Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/fd3630-6c71-4bed-966a-ae7d4c7538ad/1/8Zb325jgKQuv210wr32Yhh7oe_U.roa
File: 8Zb325jgKQuv210wr32Yhh7oe_U.roa (raw, json)
Hash identifier: 3U15QNc/0eAZRGibGo4m82B+IkZdMMYqy4aRz1NGTJY=
Subject key identifier: F1:96:F7:DB:98:E0:29:0B:AF:DB:5D:30:AF:7D:98:86:1E:E8:7B:F5
Certificate issuer: /CN=d53f6b9ad30b6555fa5a54e7eb152b2bf412f226
Certificate serial: 01934404DECA07DBABD6811BF8EE71B4A826
Authority key identifier: D5:3F:6B:9A:D3:0B:65:55:FA:5A:54:E7:EB:15:2B:2B:F4:12:F2:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1T9rmtMLZVX6WlTn6xUrK_QS8iY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/fd3630-6c71-4bed-966a-ae7d4c7538ad/1/8Zb325jgKQuv210wr32Yhh7oe_U.roa
Signing time: Tue 19 Nov 2024 10:43:10 +0000
ROA not before: Tue 19 Nov 2024 10:43:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212555
IP address blocks: 45.158.105.0/24 maxlen: 24
45.158.106.0/24 maxlen: 24
45.158.107.0/24 maxlen: 24
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:44:04:de:ca:07:db:ab:d6:81:1b:f8:ee:71:b4:a8:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d53f6b9ad30b6555fa5a54e7eb152b2bf412f226
Validity
Not Before: Nov 19 10:43:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f196f7db98e0290bafdb5d30af7d98861ee87bf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:f9:89:78:ae:89:b6:78:ef:4f:f5:ce:9e:85:
ce:ba:1f:b8:ec:3a:40:3f:3d:cb:00:27:3d:37:8d:
5c:9a:fd:91:3f:ea:e0:1a:40:62:1e:a2:c0:aa:5b:
8a:9a:52:72:a7:66:58:3d:ff:f3:fa:94:a9:82:71:
8c:54:e2:df:d3:91:2b:da:95:da:fe:ac:01:f1:46:
fd:3f:9c:b8:64:7b:23:17:68:eb:e8:19:b3:40:81:
66:96:89:f9:09:b5:24:f6:09:29:20:3c:f4:aa:6c:
d8:fb:73:ec:99:6b:42:57:ef:e5:cb:7f:32:c0:89:
93:8a:32:f0:d0:bf:87:80:44:8a:54:e8:50:eb:f7:
fb:4c:fb:aa:9c:8b:44:6f:41:41:21:25:3f:57:00:
5a:62:18:d7:35:32:fd:1a:c2:b1:4f:4c:ec:a4:f2:
45:bd:53:69:09:41:e1:1e:f1:54:d2:7d:07:89:df:
88:44:ed:2d:00:4f:74:cf:16:d0:03:e6:11:be:fa:
c5:85:27:e2:ab:36:4f:4a:2d:2d:92:1b:c9:64:88:
2d:ac:1a:c2:91:8f:e0:b1:cd:9c:fe:c4:c5:c3:fa:
63:1f:6a:01:01:4b:44:62:f7:ce:8d:e2:ed:3a:31:
c7:c0:57:0e:0f:c3:db:18:13:9f:28:c0:fb:d4:14:
a9:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:96:F7:DB:98:E0:29:0B:AF:DB:5D:30:AF:7D:98:86:1E:E8:7B:F5
X509v3 Authority Key Identifier:
keyid:D5:3F:6B:9A:D3:0B:65:55:FA:5A:54:E7:EB:15:2B:2B:F4:12:F2:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1T9rmtMLZVX6WlTn6xUrK_QS8iY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/fd3630-6c71-4bed-966a-ae7d4c7538ad/1/8Zb325jgKQuv210wr32Yhh7oe_U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/fd3630-6c71-4bed-966a-ae7d4c7538ad/1/1T9rmtMLZVX6WlTn6xUrK_QS8iY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.105.0-45.158.107.255
Signature Algorithm: sha256WithRSAEncryption
1a:56:98:bd:1d:a8:05:d9:99:9a:83:b4:2e:11:84:cd:5a:ae:
b9:52:e1:6b:44:bb:40:61:44:e4:ba:8c:63:27:3e:6d:fe:9e:
ba:69:51:d4:62:b1:33:42:cd:b8:1e:db:2b:da:4d:29:d9:b7:
07:da:a4:af:0f:57:2e:dc:8a:f2:ff:cf:89:96:3a:92:90:27:
8b:c2:7d:27:16:62:03:59:4d:37:00:3f:84:0b:1f:35:ce:24:
78:61:be:b8:e1:3c:72:93:ab:f1:90:56:9f:f5:81:57:e2:e3:
7a:e8:4c:10:7e:9d:21:b1:35:fa:4c:9a:b0:b5:02:0d:d6:95:
ff:fc:87:aa:45:db:51:40:c6:1a:7d:ab:85:b3:7b:e2:91:d3:
21:ad:07:32:ed:8e:cd:52:47:1d:68:da:2d:b4:b3:7b:cc:ea:
4d:e9:80:de:c9:59:2d:fc:38:08:d1:c2:5c:6d:d7:71:19:8b:
7e:bf:ed:9f:48:81:a2:fc:ee:17:a3:ec:24:f4:e5:0a:05:bd:
60:1e:9a:a5:7e:59:87:57:34:ee:0e:24:52:90:e0:3c:8d:a8:
48:24:df:17:7f:5b:61:4b:4a:93:b7:17:b7:06:f9:5c:b3:4a:
ef:ac:b8:fd:a4:1a:44:f7:8e:8c:f7:03:23:4d:07:e1:3c:88:
45:85:31:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 20 20:29:53 2024 by rpki-client on console.sobornost.net