Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/51519c-1e93-44a9-ac70-7e242674defc/1/DjnDIm09mMh-WCKFKusjZ-Jr9ck.roa
File: DjnDIm09mMh-WCKFKusjZ-Jr9ck.roa (raw, json)
Hash identifier: o8tD2p/pcUxUNMxIx4lTVYJJUVadhvddaxoXqzg6uMI=
Subject key identifier: 0E:39:C3:22:6D:3D:98:C8:7E:58:22:85:2A:EB:23:67:E2:6B:F5:C9
Certificate issuer: /CN=17b8beb555dafa82c3d6aa336909ae5ade35a83d
Certificate serial: 01926C00B936E26D69F8894BE88120B0B949
Authority key identifier: 17:B8:BE:B5:55:DA:FA:82:C3:D6:AA:33:69:09:AE:5A:DE:35:A8:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F7i-tVXa-oLD1qozaQmuWt41qD0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/51519c-1e93-44a9-ac70-7e242674defc/1/DjnDIm09mMh-WCKFKusjZ-Jr9ck.roa
Signing time: Tue 08 Oct 2024 12:00:39 +0000
ROA not before: Tue 08 Oct 2024 12:00:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199250
IP address blocks: 91.200.68.0/24 maxlen: 24
91.200.69.0/24 maxlen: 24
185.21.36.0/22 maxlen: 24
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:6c:00:b9:36:e2:6d:69:f8:89:4b:e8:81:20:b0:b9:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17b8beb555dafa82c3d6aa336909ae5ade35a83d
Validity
Not Before: Oct 8 12:00:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0e39c3226d3d98c87e5822852aeb2367e26bf5c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:c7:1c:1a:2e:7e:9b:81:38:3b:4b:c3:2e:11:
20:a9:d0:ed:82:f6:05:b2:1f:b0:ec:75:77:d8:35:
0a:4b:37:79:7f:b0:dc:38:a7:c0:a3:c8:45:c3:50:
e2:5c:01:9b:2d:05:aa:6e:9d:ab:8f:07:66:52:6a:
4b:65:0d:82:d2:9e:e5:6d:e8:4f:32:16:a1:f1:69:
a4:fd:11:1b:dd:09:55:3b:62:76:1f:0f:f5:a7:6f:
af:bb:4c:77:b2:f9:55:d2:1a:aa:ef:6f:4a:04:11:
3b:bc:e3:ec:ca:86:68:1b:e3:ca:cc:c6:c6:1f:ad:
f4:55:44:a0:5c:97:16:d7:77:e3:c7:eb:85:97:87:
04:3f:61:96:c3:32:21:af:21:10:5b:63:cd:c1:61:
fc:23:0b:76:d3:c7:7a:83:dd:4b:ca:c8:64:c5:71:
1f:ea:29:df:c8:b8:6c:d0:9b:4e:3a:13:47:42:94:
c9:bd:5d:96:68:5b:a1:5d:46:28:28:af:e2:e2:46:
23:30:66:ee:c2:ec:fe:f1:6e:99:b5:e9:b6:f8:53:
4a:e3:94:85:75:08:53:3f:d9:48:44:ee:d1:43:30:
52:38:9a:fb:e5:d7:c7:9a:a7:9f:55:ab:1d:3c:5f:
30:4b:d1:b8:59:6f:34:2b:a5:ff:ef:d1:15:57:f6:
fc:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:39:C3:22:6D:3D:98:C8:7E:58:22:85:2A:EB:23:67:E2:6B:F5:C9
X509v3 Authority Key Identifier:
keyid:17:B8:BE:B5:55:DA:FA:82:C3:D6:AA:33:69:09:AE:5A:DE:35:A8:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F7i-tVXa-oLD1qozaQmuWt41qD0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/51519c-1e93-44a9-ac70-7e242674defc/1/DjnDIm09mMh-WCKFKusjZ-Jr9ck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/51519c-1e93-44a9-ac70-7e242674defc/1/F7i-tVXa-oLD1qozaQmuWt41qD0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.68.0/23
185.21.36.0/22
Signature Algorithm: sha256WithRSAEncryption
91:41:18:29:ae:a7:79:f7:79:c6:c7:60:33:10:f7:a1:6c:4d:
e5:dd:c2:bf:f9:cd:9f:c7:98:4b:d6:bb:71:07:bb:92:fd:aa:
69:08:9e:c6:37:02:70:b7:b2:55:df:14:99:65:c1:c1:7e:00:
d0:37:c2:bc:d8:73:6d:20:07:33:24:6f:d3:70:af:dd:4b:8b:
a1:93:dc:6d:b6:5d:34:90:47:04:2c:e5:15:52:c0:05:a8:06:
16:35:ae:9c:37:83:03:cd:29:5b:b8:5b:0e:5d:5d:c1:2e:92:
b5:40:cb:02:94:00:da:ca:d6:ae:45:50:f8:15:42:2b:c7:e1:
f3:a1:65:e1:bb:67:0d:0f:54:b5:a6:63:7b:6b:33:fb:bf:f1:
e2:8d:81:34:7f:c5:d7:0c:26:ad:62:de:03:b9:34:69:4b:b9:
5b:eb:a1:88:e4:a3:1a:9c:80:81:6e:36:aa:61:c4:d9:82:b1:
04:b0:72:01:2c:bc:9e:dd:18:fd:6c:94:ad:48:93:81:81:d3:
3a:3e:92:17:6f:24:45:a8:f6:95:c3:71:a6:67:0a:af:dd:23:
34:ff:62:a6:8f:c0:d1:d0:6d:b3:a5:01:38:50:ff:89:f4:1c:
03:f0:97:58:3b:e5:2e:f4:01:af:ac:f6:e3:2a:18:fb:fb:b2:
c7:b5:09:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 20 23:05:47 2024 by rpki-client on console.sobornost.net