Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/3vPJO2ExHE3v-a56xhZ_fs7flxY.roa
File: 3vPJO2ExHE3v-a56xhZ_fs7flxY.roa (raw, json)
Hash identifier: rChRYH/YhcaxDdRPi+RYyceGiv6WsREx+pHvEsiIUT0=
Subject key identifier: DE:F3:C9:3B:61:31:1C:4D:EF:F9:AE:7A:C6:16:7F:7E:CE:DF:97:16
Certificate issuer: /CN=2dfef2b839ad07786833b1bedca8b0b19203e111
Certificate serial: 0193BB1D0970E917EA40F67AB32939DC6255
Authority key identifier: 2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/3vPJO2ExHE3v-a56xhZ_fs7flxY.roa
Signing time: Thu 12 Dec 2024 13:44:22 +0000
ROA not before: Thu 12 Dec 2024 13:44:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 395793
IP address blocks: 185.145.240.0/24 maxlen: 24
185.145.241.0/24 maxlen: 24
185.145.242.0/24 maxlen: 24
185.145.243.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:bb:1d:09:70:e9:17:ea:40:f6:7a:b3:29:39:dc:62:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dfef2b839ad07786833b1bedca8b0b19203e111
Validity
Not Before: Dec 12 13:44:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=def3c93b61311c4deff9ae7ac6167f7ecedf9716
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:af:4c:19:1f:58:9a:31:96:52:e2:de:cf:0d:
82:f8:5c:70:11:d6:6f:40:81:cd:a1:13:44:0b:09:
65:ff:89:46:f9:90:d9:d5:08:0f:69:16:44:0b:a9:
f9:75:67:ad:ac:19:35:d8:0a:38:4e:0f:7a:38:a4:
c0:74:4e:f8:f4:ae:67:1e:50:b7:b4:ed:97:11:d5:
cb:71:08:2b:75:5a:3c:91:8d:fb:b2:7d:7a:79:ca:
97:e1:f2:94:34:e9:0e:c3:0e:3a:0e:44:2c:3c:e4:
8b:6e:4a:ca:6b:a3:1b:2f:5f:46:26:7e:b0:8b:ee:
ea:5b:cf:a3:07:fb:62:e8:35:4a:c8:74:7c:fc:49:
cd:d6:4d:2d:a4:e9:3e:0f:73:6e:e7:93:26:a0:9e:
28:98:ee:4f:34:f0:f3:0f:7c:2d:6e:ba:69:e9:8d:
de:4d:aa:d3:3b:c0:81:25:9a:02:ba:f5:03:84:1b:
67:f4:d3:01:46:2f:ac:77:89:f5:0c:76:8d:c6:30:
ea:d5:d4:84:e8:2b:c7:25:bd:46:7c:32:17:4b:c5:
ea:25:0c:53:b1:bd:7b:c3:e3:0b:2d:52:55:12:34:
03:d3:a0:f9:47:8b:19:74:1d:32:67:e1:a7:53:53:
fc:f8:2b:74:52:ad:d4:5e:c5:0a:02:0d:58:25:bc:
19:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:F3:C9:3B:61:31:1C:4D:EF:F9:AE:7A:C6:16:7F:7E:CE:DF:97:16
X509v3 Authority Key Identifier:
keyid:2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/3vPJO2ExHE3v-a56xhZ_fs7flxY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.240.0/22
Signature Algorithm: sha256WithRSAEncryption
20:72:23:f5:aa:e8:f0:bf:7a:8d:78:e1:4f:8f:e8:89:09:cf:
4d:5c:7c:88:3f:e1:b4:d6:6a:1e:4f:67:89:8c:41:9f:cc:89:
e3:c7:da:6a:b5:1a:8a:49:c5:ec:1b:e7:e5:44:56:31:ac:01:
76:97:c0:16:20:1b:fa:89:49:ec:b0:a7:97:35:83:0d:7a:fd:
93:e7:6d:3e:43:c3:8e:8d:62:73:b1:a2:67:fb:cf:ea:c8:b3:
d0:2d:22:7f:8e:a4:08:8d:a8:59:7e:0a:af:70:e5:06:6f:4d:
af:7f:75:4a:60:75:e2:ad:68:e1:68:7e:c0:84:3d:4a:c8:aa:
da:fd:d0:ac:db:6b:57:d4:04:54:67:18:83:c8:5b:86:d2:9e:
26:5a:d5:0a:1d:cc:7c:ce:51:21:8d:64:cd:d1:a7:6d:11:e7:
52:ab:6a:01:0b:45:84:1c:2c:01:68:b5:22:4b:67:f9:5b:9b:
20:b1:45:8f:99:d4:cb:d6:98:54:f1:f5:7e:91:83:fe:6e:0c:
41:6f:e0:90:db:2c:4e:a8:fd:82:57:da:47:3a:7c:cf:c9:28:
66:d9:05:01:35:aa:0a:01:23:db:f0:8f:25:58:74:12:e6:31:
25:73:9a:d2:0f:09:18:7c:88:b8:ee:8a:02:61:b4:d0:c0:be:
79:55:fe:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:30 2024 by rpki-client on console.sobornost.net