Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/NuUwLcD2l4ff2ntzamajyrh6UgU.roa
File: NuUwLcD2l4ff2ntzamajyrh6UgU.roa (raw, json)
Hash identifier: Rw3k+nSNXroDZrHLKD9lvQNarT+afeLlrMhnWHR4MXA=
Subject key identifier: 36:E5:30:2D:C0:F6:97:87:DF:DA:7B:73:6A:66:A3:CA:B8:7A:52:05
Certificate issuer: /CN=de804c9c8a43397d16779aa934f7067388fc7d7c
Certificate serial: 01916F8C7922EDE7F3451EA558DF2A3E71D7
Authority key identifier: DE:80:4C:9C:8A:43:39:7D:16:77:9A:A9:34:F7:06:73:88:FC:7D:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/NuUwLcD2l4ff2ntzamajyrh6UgU.roa
Signing time: Tue 20 Aug 2024 11:29:22 +0000
ROA not before: Tue 20 Aug 2024 11:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205747
IP address blocks: 91.212.77.0/24 maxlen: 24
185.188.196.0/22 maxlen: 24
192.175.38.0/23 maxlen: 23
2a0b:d080::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:6f:8c:79:22:ed:e7:f3:45:1e:a5:58:df:2a:3e:71:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de804c9c8a43397d16779aa934f7067388fc7d7c
Validity
Not Before: Aug 20 11:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=36e5302dc0f69787dfda7b736a66a3cab87a5205
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:11:e0:39:b2:d4:75:25:c7:da:e7:76:19:8e:
46:c0:24:4f:ff:3a:e6:b4:9f:c7:3e:18:c4:2b:62:
b4:5e:ad:cd:99:b7:92:2d:ab:4c:3c:bb:bd:13:12:
c1:85:07:64:31:27:a9:fb:6e:27:74:af:3b:9d:10:
40:72:e7:ab:9d:a2:2e:10:6f:52:f7:30:ae:36:55:
dc:7b:e9:eb:69:f2:3d:32:48:7d:72:e7:52:d2:be:
8a:a2:d2:2c:a6:9a:14:5b:75:3a:56:b2:7a:e0:ef:
61:18:1b:b7:a5:32:5d:06:50:17:19:d3:9a:70:63:
d7:51:55:19:39:6b:42:e5:e7:f1:1e:c0:90:f3:28:
99:e3:5d:a9:78:2c:21:67:b5:2b:e3:ce:ac:c3:9d:
6f:2e:43:8d:02:f9:0c:cd:ac:14:f1:fc:cd:22:38:
92:c5:0c:94:dc:20:73:b0:e5:bb:6e:db:c8:c0:1c:
35:07:ce:aa:8e:a1:77:2c:42:38:52:cf:20:99:b9:
d4:54:39:6d:80:02:d7:74:88:a5:42:eb:ff:81:af:
fd:3d:e1:90:28:bc:09:e9:be:77:52:4f:7a:2d:07:
ab:74:86:5f:21:a1:91:77:2c:40:9c:c3:9a:b0:e4:
3a:84:a1:f2:01:27:eb:14:69:aa:0f:b7:4f:1b:7f:
b7:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:E5:30:2D:C0:F6:97:87:DF:DA:7B:73:6A:66:A3:CA:B8:7A:52:05
X509v3 Authority Key Identifier:
keyid:DE:80:4C:9C:8A:43:39:7D:16:77:9A:A9:34:F7:06:73:88:FC:7D:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/NuUwLcD2l4ff2ntzamajyrh6UgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.77.0/24
185.188.196.0/22
192.175.38.0/23
IPv6:
2a0b:d080::/32
Signature Algorithm: sha256WithRSAEncryption
32:84:67:a5:88:50:cc:4e:5d:af:19:b9:80:1b:40:57:86:13:
e2:89:12:5c:db:e2:83:a4:ec:40:ca:8c:bb:e7:17:09:a1:1c:
9d:f8:1c:a1:a9:f3:ae:42:f3:44:9b:7f:6c:6e:84:8d:0a:03:
d4:ae:3d:18:5c:80:f3:1a:35:e6:17:68:c4:fe:c4:12:5d:c1:
32:96:0d:30:98:51:ff:61:a9:6a:57:98:1b:fb:c0:9e:80:10:
8f:c1:32:21:b6:4f:09:8a:81:b3:f5:89:ce:06:5b:cb:99:61:
44:f5:1e:40:fc:0b:cc:7d:6d:6a:d4:8c:39:21:13:8f:c7:df:
f7:b1:75:e1:9b:b6:bf:57:2e:ec:03:6f:00:b2:bf:34:20:ec:
da:4c:76:92:6d:ac:d3:02:12:cf:2e:d4:00:f5:64:6e:dd:5f:
84:ff:85:51:79:cf:a0:f7:bd:36:79:29:24:a5:c8:96:9c:31:
f0:30:96:44:89:d6:cf:ab:43:84:dd:53:d9:60:c0:e2:58:fb:
61:e5:34:54:fa:f0:2c:af:35:ec:32:8f:9a:4d:d6:fc:ce:19:
f6:ac:e8:19:af:ea:3c:3f:3c:04:bd:13:27:e5:8b:f3:96:b4:
68:63:80:73:2e:f0:63:4d:70:d8:32:e7:ad:c1:cc:f8:4f:68:
42:89:9f:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 19:17:26 2024 by rpki-client on console.sobornost.net