Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/E86hcrtQvr3BJUZPcUIve-Y6W3c.roa
File: E86hcrtQvr3BJUZPcUIve-Y6W3c.roa (raw, json)
Hash identifier: F/gxEKgUrwjvGjkjFDw6/cw3wv2upmj8lynQf6ppPS4=
Subject key identifier: 13:CE:A1:72:BB:50:BE:BD:C1:25:46:4F:71:42:2F:7B:E6:3A:5B:77
Certificate issuer: /CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Certificate serial: 0193969DE389149DB1133145DDA2633F7B4F
Authority key identifier: 59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/E86hcrtQvr3BJUZPcUIve-Y6W3c.roa
Signing time: Thu 05 Dec 2024 11:39:09 +0000
ROA not before: Thu 05 Dec 2024 11:39:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39312
IP address blocks: 77.81.122.0/24 maxlen: 24
84.47.180.0/24 maxlen: 24
188.241.244.0/23 maxlen: 23
195.90.110.0/23 maxlen: 23
2a05:da80:2000::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:96:9d:e3:89:14:9d:b1:13:31:45:dd:a2:63:3f:7b:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Validity
Not Before: Dec 5 11:39:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=13cea172bb50bebdc125464f71422f7be63a5b77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c2:13:f5:e3:fd:bc:8b:75:22:8e:a6:53:03:
0e:e9:54:57:20:c0:a9:29:ce:95:dc:26:6d:fa:ff:
23:45:34:41:54:e8:1e:c3:36:fa:5e:c7:4c:7a:95:
cf:9e:2d:ec:cd:ce:b1:61:05:ff:21:b7:66:31:9b:
3c:cc:96:88:91:e6:a4:ec:c2:0d:4c:d3:e7:17:9c:
e4:dc:85:8a:0d:94:1e:2f:cc:13:c3:0e:00:66:31:
6a:51:22:b9:be:bc:52:28:ce:22:a7:06:6f:93:f1:
92:e4:10:33:7e:6e:05:15:8a:76:47:c2:38:e7:37:
a5:83:48:8e:be:8d:7b:aa:84:76:be:de:e7:8a:0d:
80:83:ef:3d:a8:37:93:6e:9d:a9:63:d0:36:7a:68:
3c:c2:30:5d:b4:e5:c2:64:b3:94:4c:d9:fe:23:ef:
65:79:57:e8:0f:2f:cc:d7:f0:08:93:f1:91:82:28:
95:ca:41:cb:25:fd:b3:2f:80:06:20:e3:03:0d:04:
cc:13:69:64:51:e4:6b:79:17:0c:96:37:03:77:f7:
49:57:fc:6e:03:7e:f6:f5:95:0b:cf:69:04:42:a2:
76:fe:83:58:04:c2:02:d7:55:ac:ec:fa:29:36:b0:
61:b2:c6:16:2e:0c:aa:c3:b1:7b:74:d5:69:80:4f:
db:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:CE:A1:72:BB:50:BE:BD:C1:25:46:4F:71:42:2F:7B:E6:3A:5B:77
X509v3 Authority Key Identifier:
keyid:59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/E86hcrtQvr3BJUZPcUIve-Y6W3c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.122.0/24
84.47.180.0/24
188.241.244.0/23
195.90.110.0/23
IPv6:
2a05:da80:2000::/40
Signature Algorithm: sha256WithRSAEncryption
b0:85:dd:a9:ec:d0:4b:a3:38:81:32:d5:0f:8f:f8:b6:aa:79:
30:90:0f:3d:57:8d:20:bd:54:56:4e:66:b9:ad:fb:d4:be:bb:
0b:cc:80:62:9f:11:03:d1:8f:fb:a2:42:52:1e:62:4f:d8:6b:
78:b0:66:2f:f6:03:5c:61:e1:5b:ff:4e:3b:86:e3:33:e4:f8:
5a:0c:d1:09:10:0c:67:21:7d:fc:1a:40:2b:22:aa:44:69:ff:
33:65:2e:ce:cf:f2:d3:cb:b0:00:e2:c2:49:d5:bf:25:b7:4f:
c7:8b:eb:39:15:47:3d:49:1a:fe:64:50:4c:0b:af:89:c9:26:
c4:fe:c6:4f:62:68:ce:c7:e2:7d:6f:6b:17:fe:93:4b:f3:3b:
74:cc:c9:37:65:22:57:30:d3:16:cb:6a:92:fb:b6:14:9f:23:
8b:aa:3b:91:52:cc:9b:1e:7c:06:04:a8:74:2c:33:4e:2e:08:
e2:cd:37:9c:72:19:a8:12:91:e2:16:d5:51:de:80:84:41:41:
33:8a:c5:26:ba:56:28:25:39:e5:5b:9e:a7:f6:d2:ee:11:2d:
a1:b3:01:17:fc:bc:86:89:a1:8f:06:2d:ca:e4:d9:88:da:ab:
60:f3:31:b4:93:48:43:62:e9:9e:ca:49:1b:de:71:e7:a8:9f:
ef:7a:e2:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:42 2024 by rpki-client on console.sobornost.net