Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/3c0269-c194-4e6d-abce-72735e118d51/1/BFaAQNAuITg9EPPG0ZLrLbtApAA.roa
File: BFaAQNAuITg9EPPG0ZLrLbtApAA.roa (raw, json)
Hash identifier: aRaXBrG+872muGPFCFjZi02WHmTImrSKvDfA7eqm2vw=
Subject key identifier: 04:56:80:40:D0:2E:21:38:3D:10:F3:C6:D1:92:EB:2D:BB:40:A4:00
Certificate issuer: /CN=88b213bf1627548efdfb1b2e2645baaf1d983aa0
Certificate serial: 01919A41B3A646513EC08398F38012679A59
Authority key identifier: 88:B2:13:BF:16:27:54:8E:FD:FB:1B:2E:26:45:BA:AF:1D:98:3A:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iLITvxYnVI79-xsuJkW6rx2YOqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/3c0269-c194-4e6d-abce-72735e118d51/1/BFaAQNAuITg9EPPG0ZLrLbtApAA.roa
Signing time: Wed 28 Aug 2024 18:31:22 +0000
ROA not before: Wed 28 Aug 2024 18:31:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56884
IP address blocks: 84.246.111.0/24 maxlen: 24
91.247.178.0/24 maxlen: 24
176.97.213.0/24 maxlen: 24
178.23.188.0/24 maxlen: 24
194.26.223.0/24 maxlen: 24
213.232.252.0/24 maxlen: 24
2a11:a100::/29 maxlen: 29
2a13:8e00::/29 maxlen: 29
2a13:9200::/29 maxlen: 29
2a13:b100::/29 maxlen: 29
2a13:b500::/29 maxlen: 29
2a13:b700::/29 maxlen: 29
2a13:b900::/29 maxlen: 29
2a13:da00::/29 maxlen: 29
2a13:e200::/29 maxlen: 29
2a13:e400::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:9a:41:b3:a6:46:51:3e:c0:83:98:f3:80:12:67:9a:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88b213bf1627548efdfb1b2e2645baaf1d983aa0
Validity
Not Before: Aug 28 18:31:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=04568040d02e21383d10f3c6d192eb2dbb40a400
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:bc:61:1e:e8:aa:9f:33:3a:a4:03:b4:51:00:
be:d1:dd:15:fc:21:08:c0:d0:4d:59:3f:08:50:d9:
10:6f:f4:ac:18:43:a7:20:b1:f9:1a:a1:68:a1:c2:
3a:9e:ea:37:a6:fc:f5:dd:8e:fe:28:e2:9c:46:fa:
36:4b:2b:50:fd:1b:eb:08:97:e6:3d:8d:7e:3b:60:
e5:de:8f:bd:de:27:a1:d9:71:58:3e:43:c2:9f:fc:
49:ca:6a:e0:12:ef:8e:20:d4:da:f3:ef:22:eb:19:
8e:09:d3:ff:1e:4b:74:41:57:44:17:97:95:63:9e:
83:d0:84:b0:9f:63:46:31:7c:6b:5c:cb:8b:4a:a1:
24:e4:5b:a0:6e:a3:0e:a9:57:2f:ac:10:ee:c8:4e:
42:28:22:47:36:b2:4f:e4:c4:b3:36:01:a3:07:67:
91:89:b2:12:b8:71:6f:24:5f:56:fb:7f:d3:f3:e7:
fd:11:a8:47:a2:3d:9f:ed:79:a0:e1:6e:ac:4d:11:
38:1b:04:da:8a:7e:71:3c:a0:cc:37:14:07:17:b6:
2e:0e:41:8e:d4:75:8a:13:b2:61:1b:e0:7c:4d:1c:
4f:1c:b3:6e:78:1f:34:05:8c:5a:6b:d7:ed:51:cb:
d9:59:0a:96:f8:bc:0e:bf:f9:ed:72:7d:f9:64:ea:
f1:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:56:80:40:D0:2E:21:38:3D:10:F3:C6:D1:92:EB:2D:BB:40:A4:00
X509v3 Authority Key Identifier:
keyid:88:B2:13:BF:16:27:54:8E:FD:FB:1B:2E:26:45:BA:AF:1D:98:3A:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iLITvxYnVI79-xsuJkW6rx2YOqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/3c0269-c194-4e6d-abce-72735e118d51/1/BFaAQNAuITg9EPPG0ZLrLbtApAA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/3c0269-c194-4e6d-abce-72735e118d51/1/iLITvxYnVI79-xsuJkW6rx2YOqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.246.111.0/24
91.247.178.0/24
176.97.213.0/24
178.23.188.0/24
194.26.223.0/24
213.232.252.0/24
IPv6:
2a11:a100::/29
2a13:8e00::/29
2a13:9200::/29
2a13:b100::/29
2a13:b500::/29
2a13:b700::/29
2a13:b900::/29
2a13:da00::/29
2a13:e200::/29
2a13:e400::/29
Signature Algorithm: sha256WithRSAEncryption
a1:19:cc:fa:71:c9:3c:f8:e5:0f:6e:78:08:f5:33:43:08:b6:
cb:a2:47:d9:6b:b5:9e:e8:f4:b5:2f:39:cc:03:00:c7:d5:81:
98:f5:5a:01:fe:45:6f:bb:ad:37:e6:72:49:21:a5:67:bc:b4:
2a:7d:a2:70:86:33:ef:29:2c:37:8c:d6:9c:73:81:90:92:66:
6a:eb:f0:3d:5c:3b:bb:f0:25:9d:a4:85:41:b5:d0:c2:56:c9:
73:1f:b9:50:54:3a:2e:e4:47:87:63:89:e9:7e:96:63:d0:14:
7b:4f:60:d6:ff:a7:12:63:6e:89:57:78:ad:07:5f:87:b7:54:
48:92:d7:46:61:e0:77:7e:0c:84:48:a3:10:09:21:c3:25:72:
5b:7b:47:67:15:01:3e:8f:89:68:47:fe:2e:a9:d8:84:0c:80:
7b:7c:9e:71:86:34:9e:9c:4f:d3:ba:8d:07:64:8d:98:88:4a:
d6:af:26:3c:80:9f:fb:1a:6a:e7:10:0c:17:80:87:0b:9e:50:
74:96:29:e9:e4:b0:f1:68:1d:7a:23:04:79:43:c7:56:4e:f7:
7a:ce:ae:94:ab:f8:62:9f:3c:e9:5c:8c:0f:5b:29:d5:8f:b3:
38:b1:9a:f4:24:49:f7:c8:1d:0f:17:fd:3f:2a:16:0d:4f:2a:
28:55:1a:18
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:45 2024 by rpki-client on console.sobornost.net