Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/3606f5-17e1-4319-9703-ae401a37c044/1/rIo7gZj286m4-_LMNpHFnl0FVNk.roa
File: rIo7gZj286m4-_LMNpHFnl0FVNk.roa (raw, json)
Hash identifier: 6kcCWxae9P4RKAUs4NlzeksGMrP9hprvY4pCbouOc0Q=
Subject key identifier: AC:8A:3B:81:98:F6:F3:A9:B8:FB:F2:CC:36:91:C5:9E:5D:05:54:D9
Certificate issuer: /CN=cf9833261697652c35547e98fc05a7e2294edbc7
Certificate serial: 019102926700A4EB722330D4644B924B2A56
Authority key identifier: CF:98:33:26:16:97:65:2C:35:54:7E:98:FC:05:A7:E2:29:4E:DB:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z5gzJhaXZSw1VH6Y_AWn4ilO28c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/3606f5-17e1-4319-9703-ae401a37c044/1/rIo7gZj286m4-_LMNpHFnl0FVNk.roa
Signing time: Tue 30 Jul 2024 07:37:14 +0000
ROA not before: Tue 30 Jul 2024 07:37:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44928
IP address blocks: 45.149.168.0/22 maxlen: 22
2a0f:6600::/29 maxlen: 29
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:02:92:67:00:a4:eb:72:23:30:d4:64:4b:92:4b:2a:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf9833261697652c35547e98fc05a7e2294edbc7
Validity
Not Before: Jul 30 07:37:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ac8a3b8198f6f3a9b8fbf2cc3691c59e5d0554d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:5f:33:76:f9:0d:09:35:9c:aa:7d:f2:a7:d4:
a9:2b:8a:ca:51:aa:33:a0:7b:67:6c:57:b5:d5:b6:
fb:90:d6:de:34:a7:64:d2:57:fe:24:39:66:28:85:
11:93:7c:6b:95:b9:b3:70:63:11:53:d7:68:2d:77:
05:8e:86:5e:00:dd:c1:27:92:80:91:42:0b:9d:7c:
f2:ea:52:ff:6a:36:f1:0c:79:f1:ff:77:59:cb:f1:
35:5a:32:7f:d3:23:03:6b:f5:6e:b2:df:3c:31:61:
8e:f8:b4:8a:92:ef:8d:cb:43:11:de:c1:d7:2f:4b:
00:08:4a:46:f9:94:31:5d:9d:17:fb:54:42:6d:36:
6b:5b:59:7a:bd:30:5f:f8:67:89:6d:b1:02:0d:91:
1d:30:86:60:99:8e:0f:df:1d:88:ba:93:09:31:83:
ab:02:13:fe:03:4f:fe:47:44:56:31:d6:ad:67:41:
af:46:db:99:e2:b2:9d:9c:c9:44:3b:6e:c7:e8:63:
b8:5a:43:d8:05:d2:4f:e7:d3:3f:6a:2f:76:dc:99:
a5:0b:21:8a:1b:83:24:75:5c:02:ce:e1:82:65:96:
03:82:fa:d8:f5:2e:7f:e3:73:fe:0d:85:a6:df:2c:
9f:4c:50:12:d5:aa:11:5e:7d:86:23:82:47:94:c7:
e2:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:8A:3B:81:98:F6:F3:A9:B8:FB:F2:CC:36:91:C5:9E:5D:05:54:D9
X509v3 Authority Key Identifier:
keyid:CF:98:33:26:16:97:65:2C:35:54:7E:98:FC:05:A7:E2:29:4E:DB:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z5gzJhaXZSw1VH6Y_AWn4ilO28c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/3606f5-17e1-4319-9703-ae401a37c044/1/rIo7gZj286m4-_LMNpHFnl0FVNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/3606f5-17e1-4319-9703-ae401a37c044/1/z5gzJhaXZSw1VH6Y_AWn4ilO28c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.168.0/22
IPv6:
2a0f:6600::/29
Signature Algorithm: sha256WithRSAEncryption
22:97:b3:c8:7f:ae:b7:5c:f6:28:f6:13:11:12:53:4d:98:b6:
ac:3a:e0:d7:6a:f2:a7:ee:c3:34:6c:4e:b8:87:28:25:e3:a3:
c4:e7:ad:48:75:34:d3:d5:e3:03:9d:98:87:01:4e:10:8d:43:
b7:ce:b7:4b:1b:74:57:32:2d:28:50:fb:f8:9e:76:0f:3a:4e:
46:d9:7a:2d:d0:e2:ec:a8:de:35:02:7f:35:99:d9:d0:71:b2:
f8:3f:1b:67:93:fa:e2:51:c2:df:42:ef:19:26:96:6c:03:aa:
fd:b2:58:55:30:6d:7d:67:6a:87:cd:b0:73:6e:66:bf:a7:c6:
19:67:ea:8a:48:4e:e8:2b:2e:4f:4f:e3:7b:d3:0f:b0:f5:f7:
25:85:7f:9e:4e:bd:bd:6d:ca:6c:72:98:22:a4:32:4c:0d:11:
96:bf:38:9e:bf:4c:51:3e:8b:e3:c7:6f:98:ad:18:07:f1:a9:
f5:1e:cd:83:a5:95:02:09:d0:53:b7:ff:d0:20:dc:1e:cd:21:
8b:fc:c3:17:48:15:74:ec:f5:2d:01:d7:6a:e6:84:84:13:f9:
78:b8:8a:3d:cd:35:d4:67:0b:4e:09:60:69:1b:ee:87:9a:66:
ee:6f:75:a3:bd:a7:04:a6:cd:3b:52:db:de:a9:2d:bd:f0:6e:
f2:36:aa:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 20 20:30:16 2024 by rpki-client on console.sobornost.net