Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/149bc5-51aa-4e7b-8f03-b73a36d939b2/1/2rwp2BYgrkkVNqLgVSQdPF8frDk.roa
File: 2rwp2BYgrkkVNqLgVSQdPF8frDk.roa (raw, json)
Hash identifier: 6flBRnMjA/+UPMVy+1Oh6mt0lfkVnLVPMbZSTyfgPqA=
Subject key identifier: DA:BC:29:D8:16:20:AE:49:15:36:A2:E0:55:24:1D:3C:5F:1F:AC:39
Certificate issuer: /CN=15ffa042114301368b4069abd68a1efbac47fdce
Certificate serial: 018CCA29FB325211570D316756961E27D2AE
Authority key identifier: 15:FF:A0:42:11:43:01:36:8B:40:69:AB:D6:8A:1E:FB:AC:47:FD:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ff-gQhFDATaLQGmr1ooe-6xH_c4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/149bc5-51aa-4e7b-8f03-b73a36d939b2/1/2rwp2BYgrkkVNqLgVSQdPF8frDk.roa
Signing time: Tue 02 Jan 2024 12:33:18 +0000
ROA not before: Tue 02 Jan 2024 12:33:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203273
IP address blocks: 185.95.4.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:fb:32:52:11:57:0d:31:67:56:96:1e:27:d2:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15ffa042114301368b4069abd68a1efbac47fdce
Validity
Not Before: Jan 2 12:33:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dabc29d81620ae491536a2e055241d3c5f1fac39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:72:fe:1b:d0:3c:20:59:60:70:40:3c:5a:b4:
cb:c5:e0:e8:16:f0:ba:07:17:c3:d6:9d:16:c6:20:
b1:23:b7:99:cb:c4:22:59:8f:1a:21:b0:cb:f8:43:
9a:7c:20:8b:59:b3:93:1c:3f:dd:1f:ce:4e:b4:88:
11:df:0c:70:e7:a9:6a:66:58:29:07:5d:73:23:af:
35:5f:91:47:f5:c3:c3:d0:da:db:f2:4c:f9:83:5b:
41:36:fd:90:c2:b8:f7:66:b8:28:7f:ac:b8:35:5b:
1a:75:e6:71:47:71:19:79:f6:60:9a:9a:2e:8e:74:
56:77:11:6e:4a:d5:8d:d1:ca:40:7f:44:db:93:4a:
b7:ae:e6:87:5c:a2:ca:78:d0:f5:b1:c9:ce:4a:c8:
d3:1d:74:29:60:bf:57:c2:ee:60:aa:93:a2:96:0e:
a9:7e:93:0b:5b:ec:10:66:27:95:30:01:e9:db:da:
36:3d:ed:58:70:a2:76:ae:db:89:61:fe:5f:82:57:
a4:67:3c:ba:f2:14:1b:21:b8:2d:fa:a6:c1:dc:1e:
40:87:0a:33:89:c1:e4:c9:1a:0c:94:4e:42:60:fe:
f8:a9:bf:8b:2f:d6:ae:43:7f:ea:74:c5:e3:d3:77:
5a:bf:a5:ac:0d:6f:39:56:97:48:8f:4a:bf:2e:ae:
75:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:BC:29:D8:16:20:AE:49:15:36:A2:E0:55:24:1D:3C:5F:1F:AC:39
X509v3 Authority Key Identifier:
keyid:15:FF:A0:42:11:43:01:36:8B:40:69:AB:D6:8A:1E:FB:AC:47:FD:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ff-gQhFDATaLQGmr1ooe-6xH_c4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/149bc5-51aa-4e7b-8f03-b73a36d939b2/1/2rwp2BYgrkkVNqLgVSQdPF8frDk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/149bc5-51aa-4e7b-8f03-b73a36d939b2/1/Ff-gQhFDATaLQGmr1ooe-6xH_c4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.95.4.0/24
Signature Algorithm: sha256WithRSAEncryption
17:7b:6d:fb:9f:e1:47:ee:8b:e0:88:97:5f:32:a9:e0:19:de:
bb:a7:6b:f2:b4:2f:ab:53:1e:5d:14:5a:48:83:92:80:85:58:
ac:8e:da:c8:3e:8a:9b:91:b7:82:40:8a:c2:33:d9:a3:90:61:
de:e5:c3:cb:e7:e9:98:57:3f:16:c9:e9:74:d0:ab:84:ff:64:
19:8d:d7:bf:84:60:67:56:1d:29:91:82:23:7b:6e:a3:5e:d2:
c2:99:62:62:3a:04:16:7d:51:01:79:44:29:2c:f4:a9:9e:01:
dc:82:72:e2:47:61:1a:f3:96:f6:46:d5:6b:b5:5f:eb:61:71:
43:ae:00:32:0e:03:de:d7:ae:ac:4b:5d:45:5e:ef:8b:5f:96:
88:dd:ed:06:90:45:c6:5c:bb:28:1d:85:d4:f4:02:03:ad:7d:
4a:76:0c:29:71:8c:a6:85:31:b5:be:f1:d7:fb:0f:fc:79:21:
94:3e:ad:c9:5c:49:27:11:6e:ea:d7:aa:0e:58:f7:46:2b:c6:
6a:f8:27:60:45:84:6e:e6:9c:2f:48:74:40:dc:42:3e:d4:8b:
ec:b0:ac:1e:71:73:a9:70:eb:47:5f:19:fc:09:cb:8c:4f:b1:
fa:f3:ec:85:f4:f9:81:fd:0a:36:cc:71:0a:4c:11:cb:fa:fa:
f5:c5:9b:04
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzKKfsyUhFXDTFnVpYeJ9KuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1ZmZhMDQyMTE0MzAxMzY4YjQwNjlhYmQ2OGExZWZiYWM0
N2ZkY2UwHhcNMjQwMTAyMTIzMzE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYWJjMjlkODE2MjBhZTQ5MTUzNmEyZTA1NTI0MWQzYzVmMWZhYzM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl3L+G9A8IFlgcEA8WrTLxeDoFvC6
BxfD1p0WxiCxI7eZy8QiWY8aIbDL+EOafCCLWbOTHD/dH85OtIgR3wxw56lqZlgp
B11zI681X5FH9cPD0Nrb8kz5g1tBNv2Qwrj3Zrgof6y4NVsadeZxR3EZefZgmpou
jnRWdxFuStWN0cpAf0Tbk0q3ruaHXKLKeND1scnOSsjTHXQpYL9Xwu5gqpOilg6p
fpMLW+wQZieVMAHp29o2Pe1YcKJ2rtuJYf5fglekZzy68hQbIbgt+qbB3B5Ahwoz
icHkyRoMlE5CYP74qb+LL9auQ3/qdMXj03dav6WsDW85VpdIj0q/Lq51KQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNq8KdgWIK5JFTai4FUkHTxfH6w5MB8GA1UdIwQY
MBaAFBX/oEIRQwE2i0Bpq9aKHvusR/3OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmYtZ1FoRkRBVGFMUUdtcjFvb2UtNnhIX2M0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8xNDliYzUtNTFhYS00ZTdiLThmMDMt
YjczYTM2ZDkzOWIyLzEvMnJ3cDJCWWdya2tWTnFMZ1ZTUWRQRjhmckRrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi8xNDliYzUtNTFhYS00ZTdiLThmMDMtYjczYTM2ZDkzOWIy
LzEvRmYtZ1FoRkRBVGFMUUdtcjFvb2UtNnhIX2M0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuV8EMA0G
CSqGSIb3DQEBCwUAA4IBAQAXe237n+FH7ovgiJdfMqngGd67p2vytC+rUx5dFFpI
g5KAhVisjtrIPoqbkbeCQIrCM9mjkGHe5cPL5+mYVz8Wyel00KuE/2QZjde/hGBn
Vh0pkYIje26jXtLCmWJiOgQWfVEBeUQpLPSpngHcgnLiR2Ea85b2RtVrtV/rYXFD
rgAyDgPe166sS11FXu+LX5aI3e0GkEXGXLsoHYXU9AIDrX1KdgwpcYymhTG1vvHX
+w/8eSGUPq3JXEknEW7q16oOWPdGK8Zq+CdgRYRu5pwvSHRA3EI+1IvssKwecXOp
cOtHXxn8CcuMT7H68+yF9PmB/Qo2zHEKTBHL+vr1xZsE
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:59 2024 by rpki-client on console.sobornost.net