Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/HbNiPvXdiCEHns2BxTP7MTUeAmE.roa
File: HbNiPvXdiCEHns2BxTP7MTUeAmE.roa (raw, json)
Hash identifier: 3+aLDgxaLh7OTkGqXTbLDlJY2ADpgxCYgnISqxhgCbs=
Subject key identifier: 1D:B3:62:3E:F5:DD:88:21:07:9E:CD:81:C5:33:FB:31:35:1E:02:61
Certificate issuer: /CN=b404cc0e038eb0e697ec6e7ae49d0286146e0c1a
Certificate serial: 019334E9ADFF0EB3B082B2E040AE792134CE
Authority key identifier: B4:04:CC:0E:03:8E:B0:E6:97:EC:6E:7A:E4:9D:02:86:14:6E:0C:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tATMDgOOsOaX7G565J0ChhRuDBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/HbNiPvXdiCEHns2BxTP7MTUeAmE.roa
Signing time: Sat 16 Nov 2024 12:19:09 +0000
ROA not before: Sat 16 Nov 2024 12:19:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 397368
IP address blocks: 74.122.24.0/22 maxlen: 22
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:34:e9:ad:ff:0e:b3:b0:82:b2:e0:40:ae:79:21:34:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b404cc0e038eb0e697ec6e7ae49d0286146e0c1a
Validity
Not Before: Nov 16 12:19:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1db3623ef5dd8821079ecd81c533fb31351e0261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:24:f2:ec:3c:fa:d3:bb:9d:ab:9d:5b:5e:3a:
72:86:d6:30:87:e5:47:9e:cc:ee:ce:48:e2:2e:bc:
fb:c8:d5:58:03:63:1d:c3:79:e9:bc:01:9b:23:a5:
57:c9:57:75:87:aa:02:79:86:d6:79:9d:2d:e0:2d:
ec:ea:52:d6:bd:15:1f:a3:bb:30:f2:dc:9b:4d:42:
b3:66:2e:de:f4:db:60:90:e4:d6:00:e6:60:d7:35:
7c:32:14:e8:2a:d5:2f:90:78:e3:a5:4d:4f:e6:d2:
9f:35:c2:7b:98:5e:ef:fb:fc:ca:d7:77:8f:f9:5b:
21:1a:44:78:1a:75:97:d1:5b:ff:71:19:0d:25:d2:
a2:44:88:3a:50:a9:ba:ce:d8:b7:de:9a:36:fb:ae:
9c:dd:f6:61:69:38:81:76:d1:77:0e:eb:92:e0:7c:
a9:f5:67:39:c3:44:fa:49:b7:23:79:80:9d:ae:7a:
16:b8:90:34:9f:b1:09:0f:2e:c2:20:2e:f3:ef:0a:
d0:c4:b6:a6:39:63:43:d8:4b:34:b5:96:f0:36:27:
6f:2b:45:da:7c:d4:26:f1:cf:93:9b:49:b1:72:ee:
68:ee:04:90:69:f1:c6:88:bb:76:be:e9:96:9e:8a:
97:be:d9:d1:1f:0e:59:9b:26:cc:82:17:c5:81:77:
10:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:B3:62:3E:F5:DD:88:21:07:9E:CD:81:C5:33:FB:31:35:1E:02:61
X509v3 Authority Key Identifier:
keyid:B4:04:CC:0E:03:8E:B0:E6:97:EC:6E:7A:E4:9D:02:86:14:6E:0C:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tATMDgOOsOaX7G565J0ChhRuDBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/HbNiPvXdiCEHns2BxTP7MTUeAmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/tATMDgOOsOaX7G565J0ChhRuDBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
74.122.24.0/22
Signature Algorithm: sha256WithRSAEncryption
01:41:33:72:45:f0:76:67:f3:57:28:f7:ba:aa:d2:37:9f:d4:
d1:56:49:68:cf:26:e2:92:f6:90:60:25:93:4a:b7:06:3b:23:
1f:0e:11:c0:0a:16:73:dc:a9:af:e4:74:fc:ad:8a:6f:47:66:
9c:bf:57:99:47:f9:26:23:c2:d5:60:70:9e:67:09:81:1b:1a:
8e:50:0c:03:0c:76:01:89:4e:02:76:7b:09:04:28:8a:e9:32:
f4:16:46:94:8a:84:59:0d:06:dc:16:74:03:cd:2d:3b:df:9a:
7c:41:46:bb:b8:a2:55:6f:4c:40:9f:e5:40:3e:fc:17:0c:5c:
36:df:24:7d:ea:d4:db:5c:c1:d5:4d:d0:df:ad:e4:3d:94:3f:
01:63:16:5b:81:75:48:e2:fd:a6:c9:ba:04:06:c5:fb:3e:ef:
64:26:a5:8a:41:2a:5e:4d:9c:7d:ee:fb:d8:cf:18:e9:2d:b1:
63:17:dc:86:d2:84:6d:ff:b1:83:f2:a2:71:c4:25:4f:8d:6c:
af:82:e8:80:da:13:15:80:d5:d9:36:03:62:dc:a9:09:1e:e5:
03:11:f7:34:86:2d:1b:4c:60:09:ca:fa:6c:f3:51:98:93:9d:
fd:59:d2:65:2b:6c:60:14:67:46:bb:da:ba:74:a5:c0:8d:56:
af:5c:bd:3a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZM06a3/DrOwgrLgQK55ITTOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0MDRjYzBlMDM4ZWIwZTY5N2VjNmU3YWU0OWQwMjg2MTQ2
ZTBjMWEwHhcNMjQxMTE2MTIxOTA5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZGIzNjIzZWY1ZGQ4ODIxMDc5ZWNkODFjNTMzZmIzMTM1MWUwMjYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsCTy7Dz607udq51bXjpyhtYwh+VH
nszuzkjiLrz7yNVYA2Mdw3npvAGbI6VXyVd1h6oCeYbWeZ0t4C3s6lLWvRUfo7sw
8tybTUKzZi7e9NtgkOTWAOZg1zV8MhToKtUvkHjjpU1P5tKfNcJ7mF7v+/zK13eP
+VshGkR4GnWX0Vv/cRkNJdKiRIg6UKm6zti33po2+66c3fZhaTiBdtF3DuuS4Hyp
9Wc5w0T6SbcjeYCdrnoWuJA0n7EJDy7CIC7z7wrQxLamOWND2Es0tZbwNidvK0Xa
fNQm8c+Tm0mxcu5o7gSQafHGiLt2vumWnoqXvtnRHw5ZmybMghfFgXcQWQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB2zYj713YghB57NgcUz+zE1HgJhMB8GA1UdIwQY
MBaAFLQEzA4DjrDml+xueuSdAoYUbgwaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdEFUTURnT09zT2FYN0c1NjVKMENoaFJ1REJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC9hYmUxNmItOTJjYy00OGUzLWI1Yjkt
ODZhMmYwNjdiNGU4LzEvSGJOaVB2WGRpQ0VIbnMyQnhUUDdNVFVlQW1FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC9hYmUxNmItOTJjYy00OGUzLWI1YjktODZhMmYwNjdiNGU4
LzEvdEFUTURnT09zT2FYN0c1NjVKMENoaFJ1REJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCSnoYMA0G
CSqGSIb3DQEBCwUAA4IBAQABQTNyRfB2Z/NXKPe6qtI3n9TRVklozybikvaQYCWT
SrcGOyMfDhHAChZz3Kmv5HT8rYpvR2acv1eZR/kmI8LVYHCeZwmBGxqOUAwDDHYB
iU4CdnsJBCiK6TL0FkaUioRZDQbcFnQDzS0735p8QUa7uKJVb0xAn+VAPvwXDFw2
3yR96tTbXMHVTdDfreQ9lD8BYxZbgXVI4v2myboEBsX7Pu9kJqWKQSpeTZx97vvY
zxjpLbFjF9yG0oRt/7GD8qJxxCVPjWyvguiA2hMVgNXZNgNi3KkJHuUDEfc0hi0b
TGAJyvps81GYk539WdJlK2xgFGdGu9q6dKXAjVavXL06
-----END CERTIFICATE-----
Generated at Wed Nov 20 23:06:09 2024 by rpki-client on console.sobornost.net