Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/771X_XWmy564Rx4iOqBQ8pvYEYo.roa
File: 771X_XWmy564Rx4iOqBQ8pvYEYo.roa (raw, json)
Hash identifier: SAem5rwQjE6xbVahfaoTsTDpNpVEZHOpRAPi34Pbsdc=
Subject key identifier: EF:BD:57:FD:75:A6:CB:9E:B8:47:1E:22:3A:A0:50:F2:9B:D8:11:8A
Certificate issuer: /CN=abbad3de831da94222c1add104caf4c3247689ac
Certificate serial: 0192047C01DA1166449A6CABF051ACFE5228
Authority key identifier: AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/771X_XWmy564Rx4iOqBQ8pvYEYo.roa
Signing time: Wed 18 Sep 2024 09:34:48 +0000
ROA not before: Wed 18 Sep 2024 09:34:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12548
IP address blocks: 212.68.160.0/22 maxlen: 22
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:04:7c:01:da:11:66:44:9a:6c:ab:f0:51:ac:fe:52:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abbad3de831da94222c1add104caf4c3247689ac
Validity
Not Before: Sep 18 09:34:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=efbd57fd75a6cb9eb8471e223aa050f29bd8118a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:5e:6c:0e:dc:98:3a:de:b9:93:13:50:8e:f7:
b4:0f:fa:b8:64:5c:6a:48:d8:85:8a:99:b2:bf:a4:
28:0a:d5:fd:32:04:45:8f:d1:34:91:a4:42:25:11:
cf:0e:35:d4:2f:8c:8d:9e:90:5f:0e:f2:63:85:29:
23:a1:87:3b:c0:fc:60:4d:e7:72:90:02:32:dd:c4:
2a:60:99:60:e2:fc:cf:00:a5:1b:fd:9c:35:c2:85:
2a:d4:8d:72:7a:32:0f:7f:da:42:0a:2b:9b:2f:4c:
8f:09:a4:15:96:01:93:72:68:cc:e8:fb:44:83:75:
6f:45:64:74:d5:8f:f5:d4:0d:6a:f6:0a:f3:42:5b:
3b:a4:c9:fa:94:2c:3a:ad:97:f3:30:f4:4d:76:7e:
f3:36:89:ff:bb:c4:a2:8b:51:31:4b:01:68:ad:5d:
6d:b0:e5:a4:4a:67:9a:76:a9:85:09:ab:bf:89:ec:
52:c4:e7:5e:88:8b:e0:74:22:6b:b8:0d:f6:b0:81:
a2:b6:58:85:87:65:dd:b3:f3:f3:21:3c:08:df:a6:
75:77:4a:86:3a:f9:1b:d6:18:50:0f:68:b4:f7:4d:
40:c1:d4:3d:d4:e7:ab:0b:c9:f0:de:93:a1:f3:0d:
2e:1b:76:66:7f:5c:e6:00:e0:c5:42:4e:67:0c:a0:
fa:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:BD:57:FD:75:A6:CB:9E:B8:47:1E:22:3A:A0:50:F2:9B:D8:11:8A
X509v3 Authority Key Identifier:
keyid:AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/771X_XWmy564Rx4iOqBQ8pvYEYo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.68.160.0/22
Signature Algorithm: sha256WithRSAEncryption
77:a4:93:cc:35:a8:5d:24:28:08:ab:c4:34:f3:67:9a:6a:4d:
d1:4a:b7:b7:3e:d8:87:82:1b:bd:e5:a4:ad:4b:29:53:ad:cb:
80:43:60:ea:e5:8a:99:dd:3c:0a:3a:61:5f:2c:d0:15:6e:d9:
63:93:d0:03:b8:93:79:49:52:43:b5:97:1e:bd:be:2c:d0:d2:
82:2d:2a:95:22:1c:1b:ab:c6:51:d5:10:cf:f7:d2:4b:f5:16:
2f:64:a7:cb:e6:a6:f8:c5:09:3d:22:20:af:ad:62:c1:1a:56:
55:4e:52:05:dc:c7:e4:84:65:e2:5e:98:f4:9b:8b:55:09:c5:
14:ef:6f:9f:fc:03:4d:fb:54:6a:eb:9c:46:e0:aa:ca:e0:c7:
8d:bb:ce:e5:8a:52:99:12:3d:30:89:8a:bb:24:32:7a:4e:63:
e0:b7:26:5f:ef:e0:99:19:28:69:8c:9c:68:3b:5a:55:90:29:
46:b1:18:ec:0c:bb:c6:ae:2a:86:0c:a5:b3:9c:85:d3:2c:42:
9a:86:2c:08:1d:1e:cf:d0:5e:60:de:9f:e5:73:c2:6b:5e:f4:
c9:f9:7c:cc:d2:6c:2d:6c:25:24:4b:0f:32:ee:3c:17:2c:1a:
ca:e3:ee:da:a6:1c:8c:0e:d2:d9:26:f7:31:92:7d:61:f9:92:
b0:82:43:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 27 18:08:57 2024 by rpki-client on console.sobornost.net