Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/75bLuJMqhMeVTwRbOweWeih6gxk.roa
File: 75bLuJMqhMeVTwRbOweWeih6gxk.roa (raw, json)
Hash identifier: 8ukO3RWOLKwVuWsvsjpBRY32qPgMGYT5MbkJPWr8Gv0=
Subject key identifier: EF:96:CB:B8:93:2A:84:C7:95:4F:04:5B:3B:07:96:7A:28:7A:83:19
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0190A14F1B324C3B35D4B4713AE4980F8323
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/75bLuJMqhMeVTwRbOweWeih6gxk.roa
Signing time: Thu 11 Jul 2024 10:20:34 +0000
ROA not before: Thu 11 Jul 2024 10:20:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34872
IP address blocks: 45.154.97.0/24 maxlen: 24
62.3.50.0/24 maxlen: 24
194.28.98.0/23 maxlen: 24
2a0c:b640::/32 maxlen: 48
2a0c:b641::/44 maxlen: 48
2a0c:b641:10::/44 maxlen: 48
2a0c:b641:60::/44 maxlen: 48
2a0c:b641:540::/44 maxlen: 48
2a0c:b641:70f::/48 maxlen: 48
2a0c:b641:820::/44 maxlen: 48
2a0f:8400::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a1:4f:1b:32:4c:3b:35:d4:b4:71:3a:e4:98:0f:83:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jul 11 10:20:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ef96cbb8932a84c7954f045b3b07967a287a8319
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:ad:ae:a7:f4:23:ee:f6:b5:77:3c:18:77:fa:
e9:80:e1:97:98:b6:a6:5b:3c:01:b7:ef:a7:37:46:
3b:3f:db:e9:5f:5e:d9:81:ea:e9:33:84:64:37:50:
44:f3:07:36:95:5e:4c:fe:19:6e:4d:e8:3d:14:d3:
b4:8b:8e:8d:3f:c3:d7:60:ad:cc:29:39:86:94:60:
70:26:4c:02:ff:68:a7:09:2d:61:f6:29:89:0d:8f:
5b:08:3f:4f:07:50:f7:9c:53:35:14:3e:c1:02:2a:
2b:63:6f:d3:25:26:df:36:45:b0:5f:25:02:52:d1:
0d:08:93:15:47:56:40:c6:7c:12:f1:e6:52:da:19:
42:b0:7d:e0:a3:4b:d0:dd:9a:89:89:ab:0f:26:f2:
46:8c:4d:47:2b:95:25:1a:6d:37:79:a0:77:67:bc:
c1:76:24:75:85:cc:bd:97:18:93:86:4b:e3:53:6f:
0c:c5:47:47:ba:5e:bc:53:25:4f:8c:35:c7:3e:10:
b1:78:58:05:ea:6c:9c:48:5c:72:24:07:9d:c9:9a:
d7:50:7f:5c:66:41:c6:b9:b1:a6:26:ca:f3:0e:fe:
10:e1:7a:66:af:0a:ec:23:35:32:5c:7b:82:c7:e8:
b4:ba:1a:54:4d:df:89:06:57:2f:fb:1c:f0:66:e7:
d1:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:96:CB:B8:93:2A:84:C7:95:4F:04:5B:3B:07:96:7A:28:7A:83:19
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/75bLuJMqhMeVTwRbOweWeih6gxk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.97.0/24
62.3.50.0/24
194.28.98.0/23
IPv6:
2a0c:b640::-2a0c:b641:1f:ffff:ffff:ffff:ffff:ffff
2a0c:b641:60::/44
2a0c:b641:540::/44
2a0c:b641:70f::/48
2a0c:b641:820::/44
2a0f:8400::/32
Signature Algorithm: sha256WithRSAEncryption
0b:5c:2e:98:61:24:22:67:de:01:08:ac:0f:cf:69:73:eb:0e:
00:b2:b8:0e:64:26:cd:99:36:f7:cf:77:ec:e4:fb:9d:34:38:
85:a1:4a:ce:eb:70:50:0f:d3:05:f1:02:b4:1e:42:7c:c7:11:
f7:fe:e5:e9:0f:b2:4c:ea:a6:31:80:21:0a:dc:ec:01:68:98:
8c:3b:a9:e4:90:56:3a:dd:84:51:98:e5:fe:32:de:39:25:7c:
6e:90:04:ac:f2:84:f7:d3:2b:02:41:11:0d:6c:b3:6c:c0:e7:
62:59:e9:bb:4c:ba:43:e4:7e:fa:b7:5a:9c:ee:85:18:ac:a4:
a2:ef:ab:77:1a:bd:88:d9:06:c7:f7:fd:ad:17:f9:2c:65:b6:
0b:f3:0e:37:b9:7a:30:36:88:86:18:bc:1d:3f:f6:21:53:7b:
3f:7f:88:87:be:d6:71:10:56:2b:e4:df:0c:78:6b:76:2b:cd:
1c:e3:15:43:f3:46:88:56:b1:37:fe:d5:be:a5:a8:11:c0:26:
eb:44:bf:bf:e1:3a:bf:13:ab:36:db:12:ce:06:83:4f:49:79:
fb:14:17:39:06:78:6d:17:b9:96:a4:df:c4:e0:e8:ad:65:0f:
d1:ed:42:0a:a8:7d:be:8f:2a:75:14:16:f5:34:3e:0c:5f:81:
f4:7b:9f:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 14 11:11:32 2024 by rpki-client on console.sobornost.net