51:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd48593b1b29386d8bc357d2bd727147a41039fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:f7:34:83:c8:30:04:c0:fa:56:e8:dc:14:7b:
3a:44:3c:9a:32:bd:61:60:f9:1a:99:84:71:30:12:
d7:11:4b:6d:cb:f2:b1:d7:8d:66:f9:1a:0e:3f:35:
e6:f1:f5:f1:c8:16:51:3b:67:f6:c4:a7:64:98:52:
bf:d6:79:70:de:58:a2:67:19:7b:3b:b0:b2:2a:7f:
df:52:94:59:dc:bd:c1:d1:e8:f1:44:f5:0a:87:ee:
7b:d5:3a:21:52:6c:5f:b0:d0:5c:46:0e:7b:93:51:
bd:c4:07:c7:53:af:ff:e2:35:39:47:80:7c:e3:62:
5d:33:4f:98:c1:2c:2f:25:f8:b3:7f:ba:44:41:e9:
bb:5b:15:8c:a1:c7:0f:ac:11:be:99:a2:27:02:4b:
a2:b9:2d:13:11:9d:2e:5a:75:03:49:94:37:52:76:
b4:a9:7f:e5:f2:bc:dd:2f:b3:a1:98:e1:b9:3f:82:
35:d0:8a:11:68:0f:13:04:1e:e2:bc:01:3a:b3:af:
36:b0:7e:f9:14:5d:5f:b5:ae:e5:74:e0:0a:45:eb:
35:f6:ca:e4:c4:c2:53:5d:47:af:92:c5:7a:d2:41:
2b:a2:53:aa:5a:24:01:62:25:5d:1c:aa:cf:78:09:
ae:dc:12:63:38:eb:8e:d0:1b:8b:ef:af:d3:62:aa:
46:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:48:59:3B:1B:29:38:6D:8B:C3:57:D2:BD:72:71:47:A4:10:39:FC
X509v3 Authority Key Identifier:
keyid:0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/_UhZOxspOG2Lw1fSvXJxR6QQOfw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/DXIuRROjlnjYqyOy1kl3U0BRjLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.21.253.0/24
Signature Algorithm: sha256WithRSAEncryption
21:6c:52:9b:fe:5a:13:dd:39:b8:44:19:6f:9e:32:e3:0a:dd:
62:51:1b:1f:11:8e:21:03:02:03:e2:e9:52:8c:95:86:ed:7e:
6a:d1:c9:35:26:55:df:be:62:09:cc:7f:ad:f1:ae:96:85:94:
25:b1:b1:c6:59:a5:7c:5e:e3:aa:85:dc:5d:62:bd:c1:90:87:
22:5d:8f:2d:96:a1:ab:fe:7b:4c:c2:67:7b:3e:48:3d:97:0e:
07:8f:fd:65:7c:16:ff:c4:65:61:af:b4:83:24:09:ae:97:88:
1a:70:37:9b:56:8d:44:70:7e:35:8f:33:81:68:6f:66:7b:b6:
c2:ad:f6:b5:89:da:ae:b8:be:ea:ef:f5:10:43:cd:69:89:18:
9d:8b:ac:b9:d1:50:ab:0d:a3:37:76:a4:03:7d:7f:b8:da:23:
89:6f:49:91:9d:40:49:61:25:b9:db:a3:b0:0d:a7:41:48:19:
49:39:ff:a5:08:e2:d5:cd:ae:cb:63:7d:f6:d1:b7:12:a1:17:
27:39:de:73:5f:fe:66:72:85:a4:d6:ef:5d:7f:8d:23:de:3c:
80:f9:be:f8:b4:2f:cf:7f:72:fd:94:f9:31:94:3a:08:bd:5f:
83:1c:e1:aa:db:14:f6:c2:72:d8:30:e9:ca:6e:08:d4:ff:5e:
cd:6c:a4:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 27 18:06:52 2024 by rpki-client on console.sobornost.net