Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/EJpqAUwgP9ThwYYluTiEDqX0U7M.roa
File: EJpqAUwgP9ThwYYluTiEDqX0U7M.roa (raw, json)
Hash identifier: VQzJ7QzayYwg19Q9jqpQkBgbQ1VO1h6iDmCqRScowvw=
Subject key identifier: 10:9A:6A:01:4C:20:3F:D4:E1:C1:86:25:B9:38:84:0E:A5:F4:53:B3
Certificate issuer: /CN=b5faec4b8d992dd6b9cd89a8489d3c3a652aecd2
Certificate serial: 018CC26D6A335146786116222B6E77751B71
Authority key identifier: B5:FA:EC:4B:8D:99:2D:D6:B9:CD:89:A8:48:9D:3C:3A:65:2A:EC:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tfrsS42ZLda5zYmoSJ08OmUq7NI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/EJpqAUwgP9ThwYYluTiEDqX0U7M.roa
Signing time: Mon 01 Jan 2024 00:29:59 +0000
ROA not before: Mon 01 Jan 2024 00:29:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64439
IP address blocks: 37.60.177.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:6a:33:51:46:78:61:16:22:2b:6e:77:75:1b:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5faec4b8d992dd6b9cd89a8489d3c3a652aecd2
Validity
Not Before: Jan 1 00:29:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=109a6a014c203fd4e1c18625b938840ea5f453b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:6e:9f:db:e3:73:4a:a1:80:66:3a:76:d6:b2:
c4:41:0f:0e:79:df:15:97:94:6a:d2:11:9b:ab:91:
b9:63:29:48:ef:23:82:1a:ad:b0:34:07:4e:49:6e:
0f:00:6b:a9:9f:e0:73:0b:ec:94:98:2c:bc:c1:a6:
96:bf:de:40:f8:57:55:d5:f8:08:6b:4e:90:e8:5a:
1a:90:48:22:f9:da:03:4d:8a:82:2e:0b:a5:7d:44:
b1:0b:c5:58:6b:2f:27:b5:c4:3e:93:61:4d:74:93:
8f:b1:87:00:d4:49:bc:8a:22:04:97:38:1d:35:4d:
e0:98:11:47:12:86:29:86:4f:04:d6:9c:42:d7:ed:
7a:b5:97:4a:32:f6:14:a3:e6:30:7f:66:4c:e1:60:
a6:21:db:ed:37:bb:83:f9:35:f8:7e:81:84:8f:70:
bd:1a:08:63:5e:f2:65:31:4d:fe:94:13:91:d1:47:
6b:97:52:a5:eb:6f:df:84:01:f6:d7:62:96:92:89:
21:30:cc:14:73:3b:3c:54:92:4b:55:e9:ba:9c:02:
d7:50:bb:86:9e:ab:a2:a7:06:0c:cd:51:45:17:39:
e3:3f:8c:b5:c2:19:3f:40:20:72:2e:b3:59:b6:80:
4d:ed:3a:5b:bb:8e:77:76:35:e8:4b:b6:b2:8b:3b:
5e:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:9A:6A:01:4C:20:3F:D4:E1:C1:86:25:B9:38:84:0E:A5:F4:53:B3
X509v3 Authority Key Identifier:
keyid:B5:FA:EC:4B:8D:99:2D:D6:B9:CD:89:A8:48:9D:3C:3A:65:2A:EC:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tfrsS42ZLda5zYmoSJ08OmUq7NI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/EJpqAUwgP9ThwYYluTiEDqX0U7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/tfrsS42ZLda5zYmoSJ08OmUq7NI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.60.177.0/24
Signature Algorithm: sha256WithRSAEncryption
43:dd:69:f9:9a:5f:af:44:05:c0:f6:33:5d:71:c3:5e:25:5a:
88:04:2c:28:17:fd:82:af:b4:f2:c1:33:b1:77:92:3c:59:2f:
a4:39:f6:19:97:8d:ea:ca:5e:41:9a:0e:42:24:ed:d9:81:7d:
33:d2:44:c8:91:be:47:84:65:68:14:2c:9f:85:03:6e:0a:b8:
bb:79:4d:b0:7c:a1:47:37:f8:8e:d8:21:85:f6:57:f5:43:85:
ed:d1:8f:8d:9e:53:cc:ab:fa:00:ea:e1:61:57:ce:f9:6a:52:
a5:89:cf:1f:7b:24:7d:44:a4:65:5e:ac:9b:b0:78:40:99:f2:
c2:b2:02:b6:60:35:d1:77:74:ec:d2:46:4e:3c:3a:d4:a3:46:
12:d9:32:a7:13:dc:e6:a0:77:cd:9f:b5:d3:a0:6e:b8:db:dc:
82:7b:47:54:01:27:56:7a:7f:11:e4:c9:bb:66:62:17:85:b5:
86:76:ac:1f:3e:e2:a8:7f:28:54:2d:99:ba:f9:13:30:52:55:
40:f3:08:e8:6f:1a:4f:1d:42:52:b9:d1:34:78:10:ac:a9:9b:
5c:f4:e5:1c:19:3a:44:91:d3:cb:d4:33:b6:4e:b1:8f:8c:89:
85:aa:c0:75:5f:65:40:90:22:87:56:ba:25:7a:30:e4:9c:96:
36:b1:bb:30
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzCbWozUUZ4YRYiK253dRtxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1ZmFlYzRiOGQ5OTJkZDZiOWNkODlhODQ4OWQzYzNhNjUy
YWVjZDIwHhcNMjQwMTAxMDAyOTU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMDlhNmEwMTRjMjAzZmQ0ZTFjMTg2MjViOTM4ODQwZWE1ZjQ1M2IzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA026f2+NzSqGAZjp21rLEQQ8Oed8V
l5Rq0hGbq5G5YylI7yOCGq2wNAdOSW4PAGupn+BzC+yUmCy8waaWv95A+FdV1fgI
a06Q6FoakEgi+doDTYqCLgulfUSxC8VYay8ntcQ+k2FNdJOPsYcA1Em8iiIElzgd
NU3gmBFHEoYphk8E1pxC1+16tZdKMvYUo+Ywf2ZM4WCmIdvtN7uD+TX4foGEj3C9
GghjXvJlMU3+lBOR0Udrl1Kl62/fhAH212KWkokhMMwUczs8VJJLVem6nALXULuG
nquipwYMzVFFFznjP4y1whk/QCByLrNZtoBN7Tpbu453djXoS7ayizterQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBCaagFMID/U4cGGJbk4hA6l9FOzMB8GA1UdIwQY
MBaAFLX67EuNmS3Wuc2JqEidPDplKuzSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdGZyc1M0MlpMZGE1elltb1NKMDhPbVVxN05JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS82OGMyOTYtNjliMi00MDcwLTlmZjkt
NDI0M2RlY2FkMzYwLzEvRUpwcUFVd2dQOVRod1lZbHVUaUVEcVgwVTdNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS82OGMyOTYtNjliMi00MDcwLTlmZjktNDI0M2RlY2FkMzYw
LzEvdGZyc1M0MlpMZGE1elltb1NKMDhPbVVxN05JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJTyxMA0G
CSqGSIb3DQEBCwUAA4IBAQBD3Wn5ml+vRAXA9jNdccNeJVqIBCwoF/2Cr7TywTOx
d5I8WS+kOfYZl43qyl5Bmg5CJO3ZgX0z0kTIkb5HhGVoFCyfhQNuCri7eU2wfKFH
N/iO2CGF9lf1Q4Xt0Y+NnlPMq/oA6uFhV875alKlic8feyR9RKRlXqybsHhAmfLC
sgK2YDXRd3Ts0kZOPDrUo0YS2TKnE9zmoHfNn7XToG6429yCe0dUASdWen8R5Mm7
ZmIXhbWGdqwfPuKofyhULZm6+RMwUlVA8wjobxpPHUJSudE0eBCsqZtc9OUcGTpE
kdPL1DO2TrGPjImFqsB1X2VAkCKHVrolejDknJY2sbsw
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:55 2024 by rpki-client on console.sobornost.net