Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/rYXbs2uXv6aKVW-qYtbV5H80dIY.roa
File: rYXbs2uXv6aKVW-qYtbV5H80dIY.roa (raw, json)
Hash identifier: Vk7fyLXHKDeC+SLGVi4lLz4omanNFXWPWRtvMzzO0zQ=
Subject key identifier: AD:85:DB:B3:6B:97:BF:A6:8A:55:6F:AA:62:D6:D5:E4:7F:34:74:86
Certificate issuer: /CN=4a21c91b63bbbda8804a749f3d610e8b217f9b73
Certificate serial: 018CC7943FB5D1DC078C8C7E7F9B77858881
Authority key identifier: 4A:21:C9:1B:63:BB:BD:A8:80:4A:74:9F:3D:61:0E:8B:21:7F:9B:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SiHJG2O7vaiASnSfPWEOiyF_m3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/rYXbs2uXv6aKVW-qYtbV5H80dIY.roa
Signing time: Tue 02 Jan 2024 00:30:30 +0000
ROA not before: Tue 02 Jan 2024 00:30:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205555
IP address blocks: 5.182.156.0/22 maxlen: 22
185.214.53.0/24 maxlen: 24
185.214.54.0/24 maxlen: 24
185.214.55.0/24 maxlen: 24
185.214.52.0/24 maxlen: 24
2a0b:95c0::/32 maxlen: 32
2a0b:95c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:3f:b5:d1:dc:07:8c:8c:7e:7f:9b:77:85:88:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a21c91b63bbbda8804a749f3d610e8b217f9b73
Validity
Not Before: Jan 2 00:30:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ad85dbb36b97bfa68a556faa62d6d5e47f347486
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:22:36:30:77:a1:c1:c9:3f:77:4e:d9:5c:e2:
6b:9f:27:9b:99:8e:eb:72:0c:b7:7b:31:73:94:88:
d2:3b:da:47:64:ad:28:bc:62:f3:bc:9f:6c:ef:d4:
eb:c5:ac:08:9f:7e:a2:94:70:55:f9:47:0f:31:85:
d5:e4:e3:61:c3:86:f7:42:47:53:aa:13:89:91:b4:
c7:b4:85:16:06:7d:94:62:8b:23:c7:40:b0:27:83:
81:be:55:2a:b1:3f:08:b5:9b:77:98:46:f0:ad:06:
99:00:69:74:58:ae:d4:45:36:c4:ad:1a:7d:ae:ae:
41:b9:8e:0c:dd:ef:e1:39:37:27:4c:75:15:ec:5d:
c4:b6:aa:9a:a3:fc:84:ea:ed:fd:f1:ad:5a:86:5a:
0b:0e:64:76:59:60:80:a9:78:fb:9c:da:d4:51:35:
24:24:38:2c:af:cd:8b:3e:1e:13:47:e0:b7:1c:47:
eb:8d:3e:03:21:57:aa:7f:11:02:8f:46:b4:fc:b8:
d7:c7:f2:5c:8a:7d:a4:7a:47:9a:4b:f2:62:d6:78:
22:54:47:4b:ee:2b:12:12:a1:b2:0b:3c:23:d3:16:
29:f5:dd:4f:c6:b0:f6:64:80:b9:f9:85:d7:02:ef:
0e:7b:84:fe:46:b9:a5:f7:a1:e7:92:8f:ee:1c:43:
1f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:85:DB:B3:6B:97:BF:A6:8A:55:6F:AA:62:D6:D5:E4:7F:34:74:86
X509v3 Authority Key Identifier:
keyid:4A:21:C9:1B:63:BB:BD:A8:80:4A:74:9F:3D:61:0E:8B:21:7F:9B:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SiHJG2O7vaiASnSfPWEOiyF_m3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/rYXbs2uXv6aKVW-qYtbV5H80dIY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.156.0/22
185.214.52.0/22
IPv6:
2a0b:95c0::/32
Signature Algorithm: sha256WithRSAEncryption
10:24:e4:6f:20:20:01:eb:06:95:56:cb:ef:48:1b:ce:cc:b3:
e5:0f:1b:0b:ff:19:5a:fe:be:0d:46:8e:a3:a5:c6:44:02:90:
d3:bd:3e:9b:82:f5:5a:05:a6:fa:8b:5f:82:1a:ba:7c:c3:1e:
7a:8c:57:76:25:c8:50:9c:93:e7:73:9f:9c:43:53:ac:14:0e:
1c:b9:7b:7a:00:82:00:b6:ae:ed:d1:15:4c:d4:0c:62:42:29:
9e:86:72:e3:66:e4:9c:21:26:09:d3:1c:7f:70:42:6c:7b:6e:
1c:5b:b0:49:f8:aa:9c:f5:21:98:0b:07:06:da:7f:3c:41:e5:
7f:ce:da:13:4c:8c:6f:49:ad:26:c9:f7:aa:f7:41:3e:82:94:
79:79:57:b4:ea:ba:74:f6:40:d1:40:82:f1:2d:f3:61:9b:ab:
fb:e5:d4:e7:5f:fe:48:10:db:4c:76:19:d8:65:26:44:9b:79:
b2:dc:a4:31:be:d0:1f:b7:00:ef:d5:12:3b:10:95:d5:09:af:
c1:9e:c5:b0:b3:ff:e3:ad:bb:18:9d:cb:b9:f5:f6:34:49:3c:
26:49:69:31:87:a6:b7:29:d6:63:9d:88:a2:1e:9b:af:13:a2:
b8:da:32:8f:6e:aa:44:f4:32:7e:98:49:c9:9e:30:c9:c2:7f:
e6:5a:21:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 19:17:48 2024 by rpki-client on console.sobornost.net