Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/5KOAR4mf7MOmVjZZzw-oDI-wkuw.roa
File: 5KOAR4mf7MOmVjZZzw-oDI-wkuw.roa (raw, json)
Hash identifier: XJ859qFzQ9JBmzrfqvAFb19w+D3lkDAPlVm36nOhZJA=
Subject key identifier: E4:A3:80:47:89:9F:EC:C3:A6:56:36:59:CF:0F:A8:0C:8F:B0:92:EC
Certificate issuer: /CN=4dd1b2587490ad061cb207176bdeec81a531588c
Certificate serial: 0193DA38ED01E2FB4491A4402FB46CFC27C0
Authority key identifier: 4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/5KOAR4mf7MOmVjZZzw-oDI-wkuw.roa
Signing time: Wed 18 Dec 2024 14:43:04 +0000
ROA not before: Wed 18 Dec 2024 14:43:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 28944
IP address blocks: 80.231.174.0/24 maxlen: 24
80.231.248.0/24 maxlen: 24
85.187.213.0/24 maxlen: 24
85.187.214.0/24 maxlen: 24
85.187.215.0/24 maxlen: 24
130.250.109.0/24 maxlen: 24
130.250.133.0/24 maxlen: 24
130.250.134.0/24 maxlen: 24
147.185.246.0/23 maxlen: 24
147.185.246.0/24 maxlen: 24
147.185.247.0/24 maxlen: 24
147.185.254.0/23 maxlen: 24
147.185.254.0/24 maxlen: 24
147.185.255.0/24 maxlen: 24
151.237.11.0/24 maxlen: 24
151.237.12.0/24 maxlen: 24
151.237.95.0/24 maxlen: 24
195.219.123.0/24 maxlen: 24
195.234.98.0/24 maxlen: 24
2a01:3e7::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:da:38:ed:01:e2:fb:44:91:a4:40:2f:b4:6c:fc:27:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd1b2587490ad061cb207176bdeec81a531588c
Validity
Not Before: Dec 18 14:43:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e4a38047899fecc3a6563659cf0fa80c8fb092ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b4:7f:8f:e1:dd:12:0a:35:46:ce:3b:db:00:
87:77:20:56:8d:41:ba:73:fd:b4:55:e3:14:7a:04:
f0:7c:d1:81:1a:61:02:c3:03:39:0b:8d:36:90:b2:
9d:1f:6a:29:e7:8d:d1:5f:d3:75:76:37:cc:ae:44:
d9:75:39:92:3c:4a:82:dc:26:bf:a7:9f:66:9f:7a:
33:6c:5c:f3:49:d0:5f:4b:91:ac:b6:f5:56:cf:b7:
f0:51:d3:54:57:5d:d0:35:cf:3b:6b:20:99:0a:01:
ee:fc:cc:58:7a:68:92:df:26:d7:b9:19:37:a9:df:
d1:bf:f9:03:8c:d7:37:5e:ea:31:46:c8:34:6d:3f:
d5:c2:7d:f8:81:71:66:d2:92:7a:3f:f6:51:7d:28:
44:22:bc:c7:65:9f:2e:7d:1f:83:8c:71:2c:ae:f3:
1d:c6:5c:7c:e1:39:4d:36:fe:ea:0f:cc:23:f0:d0:
d4:bf:2c:2a:74:93:7a:89:ff:aa:5c:9c:a0:99:06:
41:0b:61:ef:01:5d:cb:ba:dc:6a:02:ff:f9:c8:30:
4a:1b:36:63:aa:5b:8f:0e:9e:8a:08:5b:99:c6:ea:
43:a7:bd:b9:8d:05:d8:e2:d9:37:86:09:cd:a1:8b:
d8:49:59:f1:17:c4:95:2a:46:0f:4b:1d:29:bd:5d:
c1:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:A3:80:47:89:9F:EC:C3:A6:56:36:59:CF:0F:A8:0C:8F:B0:92:EC
X509v3 Authority Key Identifier:
keyid:4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/5KOAR4mf7MOmVjZZzw-oDI-wkuw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/TdGyWHSQrQYcsgcXa97sgaUxWIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.231.174.0/24
80.231.248.0/24
85.187.213.0-85.187.215.255
130.250.109.0/24
130.250.133.0-130.250.134.255
147.185.246.0/23
147.185.254.0/23
151.237.11.0-151.237.12.255
151.237.95.0/24
195.219.123.0/24
195.234.98.0/24
IPv6:
2a01:3e7::/32
Signature Algorithm: sha256WithRSAEncryption
13:fc:28:c6:0c:cd:e0:78:a6:9f:a5:26:58:df:9b:88:04:8f:
be:75:54:95:dc:1c:59:a2:9f:41:26:0a:ac:06:92:66:46:7a:
cb:4c:27:fa:f1:56:f6:31:96:40:21:39:ae:63:26:60:c2:f6:
ea:c7:3c:88:46:25:c9:d1:a5:6f:8f:a0:ca:68:cb:92:d4:c1:
d2:a6:72:a7:ac:e8:0c:8f:77:d4:b1:e6:af:43:03:5c:fc:3d:
b4:5c:21:c7:48:9f:b9:8f:3d:50:78:29:04:f2:14:95:3b:43:
c6:1e:98:8d:0f:b5:80:5e:ac:ee:f0:72:15:d8:20:e1:e2:8a:
0b:35:b1:b7:2a:cd:91:09:7c:8b:f0:c8:28:0c:1f:b4:f9:3e:
24:fd:47:7a:2e:11:ca:ab:e5:9d:ee:20:c8:c1:b0:1c:35:4a:
90:af:b3:9d:a2:86:17:59:e6:1e:ab:04:cf:e2:76:12:87:99:
ae:23:86:35:54:39:a6:75:67:89:08:c9:9b:be:94:f6:a6:a4:
89:e8:87:93:76:a7:a4:82:a7:c6:bf:29:3c:6c:40:da:4c:c4:
7f:58:88:fc:09:9f:d9:72:75:a5:1e:1d:a7:8e:1c:5a:b5:1e:
9f:03:14:e4:ed:a6:ba:77:49:28:1b:42:54:05:0e:ac:d8:79:
70:47:3f:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:54 2024 by rpki-client on console.sobornost.net