Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/ca4815-0e00-49bf-88f5-caca8b80c91c/1/eJMtBJfg22oZpFjdK1e4d9w3_Oo.roa
File: eJMtBJfg22oZpFjdK1e4d9w3_Oo.roa (raw, json)
Hash identifier: lWZOFXYOCI6uN9QB/E7y54AvG7oI+bWMJ63ACTw9MzY=
Subject key identifier: 78:93:2D:04:97:E0:DB:6A:19:A4:58:DD:2B:57:B8:77:DC:37:FC:EA
Certificate issuer: /CN=67c3acf929a22338f2b380180cc852db4779aad0
Certificate serial: 01933A4B8C84840FF8C60BE9343CE901385F
Authority key identifier: 67:C3:AC:F9:29:A2:23:38:F2:B3:80:18:0C:C8:52:DB:47:79:AA:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z8Os-SmiIzjys4AYDMhS20d5qtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/ca4815-0e00-49bf-88f5-caca8b80c91c/1/eJMtBJfg22oZpFjdK1e4d9w3_Oo.roa
Signing time: Sun 17 Nov 2024 13:24:09 +0000
ROA not before: Sun 17 Nov 2024 13:24:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34380
IP address blocks: 193.43.244.0/22 maxlen: 22
193.43.244.0/24 maxlen: 24
193.43.245.0/24 maxlen: 24
193.43.246.0/24 maxlen: 24
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:3a:4b:8c:84:84:0f:f8:c6:0b:e9:34:3c:e9:01:38:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67c3acf929a22338f2b380180cc852db4779aad0
Validity
Not Before: Nov 17 13:24:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=78932d0497e0db6a19a458dd2b57b877dc37fcea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f2:c2:95:1f:de:f1:5a:7f:1a:62:1b:a1:e2:
95:f1:c7:3f:5b:0a:63:5d:b1:80:a2:32:e4:d6:f4:
72:5e:8e:38:38:f3:ba:f2:a6:0f:97:34:be:f8:30:
09:57:08:3a:f4:86:5e:55:cd:fd:a3:04:47:34:6b:
b5:b3:ec:98:17:bc:fd:63:72:6c:51:04:fe:af:c6:
e7:73:fd:69:4a:a2:d8:6a:e8:72:29:1d:a5:cd:8b:
44:ec:c7:8c:c1:78:33:46:e8:13:3c:8b:88:8f:2e:
46:03:8e:43:6b:45:85:26:3c:78:69:fc:f0:3d:94:
e2:f0:2a:b2:53:49:e7:ca:68:fe:96:53:39:0a:3c:
44:ae:f2:22:74:91:d6:06:9d:c3:22:34:85:18:97:
9e:91:50:5a:83:cc:56:d3:5e:89:0a:f0:61:0a:b7:
85:14:ad:78:68:88:53:a2:51:1e:ba:88:2c:ab:73:
7b:26:9c:9e:d7:99:a0:bd:8e:d7:57:02:7c:00:dd:
8c:d7:e4:4c:db:13:3d:76:2e:29:61:ad:eb:2d:7b:
ce:2c:d8:00:25:4b:f4:be:e9:a4:fa:dc:20:1f:56:
34:fa:0b:23:7c:03:7d:e9:a5:06:8f:64:b6:66:91:
84:5c:22:04:c5:6b:86:2b:26:2e:7f:3a:16:21:ca:
74:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:93:2D:04:97:E0:DB:6A:19:A4:58:DD:2B:57:B8:77:DC:37:FC:EA
X509v3 Authority Key Identifier:
keyid:67:C3:AC:F9:29:A2:23:38:F2:B3:80:18:0C:C8:52:DB:47:79:AA:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z8Os-SmiIzjys4AYDMhS20d5qtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/ca4815-0e00-49bf-88f5-caca8b80c91c/1/eJMtBJfg22oZpFjdK1e4d9w3_Oo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/ca4815-0e00-49bf-88f5-caca8b80c91c/1/Z8Os-SmiIzjys4AYDMhS20d5qtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.244.0/22
Signature Algorithm: sha256WithRSAEncryption
74:64:8d:d5:69:78:dd:5f:ee:a5:67:d8:3d:c0:d2:5d:ce:4e:
51:20:71:0d:79:8b:be:9e:16:5a:01:8c:70:07:da:eb:50:b8:
85:5b:de:3a:6d:1e:f2:2f:61:37:e8:85:d2:3f:3e:3d:23:9b:
50:68:3e:89:6d:f7:d3:60:d2:57:8b:18:ea:dc:c4:73:ba:b4:
44:f4:8a:ba:c7:09:29:0a:b7:ee:ec:5d:9f:e4:21:ee:96:ef:
fb:a7:15:9d:53:93:c4:72:81:9d:d5:cc:32:51:be:cf:22:a8:
38:58:a2:07:75:63:f4:d0:d1:08:4f:09:a5:8c:47:8e:e0:37:
46:26:71:1c:f4:70:8e:60:9f:a8:b3:8c:86:08:9e:ab:b1:98:
06:92:1c:36:90:e3:15:68:33:db:01:1a:a5:24:9d:b8:42:39:
70:7a:d8:91:99:e5:9a:17:5e:07:30:be:69:9e:2e:2f:56:00:
68:d6:95:90:98:0b:16:11:31:f0:03:bf:2f:28:c2:70:c8:b8:
73:e4:6a:60:66:cd:7e:4a:86:0f:bb:21:ba:ec:01:f2:4a:96:
45:d6:c8:02:98:12:7e:e1:d0:c9:7f:b1:30:4e:f6:dc:eb:3b:
fc:8e:04:20:bf:65:74:d3:0c:6c:76:95:96:bf:14:bd:47:eb:
5f:7e:38:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 20 20:30:06 2024 by rpki-client on console.sobornost.net