Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/i7x9wgXtEwFGvjaQD55S9qGmrfQ.roa
File: i7x9wgXtEwFGvjaQD55S9qGmrfQ.roa (raw, json)
Hash identifier: TG06m3sUk+WWYX+Lu5sU6qUTH1VJ59bvZwqRzNcsKp8=
Subject key identifier: 8B:BC:7D:C2:05:ED:13:01:46:BE:36:90:0F:9E:52:F6:A1:A6:AD:F4
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018FCD639975BA913E1D0B00CB1432710211
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/i7x9wgXtEwFGvjaQD55S9qGmrfQ.roa
Signing time: Fri 31 May 2024 06:43:27 +0000
ROA not before: Fri 31 May 2024 06:43:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14178
IP address blocks: 45.130.138.0/24 maxlen: 24
45.144.188.0/22 maxlen: 24
45.145.251.0/24 maxlen: 24
136.144.41.0/24 maxlen: 24
185.227.35.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:cd:63:99:75:ba:91:3e:1d:0b:00:cb:14:32:71:02:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: May 31 06:43:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8bbc7dc205ed130146be36900f9e52f6a1a6adf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:cf:7b:e2:e7:01:08:20:99:d9:06:fb:24:5b:
db:55:6e:a2:cd:4d:91:35:c7:7f:43:40:07:c3:57:
d9:09:99:d7:8e:dd:33:b7:40:ca:58:f4:14:61:0d:
1b:c5:c1:c3:0b:95:91:d1:e5:08:94:26:16:19:bd:
34:2b:06:05:ba:76:0d:82:60:43:89:93:ac:35:52:
3c:1d:87:4f:37:63:d6:d2:69:30:59:86:ba:54:47:
e1:cf:e4:23:e2:65:45:18:e3:03:68:d1:9d:6b:08:
61:0e:88:7b:c4:3e:1b:ed:00:58:4f:e8:c4:0f:f6:
bd:d0:43:bf:43:5d:81:ed:e2:b3:f0:9a:eb:dc:05:
3e:2f:19:b7:69:c5:1d:fc:6f:e8:bb:19:af:55:ed:
cc:59:32:94:84:e9:4d:49:3b:08:ab:cd:0d:d8:ca:
8f:a9:79:c3:12:ed:71:11:30:5a:bc:a3:32:03:a5:
c4:01:05:c9:45:de:87:1e:8c:06:c4:40:9b:7c:2f:
ca:89:bb:0a:0d:27:ae:2f:06:2c:00:e3:dc:f5:a1:
7f:d3:46:cc:76:67:2c:86:25:f7:19:e0:df:2c:01:
5a:01:78:2b:71:70:05:48:72:0d:07:8c:24:6c:ef:
10:ff:43:63:a5:e4:8c:6c:8c:a0:14:da:2d:bc:9a:
13:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:BC:7D:C2:05:ED:13:01:46:BE:36:90:0F:9E:52:F6:A1:A6:AD:F4
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/i7x9wgXtEwFGvjaQD55S9qGmrfQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.138.0/24
45.144.188.0/22
45.145.251.0/24
136.144.41.0/24
185.227.35.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:0e:f7:1e:14:a8:53:19:aa:5e:f7:b2:6b:21:f4:f4:82:3a:
b0:f9:1b:02:13:03:a4:16:0e:f2:67:43:51:4a:58:a1:d9:33:
91:b9:6b:94:61:f0:b5:4c:bc:8c:a6:db:54:07:a5:cc:17:64:
e8:8c:e4:7d:5d:ae:92:bb:62:bd:b0:83:a6:f7:8d:49:12:80:
2b:21:e2:e4:4a:90:c9:36:d9:f8:7c:7b:0e:b4:cb:6d:5c:57:
32:ed:37:5a:56:d8:2f:db:a9:88:dd:8b:ea:53:b6:e2:a5:ea:
ed:ee:fc:f4:d9:ea:0a:21:d2:8d:c2:99:0d:6a:a6:c9:ef:6a:
6a:68:a4:29:49:d3:ab:23:74:d3:e3:b6:c9:00:0a:a2:21:16:
c2:88:6f:a2:a3:3d:4c:3e:83:89:f1:fa:7c:59:6b:9d:35:7d:
42:04:c0:b8:ed:75:73:2f:82:3a:86:4c:c5:ad:77:9f:41:24:
4b:39:7a:4d:5d:8b:a0:ed:cd:8a:c8:0d:0f:57:66:b5:6c:78:
e6:d7:3f:7b:0b:c6:53:9f:47:1e:8e:51:fc:67:11:2f:f8:e6:
24:c8:ab:0d:9d:bd:48:39:0c:52:e4:b2:73:b4:23:b0:0e:63:
28:c6:b3:1d:e5:c7:d4:17:75:20:91:75:1d:bb:0a:a8:5d:09:
55:0d:ab:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:14 2024 by rpki-client on console.sobornost.net