Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/2864c8-c042-428f-a02d-3b34c23b9c5a/1/o-M90lD0LsZd6N6MksgGvG1dGo0.roa
File: o-M90lD0LsZd6N6MksgGvG1dGo0.roa (raw, json)
Hash identifier: ipoavhj2uXAeJw3MK0coGJXzWCQlWfUeY1St8vIcECs=
Subject key identifier: A3:E3:3D:D2:50:F4:2E:C6:5D:E8:DE:8C:92:C8:06:BC:6D:5D:1A:8D
Certificate issuer: /CN=5d6c15ca903d7d25453eaeb5f724a04e3aa65908
Certificate serial: 01933013E4DB0F454462B5CFF0E3F50130C9
Authority key identifier: 5D:6C:15:CA:90:3D:7D:25:45:3E:AE:B5:F7:24:A0:4E:3A:A6:59:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XWwVypA9fSVFPq619ySgTjqmWQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/2864c8-c042-428f-a02d-3b34c23b9c5a/1/o-M90lD0LsZd6N6MksgGvG1dGo0.roa
Signing time: Fri 15 Nov 2024 13:47:10 +0000
ROA not before: Fri 15 Nov 2024 13:47:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6775
IP address blocks: 79.134.224.0/19 maxlen: 24
79.134.225.0/24 maxlen: 24
79.134.227.0/24 maxlen: 24
79.134.228.0/24 maxlen: 24
79.134.229.0/24 maxlen: 24
79.134.230.0/24 maxlen: 24
79.134.231.0/24 maxlen: 24
79.134.232.0/24 maxlen: 24
79.134.233.0/24 maxlen: 24
79.134.234.0/24 maxlen: 24
79.134.235.0/24 maxlen: 24
79.134.236.0/23 maxlen: 23
79.134.236.0/24 maxlen: 24
79.134.237.0/24 maxlen: 24
79.134.238.0/23 maxlen: 23
79.134.240.0/20 maxlen: 24
79.134.247.0/24 maxlen: 24
79.134.250.0/23 maxlen: 23
79.134.250.0/24 maxlen: 24
79.134.251.0/24 maxlen: 24
79.134.252.0/24 maxlen: 24
79.134.254.0/23 maxlen: 23
128.0.33.0/24 maxlen: 24
185.22.52.0/22 maxlen: 22
185.22.52.0/24 maxlen: 24
2001:4b28::/32 maxlen: 32
2a01:528::/32 maxlen: 32
2a04:1d40::/29 maxlen: 29
2a04:1d40::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:30:13:e4:db:0f:45:44:62:b5:cf:f0:e3:f5:01:30:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d6c15ca903d7d25453eaeb5f724a04e3aa65908
Validity
Not Before: Nov 15 13:47:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a3e33dd250f42ec65de8de8c92c806bc6d5d1a8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:e6:c4:61:65:49:d7:90:a0:be:18:9b:15:6b:
d4:c0:0c:06:1a:1b:71:96:d7:5b:40:28:ad:56:d0:
4f:44:b5:55:ad:36:a9:12:83:4d:42:5b:b4:d9:84:
57:39:49:df:5d:9a:a7:84:77:de:82:bd:f7:63:c0:
5c:69:ae:a1:19:03:3c:8a:ed:5d:cf:f1:3f:db:99:
c0:a2:05:47:cc:3c:7c:c3:28:49:62:b5:c4:e1:a2:
07:29:b6:d1:08:9e:01:55:99:69:6a:4d:fb:fb:38:
64:5b:87:21:7f:81:8f:ef:52:4b:1b:08:5f:33:83:
4a:f3:17:16:7e:34:88:73:d7:d3:ee:6e:e8:8c:24:
03:3e:95:0d:0b:f6:4b:72:29:dc:46:49:9a:9b:cb:
bb:01:c7:d2:80:e2:cf:ad:a6:a1:2a:8f:4d:bf:d6:
f8:79:42:f8:35:6b:24:78:fb:74:5b:08:f8:fc:3e:
41:7a:b2:04:61:7c:d0:96:22:25:80:62:1c:af:98:
5c:2b:ab:fa:5a:7e:f8:7d:7b:9d:ca:02:0f:51:c9:
f1:6f:41:c4:5e:b3:79:b9:79:6d:58:de:9d:36:11:
2b:99:50:15:82:f4:8b:a1:e3:d3:bc:22:b2:a8:74:
3b:73:a1:cf:c4:94:e8:92:c2:c8:7e:e2:81:96:a0:
8d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:E3:3D:D2:50:F4:2E:C6:5D:E8:DE:8C:92:C8:06:BC:6D:5D:1A:8D
X509v3 Authority Key Identifier:
keyid:5D:6C:15:CA:90:3D:7D:25:45:3E:AE:B5:F7:24:A0:4E:3A:A6:59:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XWwVypA9fSVFPq619ySgTjqmWQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/2864c8-c042-428f-a02d-3b34c23b9c5a/1/o-M90lD0LsZd6N6MksgGvG1dGo0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/2864c8-c042-428f-a02d-3b34c23b9c5a/1/XWwVypA9fSVFPq619ySgTjqmWQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.134.224.0/19
128.0.33.0/24
185.22.52.0/22
IPv6:
2001:4b28::/32
2a01:528::/32
2a04:1d40::/29
Signature Algorithm: sha256WithRSAEncryption
6c:5b:93:59:17:0b:93:9a:e9:47:08:f8:fc:d9:d6:91:bc:d4:
41:34:19:56:34:00:dd:97:b3:0e:83:45:2f:9f:63:4b:4c:6c:
f9:28:13:65:7e:e4:cd:1f:b8:59:55:b9:13:5f:94:79:7c:ee:
2c:81:60:56:d2:c9:fc:98:9b:7d:dd:b0:29:5a:8d:ec:57:de:
3a:65:26:37:f9:7f:b3:b8:77:af:63:c3:48:71:83:8f:22:d7:
bc:c8:f5:0f:9d:13:7a:94:25:6d:a9:02:c0:aa:82:41:d0:4c:
88:fb:09:4c:2b:ff:50:94:72:c7:0e:f6:54:ae:04:ee:35:18:
8e:3c:11:ac:39:b4:31:01:30:7a:9f:24:ef:67:61:3e:6a:c2:
bf:b8:37:c8:f4:84:02:cb:7d:f6:85:f3:56:66:15:2f:bc:8a:
a2:b2:ea:29:65:53:52:d5:5d:ce:ab:70:35:98:d7:c9:2e:44:
cf:84:3c:14:64:d7:7a:2a:49:68:fb:a5:4b:7c:24:17:9c:89:
62:5a:f4:50:20:d6:48:33:ae:e2:cf:14:d8:81:b9:6f:06:2f:
f3:f2:37:42:a9:2d:aa:db:d1:5c:5f:d8:81:23:16:42:d0:55:
2d:c1:d5:e1:7a:2b:57:93:9a:75:81:83:dd:a2:2f:52:23:e4:
a7:88:5b:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 02:13:22 2024 by rpki-client on console.sobornost.net