Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/b38fd7-9e68-426b-a100-1c0fd89dbcb4/1/YyMXwkScdo0wHdEPRGnUPeUAyps.roa
File: YyMXwkScdo0wHdEPRGnUPeUAyps.roa (raw, json)
Hash identifier: FNfk5ROCKAL7/estPZa18J/pGA+kcluYmNB4BlF4+58=
Subject key identifier: 63:23:17:C2:44:9C:76:8D:30:1D:D1:0F:44:69:D4:3D:E5:00:CA:9B
Certificate issuer: /CN=b7730c8322118c81ca84bab1b7e0890a9c85e9f7
Certificate serial: 0193D34DA9D2DA46C801DF5B04A42A66A147
Authority key identifier: B7:73:0C:83:22:11:8C:81:CA:84:BA:B1:B7:E0:89:0A:9C:85:E9:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t3MMgyIRjIHKhLqxt-CJCpyF6fc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/b38fd7-9e68-426b-a100-1c0fd89dbcb4/1/YyMXwkScdo0wHdEPRGnUPeUAyps.roa
Signing time: Tue 17 Dec 2024 06:28:22 +0000
ROA not before: Tue 17 Dec 2024 06:28:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205033
IP address blocks: 185.219.244.0/22 maxlen: 22
2a0b:f040::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d3:4d:a9:d2:da:46:c8:01:df:5b:04:a4:2a:66:a1:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7730c8322118c81ca84bab1b7e0890a9c85e9f7
Validity
Not Before: Dec 17 06:28:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=632317c2449c768d301dd10f4469d43de500ca9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:10:83:39:a5:e0:7e:8d:49:5d:28:2e:0f:85:
cc:16:bf:00:3d:99:62:12:02:60:2a:07:66:af:ac:
4f:d8:c2:e1:ce:fd:8a:63:fa:76:7c:17:fa:fa:16:
75:e1:8f:70:1b:fc:37:b1:9d:0c:de:00:e5:8e:aa:
9a:8c:5d:58:a4:e1:98:e5:0b:ab:78:43:b7:61:9c:
01:54:75:5f:7f:ae:72:9f:42:7c:e6:0f:bf:c4:2c:
10:99:83:26:6b:f0:26:f7:bb:21:f3:c6:0d:c0:68:
f8:c0:77:ba:6a:c1:bf:b1:9f:15:7e:fe:0f:09:82:
be:ca:73:77:26:af:30:cb:7a:aa:97:2c:88:5e:4a:
4f:b0:7b:4d:0b:6a:48:c1:7d:bc:07:75:38:4d:8d:
a0:5e:4e:83:b4:38:32:b2:f6:23:2b:2a:31:76:8e:
33:25:c3:d7:57:c1:06:64:73:ec:9c:f5:69:31:9b:
b6:0e:49:2e:94:44:20:18:4b:a8:7f:f8:8e:c1:f7:
66:3e:88:8b:e5:64:26:ae:22:91:1f:5e:17:2b:4c:
94:39:1d:d3:1c:02:92:ea:ee:e4:35:35:80:28:c9:
60:f1:47:5e:9c:3f:c0:f6:3f:a1:58:c3:2a:b2:a3:
32:5b:5d:42:22:8b:2c:58:f2:12:e6:e7:88:ab:2e:
82:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:23:17:C2:44:9C:76:8D:30:1D:D1:0F:44:69:D4:3D:E5:00:CA:9B
X509v3 Authority Key Identifier:
keyid:B7:73:0C:83:22:11:8C:81:CA:84:BA:B1:B7:E0:89:0A:9C:85:E9:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t3MMgyIRjIHKhLqxt-CJCpyF6fc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/b38fd7-9e68-426b-a100-1c0fd89dbcb4/1/YyMXwkScdo0wHdEPRGnUPeUAyps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/b38fd7-9e68-426b-a100-1c0fd89dbcb4/1/t3MMgyIRjIHKhLqxt-CJCpyF6fc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.219.244.0/22
IPv6:
2a0b:f040::/32
Signature Algorithm: sha256WithRSAEncryption
50:32:aa:55:d0:7a:6d:65:e4:cb:f0:98:cc:6e:d8:e2:37:f3:
61:90:85:3c:24:01:f9:07:b5:f5:8b:b9:ea:59:72:81:9a:80:
06:6d:d1:24:be:95:d5:dc:78:86:f8:0c:d0:3b:af:f4:51:7d:
37:00:72:12:d8:f5:ef:fd:5d:c4:2c:2a:b0:dd:e0:6a:9a:11:
27:a5:38:e5:04:5b:16:8e:a7:a3:b8:fb:3b:77:b1:d5:85:7c:
34:92:fe:c0:3d:06:fd:88:52:fd:53:a7:a2:57:a4:5c:6f:e1:
7e:fd:25:22:b8:e2:67:ff:c4:6f:ec:99:5e:f2:40:c4:0b:58:
ee:e9:b7:87:bc:44:a7:35:1b:37:f5:13:26:9c:1d:ed:ee:11:
5f:18:b5:a9:11:11:04:64:4f:78:55:5c:a5:97:4e:42:45:aa:
d7:8f:d6:d5:3b:0f:5d:42:91:f2:3e:ce:fd:d9:2f:87:0a:b1:
9f:56:88:0d:ed:8e:b1:c1:91:dd:bd:f8:d4:c3:a0:1c:59:a8:
5a:11:31:dd:ab:6b:b1:0e:d2:aa:2a:c9:33:5a:b4:39:f3:f9:
41:a5:88:51:13:97:a3:4c:81:66:8c:c9:5c:94:9b:49:07:f5:
60:fe:60:60:3a:d4:49:02:0d:be:a7:c7:35:6a:13:b8:dd:8c:
fb:c1:bd:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:21 2024 by rpki-client on console.sobornost.net