Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/QI7AVSwQg-aU5OiXDkFHQD09YNc.roa
File: QI7AVSwQg-aU5OiXDkFHQD09YNc.roa (raw, json)
Hash identifier: /mQYTv/tF2BlhZyzCNrXeQI9gVwDgZcCREQBqXAWOrw=
Subject key identifier: 40:8E:C0:55:2C:10:83:E6:94:E4:E8:97:0E:41:47:40:3D:3D:60:D7
Certificate issuer: /CN=36e7cfdd129193e219c370121ca16250e429b58b
Certificate serial: 0193B616B8383699E520C77C4ADCD01F6DE7
Authority key identifier: 36:E7:CF:DD:12:91:93:E2:19:C3:70:12:1C:A1:62:50:E4:29:B5:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NufP3RKRk-IZw3ASHKFiUOQptYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/QI7AVSwQg-aU5OiXDkFHQD09YNc.roa
Signing time: Wed 11 Dec 2024 14:19:22 +0000
ROA not before: Wed 11 Dec 2024 14:19:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 185.206.228.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b6:16:b8:38:36:99:e5:20:c7:7c:4a:dc:d0:1f:6d:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36e7cfdd129193e219c370121ca16250e429b58b
Validity
Not Before: Dec 11 14:19:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=408ec0552c1083e694e4e8970e4147403d3d60d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:cf:c2:a3:e7:6e:8a:c5:7f:b6:45:36:44:5b:
31:d4:6d:fd:e3:54:a5:ef:b5:16:3f:e5:10:cd:7c:
01:34:31:f1:5b:af:63:21:e8:b7:ea:c3:16:74:5b:
f3:58:d9:3b:01:84:5e:6b:72:25:06:b5:b7:16:a1:
4e:68:14:5e:73:46:95:a3:7f:26:4e:0f:94:4d:ff:
34:9a:96:14:ae:f5:57:9f:09:9a:85:0b:78:71:8b:
80:2f:82:6f:00:1d:db:be:d9:2f:84:8f:20:c8:21:
49:ab:17:66:b0:52:dc:dc:a8:9b:58:fc:35:d9:45:
8a:bb:3d:40:df:84:93:9c:55:a8:87:d6:3c:51:e4:
8b:2c:1f:3d:62:f6:8f:35:02:e4:68:9f:9c:f0:65:
10:fb:b1:78:72:55:4a:cc:57:5a:54:5c:b2:22:4f:
e0:e1:a7:32:05:2f:2d:7f:37:88:a2:9d:83:f1:1b:
7f:25:d0:90:0d:40:72:82:20:0e:e5:5c:49:d6:e6:
2d:15:95:c6:07:74:9d:b1:10:88:28:c5:27:9e:67:
64:68:69:78:0c:33:5c:9a:2c:40:33:fb:3f:6d:41:
e8:b7:ef:07:86:a2:fd:56:fa:5a:d1:ab:d6:92:eb:
17:ba:e8:86:3a:94:15:4d:24:07:16:be:2a:10:c4:
8b:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:8E:C0:55:2C:10:83:E6:94:E4:E8:97:0E:41:47:40:3D:3D:60:D7
X509v3 Authority Key Identifier:
keyid:36:E7:CF:DD:12:91:93:E2:19:C3:70:12:1C:A1:62:50:E4:29:B5:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NufP3RKRk-IZw3ASHKFiUOQptYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/QI7AVSwQg-aU5OiXDkFHQD09YNc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.228.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:a3:70:b6:2d:03:ff:05:e3:e5:eb:c9:5d:b5:ff:a6:61:21:
e1:19:0f:73:ba:2a:5d:7b:24:9c:51:5c:20:94:95:bc:0f:ec:
4f:5a:11:83:2a:2b:98:bf:79:ce:78:5f:eb:ff:13:b8:11:3d:
20:33:23:d5:b7:0b:43:7f:c9:83:0f:70:60:06:36:de:b7:f7:
a1:7f:a7:22:fd:f0:ce:f3:4d:c5:22:98:f2:42:bc:62:e1:5c:
43:3c:be:29:96:49:25:3a:66:e5:52:2a:0c:d2:06:a4:9b:e8:
45:e0:9b:5b:fc:61:3e:7a:ab:da:fe:ba:0d:c7:39:02:a8:0b:
52:ea:3a:21:0d:ac:9d:81:b1:9f:4e:c3:13:78:46:d8:02:22:
10:62:db:75:5a:ad:68:eb:f4:ea:fc:04:af:78:18:e8:7f:89:
fd:ec:5a:6c:73:36:c7:83:49:f0:89:2c:ca:c0:09:9c:17:26:
ae:ff:70:b3:e7:49:2f:7e:23:8c:f3:70:6a:ab:b5:6d:1f:6d:
c4:7d:c6:33:71:0b:78:9b:46:f8:e7:42:d6:59:af:eb:48:01:
2c:65:9a:41:76:8f:91:53:34:0a:6a:c1:92:7e:bf:1f:a2:ca:
91:41:55:64:d6:e8:4f:c4:8a:27:55:29:1f:0e:4d:2f:00:ee:
a5:f7:0b:68
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZO2Frg4NpnlIMd8StzQH23nMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2ZTdjZmRkMTI5MTkzZTIxOWMzNzAxMjFjYTE2MjUwZTQy
OWI1OGIwHhcNMjQxMjExMTQxOTIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MDhlYzA1NTJjMTA4M2U2OTRlNGU4OTcwZTQxNDc0MDNkM2Q2MGQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAms/Co+duisV/tkU2RFsx1G3941Sl
77UWP+UQzXwBNDHxW69jIei36sMWdFvzWNk7AYRea3IlBrW3FqFOaBRec0aVo38m
Tg+UTf80mpYUrvVXnwmahQt4cYuAL4JvAB3bvtkvhI8gyCFJqxdmsFLc3KibWPw1
2UWKuz1A34STnFWoh9Y8UeSLLB89YvaPNQLkaJ+c8GUQ+7F4clVKzFdaVFyyIk/g
4acyBS8tfzeIop2D8Rt/JdCQDUBygiAO5VxJ1uYtFZXGB3SdsRCIKMUnnmdkaGl4
DDNcmixAM/s/bUHot+8HhqL9Vvpa0avWkusXuuiGOpQVTSQHFr4qEMSLkQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFECOwFUsEIPmlOTolw5BR0A9PWDXMB8GA1UdIwQY
MBaAFDbnz90SkZPiGcNwEhyhYlDkKbWLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnVmUDNSS1JrLUladzNBU0hLRmlVT1FwdFlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8zNTU1ZTAtOTQ0My00ZTYzLWE4OWIt
ZGQxN2JmZDY3Y2QzLzEvUUk3QVZTd1FnLWFVNU9pWERrRkhRRDA5WU5jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy8zNTU1ZTAtOTQ0My00ZTYzLWE4OWItZGQxN2JmZDY3Y2Qz
LzEvTnVmUDNSS1JrLUladzNBU0hLRmlVT1FwdFlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuc7kMA0G
CSqGSIb3DQEBCwUAA4IBAQAao3C2LQP/BePl68ldtf+mYSHhGQ9zuipdeyScUVwg
lJW8D+xPWhGDKiuYv3nOeF/r/xO4ET0gMyPVtwtDf8mDD3BgBjbet/ehf6ci/fDO
803FIpjyQrxi4VxDPL4plkklOmblUioM0gakm+hF4Jtb/GE+eqva/roNxzkCqAtS
6johDaydgbGfTsMTeEbYAiIQYtt1Wq1o6/Tq/ASveBjof4n97FpsczbHg0nwiSzK
wAmcFyau/3Cz50kvfiOM83Bqq7VtH23EfcYzcQt4m0b450LWWa/rSAEsZZpBdo+R
UzQKasGSfr8fosqRQVVk1uhPxIonVSkfDk0vAO6l9wto
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:09 2024 by rpki-client on console.sobornost.net