Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/uc4T8v6gMa7YK6S6y2A34CVUC68.roa
File: uc4T8v6gMa7YK6S6y2A34CVUC68.roa (raw, json)
Hash identifier: lfatLI/HqCtwIPzmRHeLB8wZjSxWjjW4mVI8OCq5bPc=
Subject key identifier: B9:CE:13:F2:FE:A0:31:AE:D8:2B:A4:BA:CB:60:37:E0:25:54:0B:AF
Certificate issuer: /CN=f0c104041691dc384f3b1a8cdf95c96628ea6daf
Certificate serial: 0190978ACD7B5A5BFCD6B0F522158015A0E3
Authority key identifier: F0:C1:04:04:16:91:DC:38:4F:3B:1A:8C:DF:95:C9:66:28:EA:6D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8MEEBBaR3DhPOxqM35XJZijqba8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/uc4T8v6gMa7YK6S6y2A34CVUC68.roa
Signing time: Tue 09 Jul 2024 12:49:34 +0000
ROA not before: Tue 09 Jul 2024 12:49:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204203
IP address blocks: 95.38.219.0/24 maxlen: 24
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:97:8a:cd:7b:5a:5b:fc:d6:b0:f5:22:15:80:15:a0:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0c104041691dc384f3b1a8cdf95c96628ea6daf
Validity
Not Before: Jul 9 12:49:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b9ce13f2fea031aed82ba4bacb6037e025540baf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:17:02:02:dc:ab:aa:c7:8d:ca:e1:62:56:21:
93:69:8d:95:36:bf:4a:14:0c:85:80:b0:31:bb:2e:
6f:52:26:c2:89:e5:c9:c6:a1:59:ee:ea:7d:c9:eb:
aa:f3:d8:4a:87:b0:43:88:ce:40:bc:f8:d0:64:07:
8e:5b:5c:7c:39:7d:7d:c9:07:fd:14:ba:6e:f7:04:
5c:7e:81:99:e7:aa:dd:94:33:6e:a8:b3:e2:5a:ed:
5e:0c:18:ef:08:1e:54:c3:fd:25:29:ce:e3:f0:d8:
f3:a0:cf:a7:1d:01:98:27:e1:23:9f:5e:1f:89:b8:
35:a7:3c:6a:28:61:90:75:b2:3e:c6:9d:89:73:50:
d9:f7:c7:79:88:02:b3:65:cb:0a:b2:47:a6:07:87:
2d:a4:03:87:59:a8:94:6e:f2:3e:3d:3c:b2:b8:42:
61:ee:ea:3e:ee:bb:5f:f7:81:e8:56:de:d4:bb:8b:
b7:65:e7:4b:2f:3c:47:dc:d5:79:57:24:7f:2b:f9:
60:39:8f:f4:de:b6:87:9b:25:6e:e8:77:6f:14:c1:
2b:64:84:78:53:bf:67:07:ca:dc:54:33:b7:60:5e:
dc:9c:1a:3e:5c:8a:15:76:73:9a:e3:1a:1e:5c:95:
89:5e:96:b1:99:8a:86:26:cf:8b:30:7e:9a:95:ee:
05:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:CE:13:F2:FE:A0:31:AE:D8:2B:A4:BA:CB:60:37:E0:25:54:0B:AF
X509v3 Authority Key Identifier:
keyid:F0:C1:04:04:16:91:DC:38:4F:3B:1A:8C:DF:95:C9:66:28:EA:6D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8MEEBBaR3DhPOxqM35XJZijqba8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/uc4T8v6gMa7YK6S6y2A34CVUC68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/8MEEBBaR3DhPOxqM35XJZijqba8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.38.219.0/24
Signature Algorithm: sha256WithRSAEncryption
49:ea:fd:c8:93:ab:b0:df:da:90:91:20:75:00:e1:36:80:bd:
5a:b5:e3:64:13:f3:5c:25:8b:61:08:59:23:c8:34:12:34:59:
15:af:42:4e:3c:52:32:0d:5d:0d:a5:6c:0a:f3:9d:e3:17:91:
42:2c:2c:83:98:35:4d:81:cf:d8:0f:ac:d1:d5:cc:73:a3:78:
bf:3e:90:e4:18:9d:6d:07:27:d6:04:7c:cc:19:f6:a6:71:7e:
fc:77:36:1b:01:af:75:35:ed:51:6d:78:0a:6a:10:7b:0f:4b:
d3:8e:bf:4e:52:4d:3f:3d:2f:02:f7:12:6f:f3:80:8e:db:d9:
b7:34:01:ed:92:93:cc:d6:ec:34:4f:f7:57:b6:0c:41:0d:34:
08:55:93:37:5e:ec:f1:e2:8a:7d:7a:a3:ae:0e:a4:bb:72:a2:
e4:3b:ee:2c:1f:04:c2:a4:f4:6d:90:17:9f:84:a3:77:5b:13:
30:8e:6c:90:97:d8:1e:84:a7:0e:ea:5c:c3:95:31:d7:43:25:
a4:12:c4:b2:4b:d1:05:8f:52:bc:8e:6f:7a:c6:20:47:8f:cf:
9f:d6:61:82:43:79:05:17:6f:61:f8:06:a7:0a:74:97:08:d6:
f2:a4:4a:da:c6:61:4a:cf:86:a8:0c:2a:51:29:e0:15:0e:de:
d7:14:db:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 14 08:36:27 2024 by rpki-client on console.sobornost.net