Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/c02ebc-dfec-4b0f-803c-c33634a61d20/1/WYZlAhPFKodN0-D0MJwrh5hoa2s.roa
File: WYZlAhPFKodN0-D0MJwrh5hoa2s.roa (raw, json)
Hash identifier: UU0MiNel6pUiPYgrPJIEMR1b7x1tOKOzrUeP73YdAXU=
Subject key identifier: 59:86:65:02:13:C5:2A:87:4D:D3:E0:F4:30:9C:2B:87:98:68:6B:6B
Certificate issuer: /CN=36e790ea8ac645c85064745a420c3d85bdd75e63
Certificate serial: 0191EA731A151B998D9F290C5046C347C790
Authority key identifier: 36:E7:90:EA:8A:C6:45:C8:50:64:74:5A:42:0C:3D:85:BD:D7:5E:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NueQ6orGRchQZHRaQgw9hb3XXmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/c02ebc-dfec-4b0f-803c-c33634a61d20/1/WYZlAhPFKodN0-D0MJwrh5hoa2s.roa
Signing time: Fri 13 Sep 2024 08:14:57 +0000
ROA not before: Fri 13 Sep 2024 08:14:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44029
IP address blocks: 45.81.108.0/22 maxlen: 22
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ea:73:1a:15:1b:99:8d:9f:29:0c:50:46:c3:47:c7:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36e790ea8ac645c85064745a420c3d85bdd75e63
Validity
Not Before: Sep 13 08:14:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5986650213c52a874dd3e0f4309c2b8798686b6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7b:af:55:ff:d6:bc:df:da:54:4f:05:ef:ed:
3d:5f:6f:23:a3:0d:09:28:aa:5c:93:a7:23:52:fa:
56:09:8e:20:01:78:31:31:58:15:79:85:87:13:46:
1e:9b:67:a3:46:e3:64:42:da:51:9c:7b:ec:4a:b5:
e9:67:4a:1e:32:95:b9:53:7f:5e:76:82:03:82:e7:
e8:61:f0:b8:f8:ff:6c:3e:24:43:4b:97:93:ab:91:
63:c1:83:d4:b6:35:6e:2e:ca:73:d1:08:28:a7:dc:
13:1c:25:f3:06:59:a8:b6:20:13:c6:17:9b:a9:f1:
76:7e:26:e9:a0:a5:d4:2c:6e:20:51:6a:c0:33:8d:
d0:f5:60:1d:df:31:30:67:fe:67:4b:23:3a:48:79:
48:8e:f3:a3:61:5c:73:92:7b:35:1f:01:b9:36:68:
99:b0:85:d0:17:3e:3d:56:46:a4:00:91:bc:1f:f2:
ed:dc:df:b5:f5:ae:23:ad:76:5b:57:db:34:99:20:
48:16:05:bc:82:47:fe:36:80:83:e7:8f:30:44:dc:
a2:30:af:3a:86:0a:90:49:4b:32:90:b5:8b:6d:2c:
da:f3:7f:fe:d6:a5:bb:e0:2b:a2:66:de:26:09:7b:
8c:26:a6:c4:c9:cb:39:b7:64:c2:5b:5a:79:48:9a:
6c:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:86:65:02:13:C5:2A:87:4D:D3:E0:F4:30:9C:2B:87:98:68:6B:6B
X509v3 Authority Key Identifier:
keyid:36:E7:90:EA:8A:C6:45:C8:50:64:74:5A:42:0C:3D:85:BD:D7:5E:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NueQ6orGRchQZHRaQgw9hb3XXmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/c02ebc-dfec-4b0f-803c-c33634a61d20/1/WYZlAhPFKodN0-D0MJwrh5hoa2s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/c02ebc-dfec-4b0f-803c-c33634a61d20/1/NueQ6orGRchQZHRaQgw9hb3XXmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.108.0/22
Signature Algorithm: sha256WithRSAEncryption
27:50:14:e6:0d:5e:34:4d:82:4f:d4:15:95:1b:1d:67:96:48:
0a:20:cb:16:8b:6b:3d:07:d0:cf:88:23:20:53:57:cc:ac:83:
35:75:71:37:54:78:19:58:0d:73:d2:8d:7b:b4:f9:09:b7:0b:
9f:d8:e0:34:74:2a:35:7a:f0:3a:e4:1a:3d:53:39:80:1f:a6:
eb:3c:17:d8:2d:5c:53:91:0f:d6:22:14:50:39:86:3a:9a:13:
b5:70:00:78:f1:da:5e:bd:c3:8a:65:04:c8:d6:6b:59:8a:f0:
22:7b:eb:47:89:36:52:dd:0e:7c:f1:04:96:d5:57:56:56:a7:
d2:36:98:4f:71:b1:93:76:f7:4e:60:a2:d5:a8:8d:db:b9:8e:
cd:3f:30:a5:6f:eb:7f:c9:38:ae:03:09:7d:4f:80:a1:b3:ab:
bc:b7:00:70:8b:7e:6e:90:65:35:95:97:ac:6c:10:25:e6:9e:
49:e3:6e:97:53:8b:c1:a2:46:9a:7f:f8:cb:6c:3b:b8:1c:08:
f9:bc:95:38:b5:d8:4a:a1:9e:94:91:c8:00:ff:b9:2a:b3:c9:
89:76:d8:d8:e0:bd:ad:09:74:b4:be:0b:76:d3:8f:d2:10:ca:
7e:3a:e1:d9:d7:a7:8f:93:8f:91:52:f5:5d:5b:f3:eb:ca:73:
4b:b6:ce:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 14 12:06:01 2024 by rpki-client on console.sobornost.net