Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/bSzJRZy1szT4sRkABs-0VObhgUw.roa
File: bSzJRZy1szT4sRkABs-0VObhgUw.roa (raw, json)
Hash identifier: pTvfVtNNxSv6jflUsw1DuNzUa/DqcfZQ245nohCB7LI=
Subject key identifier: 6D:2C:C9:45:9C:B5:B3:34:F8:B1:19:00:06:CF:B4:54:E6:E1:81:4C
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 019393CC73D200CB69736EF2E63A7E3C5A65
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/bSzJRZy1szT4sRkABs-0VObhgUw.roa
Signing time: Wed 04 Dec 2024 22:31:09 +0000
ROA not before: Wed 04 Dec 2024 22:31:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214943
IP address blocks: 195.177.92.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:93:cc:73:d2:00:cb:69:73:6e:f2:e6:3a:7e:3c:5a:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Dec 4 22:31:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6d2cc9459cb5b334f8b1190006cfb454e6e1814c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:04:28:47:9f:bb:21:0f:4a:4c:fb:e2:dc:39:
d9:78:28:52:8f:a4:13:06:40:1a:62:d6:0e:28:42:
1c:d9:b8:a6:04:27:b9:89:86:c4:09:7c:8b:1b:62:
fc:f5:a1:e0:c0:63:60:0a:37:f7:be:b4:04:9d:cd:
53:51:2c:d5:1f:e8:3a:c4:06:d0:8c:3e:0f:ee:9f:
e1:9f:64:7d:a9:56:be:bd:c8:33:72:7c:87:7e:17:
21:60:d4:49:30:43:df:99:26:57:eb:3a:9d:8e:02:
0c:ed:89:4a:bc:b8:0f:94:7b:a6:96:3b:c5:7b:0a:
d2:27:53:d8:97:ad:fe:c8:f2:9f:94:be:f0:c5:6f:
83:f4:49:4a:8b:25:58:d5:1d:e0:94:6e:5f:7c:20:
d4:30:6a:05:49:14:79:d9:5e:fa:8d:10:27:08:31:
a9:1d:ad:c3:dd:8c:ab:d5:ff:b5:42:8f:b1:fb:09:
d9:87:f9:7e:93:f9:4a:0c:b1:08:15:41:6c:7e:a0:
99:2e:4a:ce:76:c1:19:06:8e:af:01:92:e2:ea:0c:
28:e3:9c:57:2d:32:0e:a9:c7:47:fc:ff:83:c5:05:
8d:f8:33:bc:80:fa:87:46:90:ed:3f:f8:88:a0:6b:
11:8e:a3:f3:22:e0:94:61:a6:1f:55:67:97:cb:13:
65:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:2C:C9:45:9C:B5:B3:34:F8:B1:19:00:06:CF:B4:54:E6:E1:81:4C
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/bSzJRZy1szT4sRkABs-0VObhgUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.177.92.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:93:3b:7f:11:c8:36:95:2c:4f:85:0a:d2:17:dd:57:88:2d:
94:e4:1f:28:4f:02:06:83:7c:a1:5a:1a:68:14:4b:95:6d:4c:
57:e9:cd:84:f2:e6:a4:c9:42:c5:88:1e:b3:4a:94:55:f2:3b:
f8:53:e2:cc:a7:7d:32:e5:c9:28:be:d6:40:48:31:d8:f5:e0:
ef:10:c2:63:69:39:d1:01:12:63:fc:d2:55:b9:03:f5:04:1b:
21:c4:f5:89:5b:76:d7:64:d9:8c:01:46:11:e9:95:b9:88:18:
d1:99:e0:b1:63:74:b8:b1:30:f6:8f:38:48:bb:a3:9f:35:e8:
34:c4:12:a5:7c:79:fb:e7:e7:05:0a:5a:fe:57:f6:fc:f4:fc:
0d:7f:6e:c8:43:e5:a0:5b:79:f4:db:3c:21:9e:37:4f:54:14:
ee:c8:ee:48:6b:6f:ec:e4:ee:44:a4:0d:06:01:fd:8a:c5:55:
7b:b2:a9:49:cf:9b:0f:df:09:12:ab:87:b8:1a:a2:d6:37:c0:
a3:89:b9:2d:ea:e5:ff:3c:1c:b6:a9:7e:ee:51:d2:a0:7d:fe:
59:23:f6:36:f8:8f:86:df:4f:b0:26:ee:46:c8:fd:b8:64:33:
15:c8:18:a8:8e:66:a0:da:1d:9c:3c:45:b6:88:78:a7:e9:c3:
f9:87:d9:80
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZOTzHPSAMtpc27y5jp+PFplMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMmE0NzhiYjBiMDhlNjYxYjBiMmY5ZmJlODkzNWJjOWMy
YTI4YTEwHhcNMjQxMjA0MjIzMTA5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZDJjYzk0NTljYjViMzM0ZjhiMTE5MDAwNmNmYjQ1NGU2ZTE4MTRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkgQoR5+7IQ9KTPvi3DnZeChSj6QT
BkAaYtYOKEIc2bimBCe5iYbECXyLG2L89aHgwGNgCjf3vrQEnc1TUSzVH+g6xAbQ
jD4P7p/hn2R9qVa+vcgzcnyHfhchYNRJMEPfmSZX6zqdjgIM7YlKvLgPlHumljvF
ewrSJ1PYl63+yPKflL7wxW+D9ElKiyVY1R3glG5ffCDUMGoFSRR52V76jRAnCDGp
Ha3D3Yyr1f+1Qo+x+wnZh/l+k/lKDLEIFUFsfqCZLkrOdsEZBo6vAZLi6gwo45xX
LTIOqcdH/P+DxQWN+DO8gPqHRpDtP/iIoGsRjqPzIuCUYaYfVWeXyxNl2wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG0syUWctbM0+LEZAAbPtFTm4YFMMB8GA1UdIwQY
MBaAFJ0qR4uwsI5mGwsvn76JNbycKiihMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMt
ZWVmMzUxMWY2YzYwLzEvYlN6SlJaeTFzelQ0c1JrQUJzLTBWT2JoZ1V3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMtZWVmMzUxMWY2YzYw
LzEvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw7FcMA0G
CSqGSIb3DQEBCwUAA4IBAQCpkzt/Ecg2lSxPhQrSF91XiC2U5B8oTwIGg3yhWhpo
FEuVbUxX6c2E8uakyULFiB6zSpRV8jv4U+LMp30y5ckovtZASDHY9eDvEMJjaTnR
ARJj/NJVuQP1BBshxPWJW3bXZNmMAUYR6ZW5iBjRmeCxY3S4sTD2jzhIu6OfNeg0
xBKlfHn75+cFClr+V/b89PwNf27IQ+WgW3n02zwhnjdPVBTuyO5Ia2/s5O5EpA0G
Af2KxVV7sqlJz5sP3wkSq4e4GqLWN8Cjibkt6uX/PBy2qX7uUdKgff5ZI/Y2+I+G
30+wJu5GyP24ZDMVyBiojmag2h2cPEW2iHin6cP5h9mA
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:42 2024 by rpki-client on console.sobornost.net