Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/fe5094-f188-47f6-b945-e4c7180730cb/1/sCen71FgQXR9giFKEmVlPITvYW4.roa
File: sCen71FgQXR9giFKEmVlPITvYW4.roa (raw, json)
Hash identifier: 74wIFWp0YdSA6+DObCILXOurrg5Sxeokx/dKN1elZj0=
Subject key identifier: B0:27:A7:EF:51:60:41:74:7D:82:21:4A:12:65:65:3C:84:EF:61:6E
Certificate issuer: /CN=c20e52dab06da4175b45c777961f4ea39b9307b7
Certificate serial: 018CC34897A5C86CD6F7EA371D63DDF5B7AB
Authority key identifier: C2:0E:52:DA:B0:6D:A4:17:5B:45:C7:77:96:1F:4E:A3:9B:93:07:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wg5S2rBtpBdbRcd3lh9Oo5uTB7c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/fe5094-f188-47f6-b945-e4c7180730cb/1/sCen71FgQXR9giFKEmVlPITvYW4.roa
Signing time: Mon 01 Jan 2024 04:29:23 +0000
ROA not before: Mon 01 Jan 2024 04:29:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56650
IP address blocks: 193.34.205.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:97:a5:c8:6c:d6:f7:ea:37:1d:63:dd:f5:b7:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c20e52dab06da4175b45c777961f4ea39b9307b7
Validity
Not Before: Jan 1 04:29:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b027a7ef516041747d82214a1265653c84ef616e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:86:38:c5:d9:88:67:b2:a9:f2:79:8b:10:16:
8d:b1:b1:9c:a0:cb:a3:1e:cc:a6:c6:d0:91:9a:57:
e4:89:97:ed:5a:2b:cf:2f:48:f1:72:45:71:d0:c4:
13:6b:d4:5f:c9:d1:ad:22:8b:c7:c5:97:b3:32:76:
8e:e4:4b:64:6b:17:30:6f:e2:37:d8:84:f6:cf:f7:
15:b3:53:3e:2f:57:5c:17:e7:fa:06:66:c8:41:5e:
81:89:e7:72:c3:13:7f:79:67:42:85:b6:c3:fd:33:
ee:b0:c3:b6:79:45:ef:2b:33:62:88:47:56:42:9a:
9f:16:64:4b:c8:6d:1b:71:91:7a:cf:4c:94:79:71:
fa:9f:7d:44:fb:3a:0b:6b:3f:42:51:9b:c0:72:3c:
f0:77:d2:e4:ce:56:46:e6:ad:09:88:8b:6c:6a:92:
d7:57:22:97:17:4b:c5:a2:6b:e1:1f:47:14:2c:30:
6a:c9:44:82:e9:fe:69:44:51:83:88:9e:1e:f7:ef:
57:ee:cb:92:3b:07:23:8f:60:04:eb:9b:7b:48:0b:
d2:f2:b4:4a:3d:e3:44:f5:71:4d:78:34:57:c3:f1:
c1:cf:74:16:24:ad:b5:47:4f:2e:ee:c5:15:0e:16:
61:a0:04:7f:1b:2f:64:f4:24:c9:28:0d:6d:2b:b2:
8d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:27:A7:EF:51:60:41:74:7D:82:21:4A:12:65:65:3C:84:EF:61:6E
X509v3 Authority Key Identifier:
keyid:C2:0E:52:DA:B0:6D:A4:17:5B:45:C7:77:96:1F:4E:A3:9B:93:07:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wg5S2rBtpBdbRcd3lh9Oo5uTB7c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/fe5094-f188-47f6-b945-e4c7180730cb/1/sCen71FgQXR9giFKEmVlPITvYW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/fe5094-f188-47f6-b945-e4c7180730cb/1/wg5S2rBtpBdbRcd3lh9Oo5uTB7c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.34.205.0/24
Signature Algorithm: sha256WithRSAEncryption
14:9f:3e:9e:2f:c3:62:a6:ad:58:44:2c:bd:88:e3:ae:19:a3:
57:33:e2:fb:b0:07:bd:d8:c9:7c:33:02:ef:0f:fe:8c:cb:28:
03:50:e8:f1:a5:91:7c:07:d3:17:f1:7a:6d:c9:50:6d:0e:45:
a0:5b:63:10:c7:1d:28:20:ca:95:07:66:70:50:ed:7a:9d:41:
08:68:28:14:8c:11:52:ae:60:79:b3:39:14:02:69:df:cd:f5:
23:71:3f:68:02:85:43:04:1d:a5:7a:b3:82:a6:ac:fe:9e:53:
d0:e6:c8:96:59:a3:64:74:0f:5e:ca:39:c7:d4:41:01:98:e8:
a7:a0:54:3b:05:0d:c9:59:28:b4:29:d7:fa:37:93:99:ea:89:
e5:08:c5:5e:92:71:2c:a3:81:43:5e:19:d7:e2:30:b1:2c:c0:
95:20:68:e5:09:12:db:57:d7:d4:db:2e:95:df:6e:67:b3:9c:
77:a9:15:df:bc:9f:72:1e:08:16:b6:9e:2b:75:91:48:fc:97:
00:4c:7f:02:4d:30:15:1f:9a:c6:b5:fe:76:3f:53:82:3f:ca:
20:19:43:22:a1:e6:6f:3b:9f:04:48:38:57:4d:7f:aa:11:4c:
be:b4:62:2a:d2:a0:f8:d1:2e:67:61:68:f1:02:b6:61:ac:47:
c5:a0:6e:c5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzDSJelyGzW9+o3HWPd9berMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyMGU1MmRhYjA2ZGE0MTc1YjQ1Yzc3Nzk2MWY0ZWEzOWI5
MzA3YjcwHhcNMjQwMTAxMDQyOTIzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMDI3YTdlZjUxNjA0MTc0N2Q4MjIxNGExMjY1NjUzYzg0ZWY2MTZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApoY4xdmIZ7Kp8nmLEBaNsbGcoMuj
HsymxtCRmlfkiZftWivPL0jxckVx0MQTa9RfydGtIovHxZezMnaO5Etkaxcwb+I3
2IT2z/cVs1M+L1dcF+f6BmbIQV6BiedywxN/eWdChbbD/TPusMO2eUXvKzNiiEdW
QpqfFmRLyG0bcZF6z0yUeXH6n31E+zoLaz9CUZvAcjzwd9LkzlZG5q0JiItsapLX
VyKXF0vFomvhH0cULDBqyUSC6f5pRFGDiJ4e9+9X7suSOwcjj2AE65t7SAvS8rRK
PeNE9XFNeDRXw/HBz3QWJK21R08u7sUVDhZhoAR/Gy9k9CTJKA1tK7KNoQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLAnp+9RYEF0fYIhShJlZTyE72FuMB8GA1UdIwQY
MBaAFMIOUtqwbaQXW0XHd5YfTqObkwe3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd2c1UzJyQnRwQmRiUmNkM2xoOU9vNXVUQjdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9mZTUwOTQtZjE4OC00N2Y2LWI5NDUt
ZTRjNzE4MDczMGNiLzEvc0NlbjcxRmdRWFI5Z2lGS0VtVmxQSVR2WVc0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS9mZTUwOTQtZjE4OC00N2Y2LWI5NDUtZTRjNzE4MDczMGNi
LzEvd2c1UzJyQnRwQmRiUmNkM2xoOU9vNXVUQjdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwSLNMA0G
CSqGSIb3DQEBCwUAA4IBAQAUnz6eL8Nipq1YRCy9iOOuGaNXM+L7sAe92Ml8MwLv
D/6MyygDUOjxpZF8B9MX8XptyVBtDkWgW2MQxx0oIMqVB2ZwUO16nUEIaCgUjBFS
rmB5szkUAmnfzfUjcT9oAoVDBB2lerOCpqz+nlPQ5siWWaNkdA9eyjnH1EEBmOin
oFQ7BQ3JWSi0Kdf6N5OZ6onlCMVeknEso4FDXhnX4jCxLMCVIGjlCRLbV9fU2y6V
325ns5x3qRXfvJ9yHggWtp4rdZFI/JcATH8CTTAVH5rGtf52P1OCP8ogGUMioeZv
O58ESDhXTX+qEUy+tGIq0qD40S5nYWjxArZhrEfFoG7F
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:59 2024 by rpki-client on console.sobornost.net