Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/Mnsg9dNkOSc-LHJUi0OvAa47KCU.roa
File: Mnsg9dNkOSc-LHJUi0OvAa47KCU.roa (raw, json)
Hash identifier: H+D+gBfQd5gOnfl1Z1Y+vACh55he8oNt0ztvBH5awA4=
Subject key identifier: 32:7B:20:F5:D3:64:39:27:3E:2C:72:54:8B:43:AF:01:AE:3B:28:25
Certificate issuer: /CN=529c273098b52768ca0e44a3a2c16efed4a65ca0
Certificate serial: 0190A6C4A1D79BD422F574DD622EE5C40B63
Authority key identifier: 52:9C:27:30:98:B5:27:68:CA:0E:44:A3:A2:C1:6E:FE:D4:A6:5C:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UpwnMJi1J2jKDkSjosFu_tSmXKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/Mnsg9dNkOSc-LHJUi0OvAa47KCU.roa
Signing time: Fri 12 Jul 2024 11:47:02 +0000
ROA not before: Fri 12 Jul 2024 11:47:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59729
IP address blocks: 78.136.248.0/24 maxlen: 24
78.136.249.0/24 maxlen: 24
78.136.250.0/24 maxlen: 24
78.136.251.0/24 maxlen: 24
78.136.252.0/24 maxlen: 24
78.136.253.0/24 maxlen: 24
78.136.254.0/24 maxlen: 24
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a6:c4:a1:d7:9b:d4:22:f5:74:dd:62:2e:e5:c4:0b:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529c273098b52768ca0e44a3a2c16efed4a65ca0
Validity
Not Before: Jul 12 11:47:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=327b20f5d36439273e2c72548b43af01ae3b2825
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:45:53:92:e3:67:ba:33:bb:1e:87:1c:83:ae:
ec:6a:8d:5e:7c:89:dc:d6:ac:5e:87:af:cd:8f:3a:
54:d4:ac:74:69:4b:ee:45:43:94:b3:69:65:00:f8:
aa:aa:c6:ed:d5:39:a3:04:d0:06:b6:ed:25:d1:87:
a8:a6:dd:6e:0f:9f:52:5b:91:6f:a4:dc:5b:7b:93:
01:3f:7b:56:7e:f3:66:16:0e:fc:f0:e9:29:86:79:
d2:ae:dc:4d:ca:2d:c6:9d:83:87:f1:eb:e5:f5:f9:
7e:ae:5a:e3:7b:12:ba:85:e9:ae:79:98:c9:08:57:
81:6b:9a:a4:cd:26:c6:e6:d5:95:52:55:66:12:5d:
c8:65:44:88:2e:43:ae:41:55:34:37:2c:f0:4c:68:
86:65:4d:dd:7f:12:33:92:97:a8:a4:73:56:84:3d:
e1:46:66:34:a5:0d:b3:94:b9:55:7c:33:2e:10:0e:
a2:a0:c0:dd:46:bf:22:2e:e7:4d:49:87:7d:f5:88:
ee:72:4e:93:c3:7a:de:c0:ad:34:35:e4:ce:7c:0e:
8f:75:6d:80:e9:4c:5e:28:9b:78:6e:bf:f4:0c:a2:
42:8e:7a:ce:68:06:93:9a:d5:8e:94:d5:aa:a2:e1:
04:a6:77:b1:b4:82:f5:8e:fd:15:51:07:b2:53:76:
03:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:7B:20:F5:D3:64:39:27:3E:2C:72:54:8B:43:AF:01:AE:3B:28:25
X509v3 Authority Key Identifier:
keyid:52:9C:27:30:98:B5:27:68:CA:0E:44:A3:A2:C1:6E:FE:D4:A6:5C:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UpwnMJi1J2jKDkSjosFu_tSmXKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/Mnsg9dNkOSc-LHJUi0OvAa47KCU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/UpwnMJi1J2jKDkSjosFu_tSmXKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.136.248.0-78.136.254.255
Signature Algorithm: sha256WithRSAEncryption
7f:04:9f:4a:89:fc:d2:2a:16:0c:52:8e:12:55:b9:ab:0a:b8:
32:ad:31:a7:98:85:7b:22:11:f7:dd:13:f9:66:0b:d3:f6:a0:
52:93:96:c0:78:3c:74:52:11:52:5a:4b:c1:48:64:9f:b2:cb:
94:4e:5f:6f:17:7e:c8:c1:54:08:82:f4:a1:e1:17:0c:c2:e3:
2f:5c:90:cf:8f:e0:c4:ab:d4:6b:be:2e:5e:7c:48:f6:74:e9:
1a:95:f6:8f:56:89:e7:11:3f:7c:31:6d:d3:b5:43:72:c4:86:
1c:ab:fa:f5:c2:e0:9f:3b:ee:5f:80:e2:98:ac:7a:00:ae:b7:
29:0f:2a:f3:43:cb:37:67:1a:51:6f:5e:02:ff:d0:25:94:92:
36:27:88:90:d9:8d:1e:a6:09:ff:4f:b9:fb:6c:c5:df:fa:4f:
cc:b2:24:e9:ea:ad:c0:4d:67:7d:21:59:1a:cd:89:21:c7:ee:
66:dd:a2:0c:6e:4f:f1:49:95:b2:f3:d4:16:76:2a:f3:03:e9:
0c:d5:71:a5:bb:eb:1d:60:7c:36:c0:fc:a8:9a:ec:24:3d:c8:
a5:d0:90:ad:d6:49:54:0b:0e:32:c7:17:d5:b0:9e:d9:40:df:
69:58:1e:16:60:b2:67:70:a0:4e:6c:35:9a:a3:32:dd:54:d6:
ec:c9:28:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 7 07:55:09 2024 by rpki-client on console.sobornost.net