Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/85b29b-0ea2-4741-b439-e4b66a3fe5bc/1/_9PataWRtFWMNW9R-56i7vzxFE8.roa
File: _9PataWRtFWMNW9R-56i7vzxFE8.roa (raw, json)
Hash identifier: 96wv2YmIyGPGRE9uV/99CYDWCQCphFfwRpQIKJQsUkY=
Subject key identifier: FF:D3:DA:B5:A5:91:B4:55:8C:35:6F:51:FB:9E:A2:EE:FC:F1:14:4F
Certificate issuer: /CN=7df11a3160db8ce7918bf3ec58b5c5e1e3e93821
Certificate serial: 018CC94C9EA4536E8D4AF250645B82444523
Authority key identifier: 7D:F1:1A:31:60:DB:8C:E7:91:8B:F3:EC:58:B5:C5:E1:E3:E9:38:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffEaMWDbjOeRi_PsWLXF4ePpOCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/85b29b-0ea2-4741-b439-e4b66a3fe5bc/1/_9PataWRtFWMNW9R-56i7vzxFE8.roa
Signing time: Tue 02 Jan 2024 08:31:30 +0000
ROA not before: Tue 02 Jan 2024 08:31:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41504
IP address blocks: 195.3.212.0/22 maxlen: 24
2001:67c:2378::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4c:9e:a4:53:6e:8d:4a:f2:50:64:5b:82:44:45:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df11a3160db8ce7918bf3ec58b5c5e1e3e93821
Validity
Not Before: Jan 2 08:31:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ffd3dab5a591b4558c356f51fb9ea2eefcf1144f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:d3:69:9e:c7:b2:ab:89:ca:6c:4e:d2:93:49:
10:54:19:5c:96:5d:5c:c0:b1:cf:5c:24:ef:4f:4a:
00:14:93:c8:df:6e:9b:64:8e:77:76:5a:67:b6:49:
18:09:2b:8d:c2:83:fc:44:c6:6f:02:5f:89:b2:78:
1a:22:7a:a4:e5:9d:18:86:80:a4:70:fa:93:6b:38:
66:42:79:7e:1c:29:06:a2:bc:32:1e:2a:a4:89:0c:
10:f4:64:50:a5:e4:e7:59:92:79:f0:7a:e3:c1:f2:
5b:14:dc:82:6d:58:e8:79:00:b2:08:0f:f5:17:54:
4b:88:8a:1a:c7:64:d0:5e:a2:ff:a3:8a:24:d5:7e:
a1:9f:0e:a5:a8:5a:fd:29:5c:e3:4b:0f:6f:78:da:
a4:34:d9:7b:d2:f5:4b:70:4d:a7:94:bf:64:cf:28:
cd:e7:b2:3c:9b:45:4e:7b:4b:a1:6b:5c:57:d3:c8:
dd:4a:e4:70:42:89:4d:0d:d0:b8:bc:a6:d2:cb:df:
97:c3:76:25:86:5a:f5:11:e9:9d:6b:0b:21:18:b8:
88:09:44:cc:cd:a9:36:9e:e0:2d:ec:05:16:69:8f:
8c:62:29:e6:5f:fe:8e:8c:8c:98:fc:17:57:8c:64:
a2:13:41:b3:1a:b2:d3:a1:bc:bf:af:45:ca:50:c0:
cb:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:D3:DA:B5:A5:91:B4:55:8C:35:6F:51:FB:9E:A2:EE:FC:F1:14:4F
X509v3 Authority Key Identifier:
keyid:7D:F1:1A:31:60:DB:8C:E7:91:8B:F3:EC:58:B5:C5:E1:E3:E9:38:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffEaMWDbjOeRi_PsWLXF4ePpOCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/85b29b-0ea2-4741-b439-e4b66a3fe5bc/1/_9PataWRtFWMNW9R-56i7vzxFE8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/85b29b-0ea2-4741-b439-e4b66a3fe5bc/1/ffEaMWDbjOeRi_PsWLXF4ePpOCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.3.212.0/22
IPv6:
2001:67c:2378::/48
Signature Algorithm: sha256WithRSAEncryption
64:c3:1e:ca:10:ce:9b:5f:6c:20:24:23:25:77:18:ce:49:01:
99:83:e9:94:5f:6e:0b:94:2d:61:39:fe:3d:ab:46:b2:8c:11:
86:27:9e:cb:90:d4:09:24:b9:e3:4a:ea:ab:49:8d:7b:81:c9:
c4:cd:e9:f7:d2:0f:a4:4a:f3:13:89:03:05:cb:07:e1:fb:9f:
40:1a:a2:d2:fb:44:2e:84:59:25:ab:ed:00:e0:8b:36:4f:70:
50:2c:0a:5e:0f:ad:2b:43:34:06:a2:1a:47:c0:e6:81:1f:65:
74:a1:8d:65:52:b7:2d:f7:d9:1e:f6:2f:b8:00:4f:5a:54:f1:
13:c2:b2:9f:a4:e7:b6:7a:06:b4:91:b5:f8:db:ca:5b:4b:e0:
d0:ee:29:11:d1:77:49:6f:b6:15:8e:9b:0b:9d:e0:54:dd:00:
b5:85:fc:d7:62:ec:28:12:86:e9:f5:fd:a5:77:e9:c9:98:ee:
19:9d:4e:19:74:cf:d4:a9:cd:73:59:ca:b7:fa:86:a9:36:6f:
02:c8:38:ef:ef:32:57:81:b9:e4:cc:71:7e:a1:4c:ab:b0:00:
37:28:5d:a3:75:18:7d:b9:bb:c0:f2:b9:ad:ef:8e:40:a9:19:
c7:4e:16:54:54:9a:fd:23:57:e7:1d:a1:19:62:ed:89:d7:3f:
1b:0c:42:b6
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYzJTJ6kU26NSvJQZFuCREUjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkZjExYTMxNjBkYjhjZTc5MThiZjNlYzU4YjVjNWUxZTNl
OTM4MjEwHhcNMjQwMTAyMDgzMTMwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZmQzZGFiNWE1OTFiNDU1OGMzNTZmNTFmYjllYTJlZWZjZjExNDRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgdNpnseyq4nKbE7Sk0kQVBlcll1c
wLHPXCTvT0oAFJPI326bZI53dlpntkkYCSuNwoP8RMZvAl+JsngaInqk5Z0YhoCk
cPqTazhmQnl+HCkGorwyHiqkiQwQ9GRQpeTnWZJ58HrjwfJbFNyCbVjoeQCyCA/1
F1RLiIoax2TQXqL/o4ok1X6hnw6lqFr9KVzjSw9veNqkNNl70vVLcE2nlL9kzyjN
57I8m0VOe0uha1xX08jdSuRwQolNDdC4vKbSy9+Xw3Ylhlr1EemdawshGLiICUTM
zak2nuAt7AUWaY+MYinmX/6OjIyY/BdXjGSiE0GzGrLToby/r0XKUMDL6QIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFP/T2rWlkbRVjDVvUfueou788RRPMB8GA1UdIwQY
MBaAFH3xGjFg24znkYvz7Fi1xeHj6TghMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmZFYU1XRGJqT2VSaV9Qc1dMWEY0ZVBwT0NFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy84NWIyOWItMGVhMi00NzQxLWI0Mzkt
ZTRiNjZhM2ZlNWJjLzEvXzlQYXRhV1J0RldNTlc5Ui01Nmk3dnp4RkU4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy84NWIyOWItMGVhMi00NzQxLWI0MzktZTRiNjZhM2ZlNWJj
LzEvZmZFYU1XRGJqT2VSaV9Qc1dMWEY0ZVBwT0NFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQCwwPUMA8E
AgACMAkDBwAgAQZ8I3gwDQYJKoZIhvcNAQELBQADggEBAGTDHsoQzptfbCAkIyV3
GM5JAZmD6ZRfbguULWE5/j2rRrKMEYYnnsuQ1AkkueNK6qtJjXuBycTN6ffSD6RK
8xOJAwXLB+H7n0AaotL7RC6EWSWr7QDgizZPcFAsCl4PrStDNAaiGkfA5oEfZXSh
jWVSty332R72L7gAT1pU8RPCsp+k57Z6BrSRtfjbyltL4NDuKRHRd0lvthWOmwud
4FTdALWF/Ndi7CgShun1/aV36cmY7hmdThl0z9SpzXNZyrf6hqk2bwLIOO/vMleB
ueTMcX6hTKuwADcoXaN1GH25u8Dyua3vjkCpGcdOFlRUmv0jV+cdoRli7YnXPxsM
QrY=
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:20 2024 by rpki-client on console.sobornost.net