Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/40b8f6-685d-4e86-97d8-6e31347d04d9/1/41RPbiIR1MKPlqaBl3Vbrq8EfOI.roa
File: 41RPbiIR1MKPlqaBl3Vbrq8EfOI.roa (raw, json)
Hash identifier: XjmTPJIfbL1zadfiHmAH27aGxirRI4yFIDCbZfy4+Z0=
Subject key identifier: E3:54:4F:6E:22:11:D4:C2:8F:96:A6:81:97:75:5B:AE:AF:04:7C:E2
Certificate issuer: /CN=58dd42ab3460279709c134b570f76e34e4d95b91
Certificate serial: 0190EB8FBF7153E40EB6DA7A1ABE4E41686A
Authority key identifier: 58:DD:42:AB:34:60:27:97:09:C1:34:B5:70:F7:6E:34:E4:D9:5B:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WN1CqzRgJ5cJwTS1cPduNOTZW5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/40b8f6-685d-4e86-97d8-6e31347d04d9/1/41RPbiIR1MKPlqaBl3Vbrq8EfOI.roa
Signing time: Thu 25 Jul 2024 20:23:04 +0000
ROA not before: Thu 25 Jul 2024 20:23:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29152
IP address blocks: 195.80.152.0/24 maxlen: 24
195.80.153.0/24 maxlen: 24
195.80.154.0/24 maxlen: 24
195.80.155.0/24 maxlen: 24
195.80.156.0/24 maxlen: 24
195.80.157.0/24 maxlen: 24
195.80.159.0/24 maxlen: 24
2a00:1b11:115::/48 maxlen: 48
2a00:1b11:116::/48 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:eb:8f:bf:71:53:e4:0e:b6:da:7a:1a:be:4e:41:68:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58dd42ab3460279709c134b570f76e34e4d95b91
Validity
Not Before: Jul 25 20:23:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e3544f6e2211d4c28f96a68197755baeaf047ce2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:c7:6d:e5:ff:e0:53:1a:f1:ad:c0:ec:7e:ba:
ab:f9:46:c2:66:9a:36:4e:94:0a:59:c1:18:5f:47:
a0:bf:86:7a:e8:f3:be:5b:62:15:43:1d:91:3b:1c:
94:97:14:d4:89:fc:90:4e:a3:33:23:dd:76:d0:39:
16:72:5e:c1:9e:a4:bb:5b:33:7a:75:26:4a:74:95:
f9:df:3f:1f:33:44:5a:8d:cf:52:12:03:bc:80:9b:
6a:db:9e:c0:d2:22:d8:d9:5d:9c:a3:a3:8b:09:32:
5d:7d:08:31:ab:35:f2:6f:c8:9b:0e:9d:68:65:9a:
27:13:ee:26:94:84:bb:2f:e2:2f:73:e8:47:4f:07:
77:54:a4:2e:8f:8c:be:f7:28:2c:57:63:c6:cc:14:
bf:e6:24:5d:ad:69:52:e4:c7:8e:97:f0:ff:b8:9e:
2c:ea:42:01:85:bf:4e:de:36:47:98:e7:39:4a:e2:
31:54:49:18:8a:31:c2:d5:6f:20:a0:bb:fe:42:fc:
06:c2:d1:07:95:17:df:27:2c:b4:76:84:d5:20:5d:
b8:48:bf:71:1c:d7:62:72:6f:22:35:dc:b2:b0:16:
20:e1:d3:0a:0f:27:50:00:82:5f:41:9c:da:af:9f:
35:82:c1:9f:19:e6:38:ba:93:f8:76:74:80:a2:bf:
51:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:54:4F:6E:22:11:D4:C2:8F:96:A6:81:97:75:5B:AE:AF:04:7C:E2
X509v3 Authority Key Identifier:
keyid:58:DD:42:AB:34:60:27:97:09:C1:34:B5:70:F7:6E:34:E4:D9:5B:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WN1CqzRgJ5cJwTS1cPduNOTZW5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/40b8f6-685d-4e86-97d8-6e31347d04d9/1/41RPbiIR1MKPlqaBl3Vbrq8EfOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/40b8f6-685d-4e86-97d8-6e31347d04d9/1/WN1CqzRgJ5cJwTS1cPduNOTZW5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.80.152.0-195.80.157.255
195.80.159.0/24
IPv6:
2a00:1b11:115::-2a00:1b11:116:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
b7:a0:bb:d5:d3:d1:62:38:92:4e:b8:60:45:cb:84:aa:ad:62:
50:47:6c:bc:20:a0:fd:34:b6:6c:f3:f2:31:02:fe:32:28:52:
c7:d2:be:c4:6d:21:8c:4c:96:37:fa:a5:ae:b1:cf:03:88:4a:
31:38:18:15:74:3e:e9:80:ae:3b:81:88:34:a3:49:1a:f1:bf:
15:f7:66:ac:72:5c:a5:83:13:d6:ea:bf:3b:9c:7b:b2:18:81:
4f:97:85:ed:d2:d2:3f:ef:66:cd:78:a8:1c:49:ce:8c:6f:10:
96:f2:e3:47:48:1b:c9:cb:34:72:2b:8c:79:26:ce:6d:d5:34:
2f:2d:8b:ef:fe:b5:8a:52:0f:84:03:99:5c:d2:cf:9a:bc:30:
e9:82:29:34:76:10:79:33:ff:c9:5a:80:50:d9:aa:47:7a:33:
6b:bf:b9:72:b8:24:98:71:0e:f7:b2:06:7e:f0:67:17:98:0a:
96:2d:ed:c5:07:b6:90:53:fc:68:a5:0b:87:a0:f3:3a:78:12:
90:8a:c7:46:f5:54:dd:79:9c:ff:58:51:c4:d6:ac:a4:0f:fc:
61:55:2c:0b:75:35:ac:7e:ec:63:ae:24:61:c7:e8:e3:9d:fe:
32:b8:9e:73:e0:85:16:c5:bd:02:99:6e:ba:c8:b8:ce:14:18:
73:36:d0:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 10 19:11:16 2024 by rpki-client on console.sobornost.net