Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/40427e-74fa-4a66-837d-a523bacdc2be/1/jdNXY4xgcNCavBq6PJ41ao4Ka1M.roa
File: jdNXY4xgcNCavBq6PJ41ao4Ka1M.roa (raw, json)
Hash identifier: INo7DaD4Bgad1WAXUaWCUrEkRzfOSMP88+7xGv4pSTY=
Subject key identifier: 8D:D3:57:63:8C:60:70:D0:9A:BC:1A:BA:3C:9E:35:6A:8E:0A:6B:53
Certificate issuer: /CN=4def5b8ffbaf7d56af5d39f2f94c946d72f770f3
Certificate serial: 018CC56E494B6F2EA3D876D608EA696EA26F
Authority key identifier: 4D:EF:5B:8F:FB:AF:7D:56:AF:5D:39:F2:F9:4C:94:6D:72:F7:70:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Te9bj_uvfVavXTny-UyUbXL3cPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/40427e-74fa-4a66-837d-a523bacdc2be/1/jdNXY4xgcNCavBq6PJ41ao4Ka1M.roa
Signing time: Mon 01 Jan 2024 14:29:48 +0000
ROA not before: Mon 01 Jan 2024 14:29:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39305
IP address blocks: 45.93.144.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:49:4b:6f:2e:a3:d8:76:d6:08:ea:69:6e:a2:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4def5b8ffbaf7d56af5d39f2f94c946d72f770f3
Validity
Not Before: Jan 1 14:29:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8dd357638c6070d09abc1aba3c9e356a8e0a6b53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:16:9c:18:6e:16:79:ee:d9:70:c0:ea:4f:85:
4a:c0:d0:ba:28:7c:14:6a:1d:bd:0d:57:c6:e5:f3:
0b:dc:41:22:21:ed:17:9a:98:f5:98:41:a8:f0:cc:
54:68:b0:ac:5c:5e:6f:4c:19:68:4d:fe:e0:2c:8f:
34:88:63:68:e5:cd:33:25:df:1e:29:1b:fc:7b:ae:
70:71:6e:18:04:c6:14:21:18:5b:6b:b4:ac:6c:09:
94:71:04:70:73:1b:86:da:ca:42:4e:ed:bb:4d:4d:
41:e2:f5:d9:b0:44:e0:af:eb:a4:e7:5e:65:c7:67:
80:0d:2f:af:7e:13:0f:ae:4c:c8:23:f8:6f:5f:75:
1e:a5:d5:b8:d2:37:02:69:07:3d:0a:8f:21:8f:e8:
53:63:00:11:b1:44:7a:87:ca:f9:88:2e:2d:ea:1f:
90:8a:e9:7b:39:27:06:44:21:95:4a:a3:ce:05:1a:
3f:23:f2:b3:3c:73:ee:d9:e5:2b:ad:38:c9:46:b3:
8a:b8:b1:26:92:1d:19:6e:53:4b:98:95:6b:1c:be:
a4:9e:a1:a6:de:6e:f4:9d:00:41:08:80:ac:98:e1:
ef:f6:5a:85:ce:f2:41:eb:6e:b9:df:b1:22:c3:90:
d8:ea:62:08:30:e8:50:ed:71:ae:49:2e:2c:3b:d2:
f2:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:D3:57:63:8C:60:70:D0:9A:BC:1A:BA:3C:9E:35:6A:8E:0A:6B:53
X509v3 Authority Key Identifier:
keyid:4D:EF:5B:8F:FB:AF:7D:56:AF:5D:39:F2:F9:4C:94:6D:72:F7:70:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Te9bj_uvfVavXTny-UyUbXL3cPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/40427e-74fa-4a66-837d-a523bacdc2be/1/jdNXY4xgcNCavBq6PJ41ao4Ka1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/40427e-74fa-4a66-837d-a523bacdc2be/1/Te9bj_uvfVavXTny-UyUbXL3cPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.144.0/22
Signature Algorithm: sha256WithRSAEncryption
ce:cf:cc:5d:08:9e:96:07:a9:ab:11:64:ab:ea:b2:e9:62:e2:
d1:5c:d6:fd:8e:00:5b:8e:f2:6f:ec:48:68:f0:f2:76:de:d3:
b9:90:eb:e8:eb:8f:55:69:b8:0f:6d:12:e5:1b:9b:8d:9b:49:
9c:15:d1:25:bd:1a:8e:1a:82:24:dc:a9:79:a7:38:cd:71:05:
c6:ab:76:1f:ab:24:0c:a9:17:84:0b:0f:0c:39:3f:5c:c6:cd:
19:90:a1:71:48:d8:52:6a:4c:47:68:5a:d7:77:e9:72:ed:8f:
07:aa:7d:33:77:93:be:c1:bd:b5:30:bf:8e:67:b1:75:78:e5:
14:5e:48:5d:bc:60:6e:ac:db:e3:04:60:5a:0d:ab:bd:bf:a4:
65:70:27:c2:70:b8:31:7a:6a:5a:02:b2:a7:0f:a7:ad:b3:14:
ee:8a:87:5f:b6:91:b2:03:81:c0:c8:76:45:e7:ad:ca:ab:e7:
f0:08:d7:3d:08:55:7e:66:eb:fb:80:20:99:31:1f:f0:f8:6c:
00:a1:34:c3:5d:6d:8e:3b:21:ba:97:53:fe:13:f2:53:33:40:
56:2d:ba:ce:48:15:c3:53:70:24:64:ec:7c:82:d2:ba:cc:3e:
6d:48:f5:01:7c:63:57:68:7d:5d:d7:65:14:0b:5e:c2:84:f4:
3b:a6:f8:b3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzFbklLby6j2HbWCOppbqJvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkZWY1YjhmZmJhZjdkNTZhZjVkMzlmMmY5NGM5NDZkNzJm
NzcwZjMwHhcNMjQwMTAxMTQyOTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZGQzNTc2MzhjNjA3MGQwOWFiYzFhYmEzYzllMzU2YThlMGE2YjUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkRacGG4Wee7ZcMDqT4VKwNC6KHwU
ah29DVfG5fML3EEiIe0Xmpj1mEGo8MxUaLCsXF5vTBloTf7gLI80iGNo5c0zJd8e
KRv8e65wcW4YBMYUIRhba7SsbAmUcQRwcxuG2spCTu27TU1B4vXZsETgr+uk515l
x2eADS+vfhMPrkzII/hvX3UepdW40jcCaQc9Co8hj+hTYwARsUR6h8r5iC4t6h+Q
iul7OScGRCGVSqPOBRo/I/KzPHPu2eUrrTjJRrOKuLEmkh0ZblNLmJVrHL6knqGm
3m70nQBBCICsmOHv9lqFzvJB626537Eiw5DY6mIIMOhQ7XGuSS4sO9LyNwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFI3TV2OMYHDQmrwaujyeNWqOCmtTMB8GA1UdIwQY
MBaAFE3vW4/7r31Wr1058vlMlG1y93DzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVGU5YmpfdXZmVmF2WFRueS1VeVViWEwzY1BNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi80MDQyN2UtNzRmYS00YTY2LTgzN2Qt
YTUyM2JhY2RjMmJlLzEvamROWFk0eGdjTkNhdkJxNlBKNDFhbzRLYTFNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi80MDQyN2UtNzRmYS00YTY2LTgzN2QtYTUyM2JhY2RjMmJl
LzEvVGU5YmpfdXZmVmF2WFRueS1VeVViWEwzY1BNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLV2QMA0G
CSqGSIb3DQEBCwUAA4IBAQDOz8xdCJ6WB6mrEWSr6rLpYuLRXNb9jgBbjvJv7Eho
8PJ23tO5kOvo649VabgPbRLlG5uNm0mcFdElvRqOGoIk3Kl5pzjNcQXGq3YfqyQM
qReECw8MOT9cxs0ZkKFxSNhSakxHaFrXd+ly7Y8Hqn0zd5O+wb21ML+OZ7F1eOUU
XkhdvGBurNvjBGBaDau9v6RlcCfCcLgxempaArKnD6etsxTuiodftpGyA4HAyHZF
563Kq+fwCNc9CFV+Zuv7gCCZMR/w+GwAoTTDXW2OOyG6l1P+E/JTM0BWLbrOSBXD
U3AkZOx8gtK6zD5tSPUBfGNXaH1d12UUC17ChPQ7pviz
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:49 2024 by rpki-client on console.sobornost.net