Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/308589-92fe-4593-93e4-2d0a78be892d/1/LX6RzDwsil3DxWhdrnbNd2bQ_e0.roa
File: LX6RzDwsil3DxWhdrnbNd2bQ_e0.roa (raw, json)
Hash identifier: S1u1SWbq/1m2qX977hSbg4DCaDdpxZXLqq3Ejc/vaKY=
Subject key identifier: 2D:7E:91:CC:3C:2C:8A:5D:C3:C5:68:5D:AE:76:CD:77:66:D0:FD:ED
Certificate issuer: /CN=dd3d4011175e5df7a3f57d38e78150a2c05fdd1d
Certificate serial: 0191229B8B725C64F8A6260699622BAEAA64
Authority key identifier: DD:3D:40:11:17:5E:5D:F7:A3:F5:7D:38:E7:81:50:A2:C0:5F:DD:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3T1AERdeXfej9X0454FQosBf3R0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/308589-92fe-4593-93e4-2d0a78be892d/1/LX6RzDwsil3DxWhdrnbNd2bQ_e0.roa
Signing time: Mon 05 Aug 2024 12:55:04 +0000
ROA not before: Mon 05 Aug 2024 12:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206805
IP address blocks: 45.84.152.0/23 maxlen: 24
45.84.154.0/24 maxlen: 24
45.84.155.0/24 maxlen: 24
45.145.188.0/23 maxlen: 23
45.145.190.0/23 maxlen: 23
45.145.190.0/24 maxlen: 24
45.145.191.0/24 maxlen: 24
80.85.248.0/23 maxlen: 23
80.85.250.0/23 maxlen: 23
80.85.252.0/24 maxlen: 24
80.85.253.0/24 maxlen: 24
80.85.254.0/23 maxlen: 24
178.159.32.0/23 maxlen: 24
185.159.111.0/24 maxlen: 24
185.228.48.0/22 maxlen: 24
185.247.192.0/22 maxlen: 24
188.64.149.0/24 maxlen: 24
188.64.150.0/23 maxlen: 24
193.19.100.0/23 maxlen: 24
193.246.144.0/24 maxlen: 24
193.246.159.0/24 maxlen: 24
2a0c:ee00::/40 maxlen: 40
2a0c:ee00:100::/40 maxlen: 40
2a0c:ee00:200::/40 maxlen: 40
2a0c:ee00:20c::/48 maxlen: 48
2a0c:ee00:300::/40 maxlen: 40
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:22:9b:8b:72:5c:64:f8:a6:26:06:99:62:2b:ae:aa:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd3d4011175e5df7a3f57d38e78150a2c05fdd1d
Validity
Not Before: Aug 5 12:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2d7e91cc3c2c8a5dc3c5685dae76cd7766d0fded
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:52:2e:09:7e:9e:f5:25:93:04:af:9f:de:a6:
c7:fb:a5:32:16:b5:f6:2a:77:a7:27:9d:90:48:be:
4a:ff:62:46:5c:fb:45:44:87:9e:46:1b:bd:ed:c9:
8d:66:7c:91:4f:5a:1a:82:53:02:c0:ae:8d:0c:db:
16:e9:7d:e4:c1:67:24:ca:3a:d2:77:64:d1:fa:3c:
06:ca:30:4a:62:47:ae:ae:b4:62:a0:6e:3f:0e:39:
49:36:5d:cd:90:17:73:d4:87:3c:70:ac:5d:fa:13:
0e:c4:0b:04:f3:8a:98:df:8f:ac:ca:89:0e:b6:a5:
09:0a:eb:dc:0f:f0:b5:16:09:94:d4:03:ea:2d:33:
fb:7f:24:c0:0e:04:8a:7c:05:85:48:25:12:3a:ca:
41:e1:1a:5c:6c:57:2a:41:31:2b:b7:cb:91:b6:64:
07:51:2f:84:76:da:15:cf:ea:c9:46:7f:3c:c3:92:
b7:aa:66:14:48:55:a3:c1:29:6b:61:1b:ea:00:94:
4a:ee:23:21:ec:c4:06:93:b7:fd:ac:f3:27:ba:29:
f4:48:d7:7a:ae:91:0f:5d:ea:d6:5b:bf:a6:f0:56:
33:87:e7:37:55:24:7a:d8:1a:4e:e6:53:27:39:07:
ef:40:ae:40:38:14:39:c4:df:2c:b4:99:83:2c:14:
36:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:7E:91:CC:3C:2C:8A:5D:C3:C5:68:5D:AE:76:CD:77:66:D0:FD:ED
X509v3 Authority Key Identifier:
keyid:DD:3D:40:11:17:5E:5D:F7:A3:F5:7D:38:E7:81:50:A2:C0:5F:DD:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3T1AERdeXfej9X0454FQosBf3R0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/308589-92fe-4593-93e4-2d0a78be892d/1/LX6RzDwsil3DxWhdrnbNd2bQ_e0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/308589-92fe-4593-93e4-2d0a78be892d/1/3T1AERdeXfej9X0454FQosBf3R0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.152.0/22
45.145.188.0/22
80.85.248.0/21
178.159.32.0/23
185.159.111.0/24
185.228.48.0/22
185.247.192.0/22
188.64.149.0-188.64.151.255
193.19.100.0/23
193.246.144.0/24
193.246.159.0/24
IPv6:
2a0c:ee00::/38
Signature Algorithm: sha256WithRSAEncryption
59:50:54:6d:bb:43:c6:70:bd:f1:30:97:0e:25:13:94:c8:48:
f9:c8:ee:41:87:42:a7:27:23:6e:15:0a:04:6c:d9:6d:e3:3d:
0b:e1:4a:d0:26:b0:d2:9b:bd:42:8d:22:64:47:d8:f3:37:7d:
23:fe:13:fb:8f:80:fc:67:02:bb:ed:1c:ef:41:b7:1d:aa:b1:
74:73:63:af:a0:45:1c:44:1b:f6:c8:16:79:3b:8d:54:25:d0:
20:3e:34:83:ec:07:b6:c8:1c:44:c2:5b:5f:f6:cb:de:a0:69:
52:5f:a1:9d:ca:32:9c:d7:2e:d4:0a:42:eb:7a:0e:31:c3:16:
43:28:ac:d3:b9:c5:db:95:66:2c:98:b9:b7:9f:a0:27:82:13:
e4:2e:8b:26:1f:98:e8:5c:cb:21:86:aa:7b:e3:48:54:7c:2c:
00:5d:70:a0:54:38:b6:a5:24:09:3c:d1:73:cd:ec:2f:79:70:
94:15:30:2e:2d:01:ec:63:c0:5a:a3:fd:d8:31:62:75:62:62:
18:14:a5:5b:58:48:8e:e9:d9:4e:4a:9a:6e:4a:05:5a:2c:4f:
7f:0a:9e:1b:63:85:3f:d1:a3:ff:5c:83:0e:d4:96:11:f1:42:
c2:06:ae:88:f8:4f:a9:f0:58:60:ab:bb:41:e1:79:16:5c:56:
ac:b8:ed:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 7 07:55:01 2024 by rpki-client on console.sobornost.net