Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/07f270-c6cc-49cd-ae46-5100a26d274b/1/a2OjTk5blyfnAh7OmOC802tqsME.roa
File: a2OjTk5blyfnAh7OmOC802tqsME.roa (raw, json)
Hash identifier: nMFuIPE8rM6P0k4M/K15T+p3Gri4o/RXKy498lwqUis=
Subject key identifier: 6B:63:A3:4E:4E:5B:97:27:E7:02:1E:CE:98:E0:BC:D3:6B:6A:B0:C1
Certificate issuer: /CN=4ea65c7edba469d099d76aacd7dc263f4dfec5eb
Certificate serial: 0191DB4921CA1A8145283D043E31CFFE01CC
Authority key identifier: 4E:A6:5C:7E:DB:A4:69:D0:99:D7:6A:AC:D7:DC:26:3F:4D:FE:C5:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TqZcftukadCZ12qs19wmP03-xes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/07f270-c6cc-49cd-ae46-5100a26d274b/1/a2OjTk5blyfnAh7OmOC802tqsME.roa
Signing time: Tue 10 Sep 2024 09:34:48 +0000
ROA not before: Tue 10 Sep 2024 09:34:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15704
IP address blocks: 77.27.140.0/22 maxlen: 22
77.27.148.0/22 maxlen: 22
83.165.112.0/21 maxlen: 21
91.116.156.0/22 maxlen: 22
91.116.160.0/22 maxlen: 22
91.116.220.0/22 maxlen: 22
91.116.236.0/22 maxlen: 22
91.116.244.0/22 maxlen: 22
91.117.16.0/21 maxlen: 21
91.117.40.0/22 maxlen: 22
91.117.72.0/22 maxlen: 22
91.117.108.0/22 maxlen: 22
91.117.176.0/22 maxlen: 22
91.117.228.0/22 maxlen: 22
93.156.192.0/21 maxlen: 21
93.156.200.0/21 maxlen: 21
93.156.208.0/21 maxlen: 21
93.156.216.0/21 maxlen: 21
93.156.224.0/21 maxlen: 21
93.156.232.0/21 maxlen: 21
93.156.240.0/21 maxlen: 21
93.156.248.0/21 maxlen: 21
178.60.4.0/22 maxlen: 22
178.60.180.0/22 maxlen: 22
178.60.184.0/22 maxlen: 22
213.60.76.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:db:49:21:ca:1a:81:45:28:3d:04:3e:31:cf:fe:01:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ea65c7edba469d099d76aacd7dc263f4dfec5eb
Validity
Not Before: Sep 10 09:34:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6b63a34e4e5b9727e7021ece98e0bcd36b6ab0c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e5:c4:69:74:c9:82:24:94:2a:8e:f2:e1:34:
ff:b1:0e:00:4b:f7:ad:1d:9b:fe:76:6d:47:bb:f4:
0e:27:b3:11:6d:17:f5:cb:de:fd:9f:9f:57:c8:c8:
e5:ec:90:16:3a:07:af:d3:ef:21:a4:d3:4b:f5:22:
6e:81:b8:a7:ef:bc:11:90:c2:93:86:f2:5b:26:db:
b7:8c:fa:0e:3a:58:0a:ae:ce:e0:6b:04:67:77:7b:
09:73:1b:22:02:8c:31:91:14:09:95:17:5a:14:3e:
83:0f:5f:f9:3f:f3:7f:27:45:e2:1b:eb:85:ce:10:
29:29:02:86:9a:58:ee:a9:ab:f0:03:f5:cf:90:3a:
58:79:63:8e:2d:0b:71:74:af:54:a4:41:a6:44:48:
6f:2f:77:08:43:bc:20:02:96:8f:99:c8:bb:3f:1f:
24:c4:bd:34:f4:aa:7c:eb:27:e3:92:db:c3:f2:18:
68:90:a5:59:0d:9b:cc:b6:48:49:34:2c:73:1f:e7:
fe:60:ad:5b:a5:cc:46:59:12:36:1f:f0:93:99:93:
ae:5f:a1:88:00:16:c4:e4:73:8f:22:2d:47:7b:33:
a7:28:16:ed:72:d9:66:b6:90:c2:89:37:48:77:18:
1e:55:7c:3c:e3:48:ea:01:c2:a6:77:03:9c:df:ab:
4f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:63:A3:4E:4E:5B:97:27:E7:02:1E:CE:98:E0:BC:D3:6B:6A:B0:C1
X509v3 Authority Key Identifier:
keyid:4E:A6:5C:7E:DB:A4:69:D0:99:D7:6A:AC:D7:DC:26:3F:4D:FE:C5:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TqZcftukadCZ12qs19wmP03-xes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/07f270-c6cc-49cd-ae46-5100a26d274b/1/a2OjTk5blyfnAh7OmOC802tqsME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/07f270-c6cc-49cd-ae46-5100a26d274b/1/TqZcftukadCZ12qs19wmP03-xes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.27.140.0/22
77.27.148.0/22
83.165.112.0/21
91.116.156.0-91.116.163.255
91.116.220.0/22
91.116.236.0/22
91.116.244.0/22
91.117.16.0/21
91.117.40.0/22
91.117.72.0/22
91.117.108.0/22
91.117.176.0/22
91.117.228.0/22
93.156.192.0/18
178.60.4.0/22
178.60.180.0-178.60.187.255
213.60.76.0/22
Signature Algorithm: sha256WithRSAEncryption
96:a8:77:1d:1b:de:5e:ce:4c:19:da:83:ed:b3:47:7e:f4:31:
03:5f:f2:cf:bd:62:38:c1:43:ec:a1:32:8d:5e:65:7b:9e:4a:
3f:2a:fb:01:b4:56:e6:91:a1:6c:54:ce:4d:54:0b:08:61:52:
64:2c:20:56:9d:24:96:58:16:45:82:de:02:1e:79:b2:91:0e:
7d:2d:01:b4:da:2d:25:fa:bf:ef:0a:84:51:d1:dc:32:f1:c3:
21:cb:2a:27:d1:9e:79:d7:19:b3:ab:34:b4:22:4b:ab:8b:2c:
6d:01:3e:7d:dd:43:fe:1f:08:55:92:4d:c0:08:67:1f:0c:74:
36:d7:8a:17:83:47:18:7f:a0:20:7e:cb:17:54:8d:e4:50:b2:
2b:28:b5:71:95:85:e3:b4:f2:a9:d2:4c:35:f6:a5:3f:6c:7f:
00:20:56:6c:cf:04:78:7b:b5:6b:e1:aa:f8:d7:94:06:68:f5:
9b:2a:e7:ad:5b:6d:24:84:69:ec:e2:c5:f6:a4:e4:b2:08:4b:
73:57:68:49:0a:e3:ea:e7:a8:77:0f:ff:18:e9:be:94:21:cc:
c8:d0:fa:37:8b:0c:07:cc:e5:14:18:02:f4:b3:67:2c:e2:ed:
53:15:1c:8c:a5:33:5a:05:4b:e0:70:72:0a:dc:73:d3:38:23:
1b:75:61:6f
-----BEGIN CERTIFICATE-----
MIIFbzCCBFegAwIBAgISAZHbSSHKGoFFKD0EPjHP/gHMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlYTY1YzdlZGJhNDY5ZDA5OWQ3NmFhY2Q3ZGMyNjNmNGRm
ZWM1ZWIwHhcNMjQwOTEwMDkzNDQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YjYzYTM0ZTRlNWI5NzI3ZTcwMjFlY2U5OGUwYmNkMzZiNmFiMGMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAteXEaXTJgiSUKo7y4TT/sQ4AS/et
HZv+dm1Hu/QOJ7MRbRf1y979n59XyMjl7JAWOgev0+8hpNNL9SJugbin77wRkMKT
hvJbJtu3jPoOOlgKrs7gawRnd3sJcxsiAowxkRQJlRdaFD6DD1/5P/N/J0XiG+uF
zhApKQKGmljuqavwA/XPkDpYeWOOLQtxdK9UpEGmREhvL3cIQ7wgApaPmci7Px8k
xL009Kp86yfjktvD8hhokKVZDZvMtkhJNCxzH+f+YK1bpcxGWRI2H/CTmZOuX6GI
ABbE5HOPIi1HezOnKBbtctlmtpDCiTdIdxgeVXw840jqAcKmdwOc36tP0wIDAQAB
o4ICezCCAncwHQYDVR0OBBYEFGtjo05OW5cn5wIezpjgvNNrarDBMB8GA1UdIwQY
MBaAFE6mXH7bpGnQmddqrNfcJj9N/sXrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHFaY2Z0dWthZENaMTJxczE5d21QMDMteGVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS8wN2YyNzAtYzZjYy00OWNkLWFlNDYt
NTEwMGEyNmQyNzRiLzEvYTJPalRrNWJseWZuQWg3T21PQzgwMnRxc01FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS8wN2YyNzAtYzZjYy00OWNkLWFlNDYtNTEwMGEyNmQyNzRi
LzEvVHFaY2Z0dWthZENaMTJxczE5d21QMDMteGVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGQBggrBgEFBQcBBwEB/wSBgDB+MHwEAgABMHYDBAJNG4wD
BAJNG5QDBANTpXAwDAMEAlt0nAMEAlt0oAMEAlt03AMEAlt07AMEAlt09AMEA1t1
EAMEAlt1KAMEAlt1SAMEAlt1bAMEAlt1sAMEAlt15AMEBl2cwAMEArI8BDAMAwQC
sjy0AwQCsjy4AwQC1TxMMA0GCSqGSIb3DQEBCwUAA4IBAQCWqHcdG95ezkwZ2oPt
s0d+9DEDX/LPvWI4wUPsoTKNXmV7nko/KvsBtFbmkaFsVM5NVAsIYVJkLCBWnSSW
WBZFgt4CHnmykQ59LQG02i0l+r/vCoRR0dwy8cMhyyon0Z551xmzqzS0Ikuriyxt
AT593UP+HwhVkk3ACGcfDHQ214oXg0cYf6AgfssXVI3kULIrKLVxlYXjtPKp0kw1
9qU/bH8AIFZszwR4e7Vr4ar415QGaPWbKuetW20khGns4sX2pOSyCEtzV2hJCuPq
56h3D/8Y6b6UIczI0Po3iwwHzOUUGAL0s2cs4u1TFRyMpTNaBUvgcHIK3HPTOCMb
dWFv
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:40 2024 by rpki-client on console.sobornost.net