Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/2b4a15-96e9-464c-aedb-0b22ff6be72a/1/0sahQlpEQz2u8NxoFfiNI9LNXm8.roa
File: 0sahQlpEQz2u8NxoFfiNI9LNXm8.roa (raw, json)
Hash identifier: CwMF2HjyXu6vJqCVmcuJVtyqUougWMCx/iDVdDQbEGA=
Subject key identifier: D2:C6:A1:42:5A:44:43:3D:AE:F0:DC:68:15:F8:8D:23:D2:CD:5E:6F
Certificate issuer: /CN=ad4a5c7361896c07009c2610075eaf2292f80778
Certificate serial: 019321980089342B4E270FC8E6B056B95AD1
Authority key identifier: AD:4A:5C:73:61:89:6C:07:00:9C:26:10:07:5E:AF:22:92:F8:07:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rUpcc2GJbAcAnCYQB16vIpL4B3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/2b4a15-96e9-464c-aedb-0b22ff6be72a/1/0sahQlpEQz2u8NxoFfiNI9LNXm8.roa
Signing time: Tue 12 Nov 2024 18:17:09 +0000
ROA not before: Tue 12 Nov 2024 18:17:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48955
IP address blocks: 91.196.154.0/24 maxlen: 24
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:21:98:00:89:34:2b:4e:27:0f:c8:e6:b0:56:b9:5a:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad4a5c7361896c07009c2610075eaf2292f80778
Validity
Not Before: Nov 12 18:17:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d2c6a1425a44433daef0dc6815f88d23d2cd5e6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:4f:a8:86:a2:32:c1:9f:00:f2:71:61:29:33:
d6:2f:57:9d:38:ff:a9:9d:fd:65:5b:fa:50:a9:f1:
07:f8:c9:1a:67:cd:15:6b:6c:bf:64:6f:e8:02:d1:
92:28:b2:c8:28:ea:bf:42:dc:ad:cd:78:bc:10:7b:
66:8a:3e:59:42:34:4b:88:44:b0:6d:d3:99:e4:43:
41:52:a7:14:e3:d1:99:a4:65:b5:a3:4e:06:16:5c:
84:6a:af:e6:13:26:38:05:12:e9:49:4f:f0:a4:fd:
7d:77:18:9c:56:5f:e4:a1:08:d7:4b:7f:7c:ab:4d:
5e:82:b6:cb:da:5d:87:a6:1f:ef:c1:32:2a:e8:d2:
3f:32:40:10:f5:19:fa:56:8d:ed:6a:13:c4:f6:84:
32:72:8c:d7:83:34:e3:d1:1a:38:83:44:89:e7:af:
d5:e4:fc:48:26:ef:27:99:74:cd:28:7d:a3:7d:b6:
96:95:b2:a0:76:a8:82:73:81:54:36:ba:7e:02:ae:
91:63:07:2f:ab:a3:79:93:4c:f9:ed:07:d1:09:7c:
df:39:b6:12:96:9f:ab:18:1d:27:4f:e3:16:9d:08:
02:d8:4d:6a:b4:48:7c:91:6e:30:30:e9:81:6a:4c:
0e:e1:1e:05:32:be:b9:28:5e:1b:bc:6f:cc:68:98:
ac:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:C6:A1:42:5A:44:43:3D:AE:F0:DC:68:15:F8:8D:23:D2:CD:5E:6F
X509v3 Authority Key Identifier:
keyid:AD:4A:5C:73:61:89:6C:07:00:9C:26:10:07:5E:AF:22:92:F8:07:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rUpcc2GJbAcAnCYQB16vIpL4B3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/2b4a15-96e9-464c-aedb-0b22ff6be72a/1/0sahQlpEQz2u8NxoFfiNI9LNXm8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/2b4a15-96e9-464c-aedb-0b22ff6be72a/1/rUpcc2GJbAcAnCYQB16vIpL4B3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.196.154.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:4d:21:d8:71:40:17:d6:d1:64:ff:b1:e3:e6:54:cc:82:49:
c6:f1:1f:81:7f:b8:97:e2:ad:48:d6:a3:00:36:e9:35:a7:d0:
cf:94:a1:3f:5a:af:3d:d3:52:26:aa:ef:96:d7:12:3c:5e:6c:
b9:9c:e2:02:8b:b0:da:dc:15:23:d8:11:36:b8:0d:8f:2a:87:
27:92:53:35:f6:86:bd:78:e6:38:1d:22:e6:8c:79:b9:d1:2b:
9e:38:a7:a9:2f:b3:3a:23:c0:38:be:79:14:a1:27:8e:e9:e7:
76:24:da:e9:4d:3f:da:ed:fd:cc:5a:17:91:4e:2b:dc:4f:0e:
28:d3:5a:3f:49:dd:16:60:8d:6a:4c:10:a0:57:f4:79:0a:3d:
13:4c:4c:88:f1:bf:da:e8:3f:8e:df:d0:18:a6:72:4b:d0:30:
f1:b5:27:f6:d3:02:01:9a:3c:14:84:8c:e0:25:49:62:67:46:
6b:30:9e:bc:e9:63:84:f6:74:e4:d3:ca:e9:34:a5:64:6f:f0:
d7:0f:d4:e0:85:4d:4c:b3:28:20:4c:36:5c:fe:84:62:5f:63:
0d:20:7b:0c:9f:52:2d:8c:2b:47:e4:8d:99:80:9d:dd:5c:a9:
8d:65:db:50:18:a3:5f:a8:e0:df:6c:9d:8c:e7:c8:03:e5:e5:
0e:ce:17:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 20 23:06:06 2024 by rpki-client on console.sobornost.net