Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/40b8f6-685d-4e86-97d8-6e31347d04d9/1/uHehYSpkELxI49VUc3S41Ib136g.roa
File: uHehYSpkELxI49VUc3S41Ib136g.roa (raw, json)
Hash identifier: 0XE5FUR7/kW3a9lK6SwRo3F53pgXfdhqjFlFl7qGWqY=
Subject key identifier: B8:77:A1:61:2A:64:10:BC:48:E3:D5:54:73:74:B8:D4:86:F5:DF:A8
Certificate issuer: /CN=58dd42ab3460279709c134b570f76e34e4d95b91
Certificate serial: 0191040B72AC3007E2966283321C2B20BCBB
Authority key identifier: 58:DD:42:AB:34:60:27:97:09:C1:34:B5:70:F7:6E:34:E4:D9:5B:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WN1CqzRgJ5cJwTS1cPduNOTZW5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/40b8f6-685d-4e86-97d8-6e31347d04d9/1/uHehYSpkELxI49VUc3S41Ib136g.roa
Signing time: Tue 30 Jul 2024 14:29:04 +0000
ROA not before: Tue 30 Jul 2024 14:29:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59721
IP address blocks: 195.80.158.0/24 maxlen: 24
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:04:0b:72:ac:30:07:e2:96:62:83:32:1c:2b:20:bc:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58dd42ab3460279709c134b570f76e34e4d95b91
Validity
Not Before: Jul 30 14:29:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b877a1612a6410bc48e3d5547374b8d486f5dfa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:1e:17:2a:bf:7b:61:10:57:c3:d2:59:21:6c:
69:41:b6:01:a9:82:47:76:79:3a:0d:01:41:93:37:
8c:59:5c:ed:37:02:84:d1:a4:35:e3:6a:67:f9:27:
22:21:32:54:4f:a1:68:d4:f6:49:60:c2:2e:cb:07:
5d:3c:84:23:08:2c:60:32:a9:25:66:8e:df:b2:bf:
a3:bb:57:d2:1e:a3:e8:29:c1:d9:9a:e3:1c:42:89:
07:58:ec:41:b2:24:24:29:18:3d:25:93:93:bd:e0:
9f:ba:42:fe:75:f0:f5:a6:5f:07:51:5a:2f:3a:7a:
b2:fe:98:61:00:f7:39:6c:67:4a:7c:63:35:6b:d0:
0d:7b:4b:48:79:55:ba:fc:09:56:ee:e9:5d:bc:c0:
3c:c5:a1:0a:94:da:ed:d8:3f:24:e5:bf:78:d1:2e:
4c:3f:55:a0:5e:c5:d2:9f:fb:03:ae:ba:9c:f4:93:
27:5e:a1:81:04:73:07:77:bf:78:c9:36:78:37:86:
02:c6:0d:e7:4b:20:34:31:6e:cd:4b:a2:47:4b:b6:
75:ed:bf:24:8c:34:90:7d:5a:eb:df:a4:2f:d5:2b:
fe:36:39:81:10:89:c7:76:e3:bc:92:bf:dc:ee:2b:
63:0f:26:51:ce:d1:db:80:04:f8:50:a6:d4:5d:c4:
9a:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:77:A1:61:2A:64:10:BC:48:E3:D5:54:73:74:B8:D4:86:F5:DF:A8
X509v3 Authority Key Identifier:
keyid:58:DD:42:AB:34:60:27:97:09:C1:34:B5:70:F7:6E:34:E4:D9:5B:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WN1CqzRgJ5cJwTS1cPduNOTZW5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/40b8f6-685d-4e86-97d8-6e31347d04d9/1/uHehYSpkELxI49VUc3S41Ib136g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/40b8f6-685d-4e86-97d8-6e31347d04d9/1/WN1CqzRgJ5cJwTS1cPduNOTZW5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.80.158.0/24
Signature Algorithm: sha256WithRSAEncryption
65:14:2c:93:c8:57:36:e2:00:77:8a:2a:3b:29:e7:13:7a:f0:
ce:25:7f:9d:04:2d:17:ec:06:d2:7d:34:b2:ac:4c:4b:a8:18:
1b:19:1c:59:b7:3e:df:75:fc:e3:d2:d3:97:1c:f5:cc:ef:79:
4d:0d:b2:a9:90:db:fc:5f:0a:43:39:0c:26:8f:d0:44:f6:e5:
d5:1a:0c:4f:a1:0d:7a:b5:fc:0d:ba:12:02:40:3e:21:68:b1:
4d:5d:62:a7:9f:73:21:7d:0b:97:59:07:70:b2:85:4a:41:af:
9e:5e:38:02:b6:e5:7d:27:d6:63:a7:6a:14:18:29:11:c2:86:
72:ab:da:87:4e:41:ff:fb:55:37:8b:6c:b5:44:4f:3d:03:20:
ae:da:d0:e1:e0:3f:e4:b2:30:4b:54:a2:1e:2c:6f:8f:df:83:
25:63:56:12:b2:93:82:23:60:9e:de:7e:89:af:f6:34:78:b7:
e8:29:2c:39:53:96:0d:91:33:34:8a:c1:01:ef:26:ac:b3:16:
e7:97:0a:59:82:52:99:cb:f2:13:d2:ff:02:bd:e1:d3:88:d6:
b6:07:95:6c:57:fc:ef:ac:9a:7c:61:e1:91:4d:49:fc:f1:a3:
66:3a:3b:9b:c9:f1:97:b3:c2:cc:c6:a3:9b:d4:4b:4f:58:85:
ee:50:95:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 10 19:11:16 2024 by rpki-client on console.sobornost.net