Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/83f977-82b8-4695-9c08-1896555a2f0e/1/llK_w6HsAnzNn9LSEQ_0lr00DaA.roa
File: llK_w6HsAnzNn9LSEQ_0lr00DaA.roa (raw, json)
Hash identifier: yGnhPZJbrRYKQbHBRQGrBPpYhx2ggRHKGYBsbpFevCY=
Subject key identifier: 96:52:BF:C3:A1:EC:02:7C:CD:9F:D2:D2:11:0F:F4:96:BD:34:0D:A0
Certificate issuer: /CN=828bbad6f4916842bbe320284fafe10caf59edf0
Certificate serial: 01933E23BDF100F4DA88C3CF4FCADAD8768E
Authority key identifier: 82:8B:BA:D6:F4:91:68:42:BB:E3:20:28:4F:AF:E1:0C:AF:59:ED:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gou61vSRaEK74yAoT6_hDK9Z7fA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/83f977-82b8-4695-9c08-1896555a2f0e/1/llK_w6HsAnzNn9LSEQ_0lr00DaA.roa
Signing time: Mon 18 Nov 2024 07:19:09 +0000
ROA not before: Mon 18 Nov 2024 07:19:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203329
IP address blocks: 37.228.126.0/24 maxlen: 24
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:3e:23:bd:f1:00:f4:da:88:c3:cf:4f:ca:da:d8:76:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=828bbad6f4916842bbe320284fafe10caf59edf0
Validity
Not Before: Nov 18 07:19:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9652bfc3a1ec027ccd9fd2d2110ff496bd340da0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:cc:19:ce:a6:9a:4e:06:c8:4a:89:5a:18:95:
e6:5e:be:99:f5:51:57:58:d1:01:63:6f:1c:50:4c:
56:cc:50:bc:66:26:8c:ab:b0:64:a1:90:61:41:1f:
85:88:d9:c7:91:40:e7:ae:c6:22:d1:71:b8:cc:50:
9f:a3:e1:31:f9:b4:31:bb:fb:bf:bf:1a:f6:70:4d:
46:5f:0e:48:b4:e0:0b:e3:20:a4:98:55:88:eb:fc:
4c:27:2d:78:84:25:cd:f2:de:1c:fb:65:49:0d:4e:
39:d5:df:fc:bc:25:a8:b7:c4:68:17:5f:f8:ba:8e:
c6:9e:d7:44:a7:b7:0d:a9:de:de:20:db:f4:b4:86:
aa:0a:7b:2e:de:0b:b8:b7:32:f0:70:11:ba:76:8e:
e3:e7:7d:97:30:ff:62:6a:17:94:2e:b9:22:58:02:
73:1b:7b:c0:ec:ff:d0:db:99:4f:98:6d:49:00:f8:
30:5c:e5:11:ca:b2:22:10:7f:44:fd:a6:c9:9c:2b:
fd:f7:33:b3:9d:74:40:7d:be:c2:44:59:9d:80:98:
df:24:49:2e:8a:2b:ff:d8:c5:c0:71:33:94:a4:9a:
91:f1:34:bf:11:04:bf:45:79:68:ae:3c:47:e6:92:
f6:1e:86:cc:f0:b6:5f:8a:9f:3a:e5:11:7c:d9:4f:
e7:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:52:BF:C3:A1:EC:02:7C:CD:9F:D2:D2:11:0F:F4:96:BD:34:0D:A0
X509v3 Authority Key Identifier:
keyid:82:8B:BA:D6:F4:91:68:42:BB:E3:20:28:4F:AF:E1:0C:AF:59:ED:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gou61vSRaEK74yAoT6_hDK9Z7fA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/83f977-82b8-4695-9c08-1896555a2f0e/1/llK_w6HsAnzNn9LSEQ_0lr00DaA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/83f977-82b8-4695-9c08-1896555a2f0e/1/gou61vSRaEK74yAoT6_hDK9Z7fA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.228.126.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:4e:8e:e4:66:61:f4:4f:b1:fb:d2:a6:ef:6c:3c:a7:bd:f9:
48:52:9e:31:3f:22:8b:5f:51:7c:98:1a:a5:90:e9:6e:90:9d:
1e:8d:76:9b:10:7b:59:54:46:7d:e9:18:d2:87:6b:be:98:b9:
54:e8:92:34:18:0b:87:96:ef:19:06:32:d3:4b:63:5a:35:97:
0c:50:66:4c:4a:eb:3b:9f:2f:6f:30:ce:5a:79:f2:e7:f9:14:
1c:15:64:a1:02:d0:57:08:0a:9c:53:17:1a:e5:4c:32:5d:fa:
ec:76:12:a7:5d:0d:67:6c:8d:8a:83:34:69:fc:3b:29:91:45:
a0:fc:29:68:b7:38:58:21:d9:aa:75:a9:80:48:bb:7d:f1:06:
bb:a5:cb:4c:49:c9:c1:d6:0a:9f:9b:4a:f9:d0:be:d9:4f:a5:
80:db:ca:42:6c:01:01:08:b8:56:98:cb:3b:62:2b:b6:71:b6:
e1:84:91:13:c6:3b:9b:91:59:f0:a1:e9:59:5c:9e:dd:98:76:
12:c6:19:b6:68:40:d0:fb:36:e9:b4:d8:cd:25:bf:c0:ac:2c:
ff:7f:0f:93:c7:10:6e:c8:ee:08:1f:c8:48:dc:3d:e8:66:a9:
cd:6c:7d:f1:89:a9:e5:d7:27:9e:45:70:fa:3f:0e:b1:1e:3b:
cc:af:75:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 20 20:30:12 2024 by rpki-client on console.sobornost.net