Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/eb3e9b-6db5-46c6-9aa1-eb87869bd1c9/1/KqC6G3og_Yv3BBH_mABq7cLdbc8.roa
File: KqC6G3og_Yv3BBH_mABq7cLdbc8.roa (raw, json)
Hash identifier: p7+MmqrIdrox5IpLOTZuF0ysz96r5RC8L2fRCspuKYY=
Subject key identifier: 2A:A0:BA:1B:7A:20:FD:8B:F7:04:11:FF:98:00:6A:ED:C2:DD:6D:CF
Certificate issuer: /CN=fbf8cd5d24a08b5a8afb57c9e604d193bc8cae20
Certificate serial: 0191701D1FE339B308C5DA8488E0388FBAFC
Authority key identifier: FB:F8:CD:5D:24:A0:8B:5A:8A:FB:57:C9:E6:04:D1:93:BC:8C:AE:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-_jNXSSgi1qK-1fJ5gTRk7yMriA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/eb3e9b-6db5-46c6-9aa1-eb87869bd1c9/1/KqC6G3og_Yv3BBH_mABq7cLdbc8.roa
Signing time: Tue 20 Aug 2024 14:07:22 +0000
ROA not before: Tue 20 Aug 2024 14:07:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203316
IP address blocks: 185.138.212.0/23 maxlen: 23
185.138.214.0/23 maxlen: 23
185.138.214.0/24 maxlen: 24
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:70:1d:1f:e3:39:b3:08:c5:da:84:88:e0:38:8f:ba:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbf8cd5d24a08b5a8afb57c9e604d193bc8cae20
Validity
Not Before: Aug 20 14:07:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2aa0ba1b7a20fd8bf70411ff98006aedc2dd6dcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ff:f9:05:19:01:fc:9b:e3:73:12:2a:f3:cf:
89:23:ad:79:8c:73:44:a8:05:0f:a3:5c:11:70:21:
58:fc:74:dd:ec:b1:26:c1:67:5f:06:15:ab:58:77:
10:ee:54:91:96:a4:bd:0a:91:09:aa:eb:2f:b3:15:
40:c2:0c:71:35:8c:d9:7e:c0:0a:a4:8d:2d:d2:65:
3c:bf:b2:62:e1:9f:eb:f0:22:2b:d8:56:ce:09:36:
a2:fe:c2:e7:76:8a:6c:c6:be:fa:d1:d9:cf:04:cb:
df:fd:72:2c:67:b3:31:67:ee:32:43:d1:80:ed:88:
16:22:ad:56:0b:70:71:0f:6c:cc:a1:9b:a2:c2:09:
72:a8:f5:78:f5:40:ba:68:ea:26:dd:19:7e:aa:0b:
71:e8:3e:f7:48:20:c7:ea:a4:3c:4d:8d:f6:3d:63:
87:f2:6c:73:4d:42:c0:9e:e9:20:5c:89:fd:68:c7:
2a:04:31:0d:ba:e4:c2:fe:21:9e:82:70:f8:87:26:
4e:b2:a8:9d:69:1a:82:9a:e0:f8:74:d8:14:40:5e:
68:ed:40:69:0b:08:60:3b:ae:dd:5b:f0:62:07:4c:
fa:3f:fe:89:87:8f:36:9c:4e:f6:03:31:3e:94:59:
a3:90:d5:03:ea:e0:82:1f:3a:ad:57:8d:02:ee:9b:
9f:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:A0:BA:1B:7A:20:FD:8B:F7:04:11:FF:98:00:6A:ED:C2:DD:6D:CF
X509v3 Authority Key Identifier:
keyid:FB:F8:CD:5D:24:A0:8B:5A:8A:FB:57:C9:E6:04:D1:93:BC:8C:AE:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-_jNXSSgi1qK-1fJ5gTRk7yMriA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/eb3e9b-6db5-46c6-9aa1-eb87869bd1c9/1/KqC6G3og_Yv3BBH_mABq7cLdbc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/eb3e9b-6db5-46c6-9aa1-eb87869bd1c9/1/1-_jNXSSgi1qK-1fJ5gTRk7yMriA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.212.0/22
Signature Algorithm: sha256WithRSAEncryption
60:d3:80:c3:fa:5e:52:36:48:86:9a:69:ea:0d:03:df:7b:66:
6b:04:36:9a:d4:6a:19:12:62:ba:4a:21:e7:69:1d:25:7a:87:
7f:83:d3:29:bb:08:9a:ee:44:06:16:b2:2f:4c:50:87:e0:9e:
28:ca:54:13:5f:64:1c:5a:65:80:7e:ec:33:5e:fd:b4:2d:1c:
cb:f2:d2:70:df:d9:0c:2d:35:3c:2f:55:16:db:d9:6f:25:d8:
57:85:fd:b0:3c:99:91:e0:16:6e:77:42:a2:0c:b5:41:31:3f:
97:a3:00:58:30:74:dd:b4:91:fc:6c:15:cd:58:ae:38:1c:45:
31:fc:a2:41:dd:d3:74:78:c1:99:63:39:43:b4:e1:87:b6:81:
da:8e:0e:5a:f8:fd:f0:ed:56:62:5e:9a:40:1c:02:35:d7:92:
e4:2a:3b:6b:d8:c3:2e:b5:88:0c:2d:34:2a:43:3f:14:15:f5:
21:07:5d:80:67:a0:b5:15:b2:5d:80:cd:cc:de:5b:a6:1e:50:
d3:6c:4f:e4:7b:22:7c:f4:e2:f8:cc:88:9d:7a:57:a2:03:f7:
f8:95:ec:d6:43:3d:85:09:84:7a:5b:f7:11:e1:3a:f7:66:ea:
44:4e:68:28:ee:56:96:cf:ad:7b:d0:26:0e:7f:cf:1b:4d:37:
81:af:d2:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 27 18:09:02 2024 by rpki-client on console.sobornost.net