Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/bb6e7e-ab1d-4da5-9c96-ff68e9225f7d/1/x-qNzxuFviu5rUOoqw9kan3Ncc8.roa
File: x-qNzxuFviu5rUOoqw9kan3Ncc8.roa (raw, json)
Hash identifier: 7GYr0XOQkvy5DMA4WcDHtK2ETUTvKpMLe3/Oh7G9YOs=
Subject key identifier: C7:EA:8D:CF:1B:85:BE:2B:B9:AD:43:A8:AB:0F:64:6A:7D:CD:71:CF
Certificate issuer: /CN=9334a82fdc08f0e8de5d848d377e0cc5d97799bf
Certificate serial: 019206E6E8588B00457311DED16D0DB10720
Authority key identifier: 93:34:A8:2F:DC:08:F0:E8:DE:5D:84:8D:37:7E:0C:C5:D9:77:99:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kzSoL9wI8OjeXYSNN34Mxdl3mb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/bb6e7e-ab1d-4da5-9c96-ff68e9225f7d/1/x-qNzxuFviu5rUOoqw9kan3Ncc8.roa
Signing time: Wed 18 Sep 2024 20:50:48 +0000
ROA not before: Wed 18 Sep 2024 20:50:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57928
IP address blocks: 185.49.120.0/23 maxlen: 24
185.49.122.0/24 maxlen: 24
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:06:e6:e8:58:8b:00:45:73:11:de:d1:6d:0d:b1:07:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9334a82fdc08f0e8de5d848d377e0cc5d97799bf
Validity
Not Before: Sep 18 20:50:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c7ea8dcf1b85be2bb9ad43a8ab0f646a7dcd71cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:3e:5a:27:3c:69:3a:6c:70:24:06:0f:1c:68:
81:99:91:b8:39:d9:b3:4e:a0:aa:a3:6c:a8:76:b4:
95:e5:f8:59:18:07:5f:7d:a2:b4:dd:ac:da:fe:4c:
4c:c5:a7:32:92:d5:a1:bc:a5:fc:ed:a1:fe:10:7a:
3a:5c:f8:e4:21:de:ea:f8:65:67:77:5e:70:32:fb:
1b:5c:18:99:f2:a7:5f:d0:89:9e:84:3f:3a:72:ab:
e7:67:73:69:a9:61:fa:a0:56:30:8d:e5:72:9a:f5:
9b:6e:e6:a6:9c:ae:9e:04:58:29:bc:52:4f:84:eb:
41:c7:8a:eb:13:be:5f:53:7d:25:c2:e1:a1:82:fa:
0d:f5:6c:47:65:3e:a2:28:c0:4a:6a:df:36:b5:9f:
74:9f:ee:26:14:d7:c2:73:42:02:8a:0b:fc:23:5f:
79:b3:fe:06:ff:28:61:8d:61:dd:f4:ca:30:34:cb:
ce:0b:bf:01:81:a6:51:67:68:07:b8:7b:36:21:48:
be:1a:1d:6f:4a:74:92:ef:08:e0:56:e9:96:f0:2e:
7b:e4:ef:16:d3:ab:89:05:96:b2:0f:c3:7c:16:6d:
7a:de:2a:80:40:76:60:08:95:6a:6f:5e:75:69:a2:
bf:36:5d:dc:6a:e4:99:7b:94:cd:0d:dc:1b:d6:f2:
88:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:EA:8D:CF:1B:85:BE:2B:B9:AD:43:A8:AB:0F:64:6A:7D:CD:71:CF
X509v3 Authority Key Identifier:
keyid:93:34:A8:2F:DC:08:F0:E8:DE:5D:84:8D:37:7E:0C:C5:D9:77:99:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kzSoL9wI8OjeXYSNN34Mxdl3mb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bb6e7e-ab1d-4da5-9c96-ff68e9225f7d/1/x-qNzxuFviu5rUOoqw9kan3Ncc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bb6e7e-ab1d-4da5-9c96-ff68e9225f7d/1/kzSoL9wI8OjeXYSNN34Mxdl3mb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.49.120.0-185.49.122.255
Signature Algorithm: sha256WithRSAEncryption
66:34:a9:1e:d9:b9:9d:b0:81:f5:13:da:7d:32:6b:15:f2:2d:
dd:63:63:da:65:80:c2:f5:34:d1:ce:d3:db:75:06:42:d9:d4:
f4:52:77:d9:8d:16:fc:07:e9:54:bd:fb:d4:b5:7f:62:70:87:
27:77:34:02:7d:40:d5:ab:ce:53:eb:b4:03:d0:a9:d2:b8:8c:
25:f7:dc:5c:a0:e6:91:ee:56:bd:60:0f:4e:ed:a8:87:3a:09:
0b:5a:c0:30:60:56:71:88:4d:2a:e0:c2:53:c2:4e:83:58:2e:
0a:ff:0d:32:5f:74:55:72:e6:d3:58:05:e3:15:2c:10:54:6a:
bb:54:ac:66:a4:85:56:3d:28:59:80:43:b3:bb:17:22:4a:9d:
ce:34:cb:6b:a7:58:67:e2:f6:79:f0:9d:01:8f:a3:1b:10:6e:
90:59:bd:a0:f2:8d:1a:8f:aa:ab:2a:e9:d1:8f:8c:b7:7a:35:
91:7e:3a:2e:db:02:e1:66:34:49:82:28:ef:66:73:cc:64:b8:
fe:0c:ac:e9:23:9e:4d:fc:73:63:4d:ed:a0:a2:d3:ab:67:c8:
98:aa:e1:c1:58:a9:56:70:be:54:c5:a6:85:84:a5:79:6f:08:
16:ec:f0:b3:7f:85:64:fb:fe:ae:f0:f3:ab:78:12:d2:b8:90:
ce:79:40:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 27 18:09:30 2024 by rpki-client on console.sobornost.net