Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/0910e6-c074-40d0-b789-a17804439895/1/LK7F1ApnEs72QtuyoCNDGvMh1F8.roa
File: LK7F1ApnEs72QtuyoCNDGvMh1F8.roa (raw, json)
Hash identifier: uUpAQSWaXvNflrV2B7qsT2TpsCqnzx84d4JK+FxH/Eo=
Subject key identifier: 2C:AE:C5:D4:0A:67:12:CE:F6:42:DB:B2:A0:23:43:1A:F3:21:D4:5F
Certificate issuer: /CN=0c202663de852c7060fdea0298b490d5edcc0f24
Certificate serial: 018FEDFF6090222D4D836CD6BA4CDD8A0288
Authority key identifier: 0C:20:26:63:DE:85:2C:70:60:FD:EA:02:98:B4:90:D5:ED:CC:0F:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DCAmY96FLHBg_eoCmLSQ1e3MDyQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/0910e6-c074-40d0-b789-a17804439895/1/LK7F1ApnEs72QtuyoCNDGvMh1F8.roa
Signing time: Thu 06 Jun 2024 14:41:27 +0000
ROA not before: Thu 06 Jun 2024 14:41:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197036
IP address blocks: 178.23.152.0/21 maxlen: 24
185.19.240.0/22 maxlen: 24
185.228.20.0/22 maxlen: 24
195.28.192.0/19 maxlen: 24
213.173.48.0/22 maxlen: 24
2a02:21e8::/32 maxlen: 32
2a02:21e8:71::/48 maxlen: 48
2a09:2600::/29 maxlen: 29
2a0c:e600::/29 maxlen: 29
2a0c:e9c0::/29 maxlen: 29
2a0d:d040::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ed:ff:60:90:22:2d:4d:83:6c:d6:ba:4c:dd:8a:02:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c202663de852c7060fdea0298b490d5edcc0f24
Validity
Not Before: Jun 6 14:41:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2caec5d40a6712cef642dbb2a023431af321d45f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:ef:6a:6e:b7:dc:34:61:9f:4d:9b:a0:7c:b1:
ac:00:fb:da:50:4e:57:64:a6:26:77:26:5f:2a:63:
72:e1:6c:c8:db:af:35:73:61:fb:45:43:17:8c:2f:
b1:c0:f1:ba:e5:66:a6:43:1b:9a:cb:e5:c3:53:d9:
26:84:5e:fb:ab:e9:fb:79:2a:8a:13:67:ce:ed:f0:
84:b3:9e:25:07:4f:2d:5f:b2:6e:ff:fc:84:6e:da:
b1:07:74:c9:8a:17:a8:c5:29:58:f5:37:aa:ae:d7:
a0:3b:8f:0e:78:f1:3a:3f:a1:94:97:38:67:75:2e:
d1:5c:c8:0a:09:09:fc:7c:b3:2b:00:56:f0:81:9b:
a3:b4:ab:96:3b:3f:97:64:77:be:26:33:25:34:b8:
06:31:71:e9:7b:ef:31:4c:e9:33:0c:b7:a5:07:92:
9a:4d:2e:39:9f:18:b1:2f:2f:53:8f:a6:76:96:c6:
14:1e:37:c6:81:35:5a:2d:24:af:6e:03:30:94:5e:
05:a2:9a:29:3e:b6:db:9a:b3:80:ff:95:20:83:72:
1e:80:ce:1b:74:ea:07:32:a3:9c:fc:f3:97:6c:0f:
a2:bb:bf:2d:a2:df:6d:16:62:15:d7:56:ba:9f:fc:
72:95:59:af:e2:01:a5:fa:43:b3:12:af:5d:2f:09:
27:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:AE:C5:D4:0A:67:12:CE:F6:42:DB:B2:A0:23:43:1A:F3:21:D4:5F
X509v3 Authority Key Identifier:
keyid:0C:20:26:63:DE:85:2C:70:60:FD:EA:02:98:B4:90:D5:ED:CC:0F:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DCAmY96FLHBg_eoCmLSQ1e3MDyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/0910e6-c074-40d0-b789-a17804439895/1/LK7F1ApnEs72QtuyoCNDGvMh1F8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/0910e6-c074-40d0-b789-a17804439895/1/DCAmY96FLHBg_eoCmLSQ1e3MDyQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.23.152.0/21
185.19.240.0/22
185.228.20.0/22
195.28.192.0/19
213.173.48.0/22
IPv6:
2a02:21e8::/32
2a09:2600::/29
2a0c:e600::/29
2a0c:e9c0::/29
2a0d:d040::/29
Signature Algorithm: sha256WithRSAEncryption
61:76:ec:1e:e2:b1:90:cc:c8:6a:53:5c:1d:d0:24:dc:d0:fb:
01:fd:09:bc:6c:e8:a9:62:df:a8:96:04:5f:6c:99:d9:88:89:
1a:f0:f7:2d:fc:76:96:7d:39:bf:79:8e:bb:72:5f:97:3c:be:
c3:8d:8a:85:a1:6b:c7:4c:fc:f5:0d:62:85:8d:33:77:cc:fe:
76:3e:a4:3f:5a:e7:10:9d:74:a2:58:2e:b4:51:ea:13:05:5c:
05:78:5f:64:2c:5e:f9:d1:46:b7:1a:81:52:91:7a:17:a6:05:
93:11:ce:37:51:4b:ac:11:d0:3f:e6:c2:df:c7:f9:bd:9f:b8:
0e:ad:b9:91:af:1a:b7:54:92:ef:4f:85:95:22:f2:1c:27:28:
9b:9c:44:65:6c:9c:4f:48:ef:1a:a3:4a:1e:f6:f1:f3:74:0e:
f9:c9:85:5c:20:ca:8f:e7:1c:09:5b:9d:a0:54:f7:38:62:99:
d7:bf:7a:4f:7a:06:2a:f4:58:b2:67:7b:70:48:2a:6f:dd:b6:
f5:78:c6:2b:4a:30:f5:f7:ab:ae:8d:dd:9a:7d:08:ac:66:c7:
70:34:d8:bd:a3:ac:63:cb:7d:ba:68:8c:e0:de:76:77:52:05:
d5:9a:2f:b0:5e:18:15:3a:04:14:19:74:3e:b1:ca:02:4a:bb:
df:ee:e4:6d
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgISAY/t/2CQIi1Ng2zWukzdigKIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjMjAyNjYzZGU4NTJjNzA2MGZkZWEwMjk4YjQ5MGQ1ZWRj
YzBmMjQwHhcNMjQwNjA2MTQ0MTI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyY2FlYzVkNDBhNjcxMmNlZjY0MmRiYjJhMDIzNDMxYWYzMjFkNDVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhu9qbrfcNGGfTZugfLGsAPvaUE5X
ZKYmdyZfKmNy4WzI2681c2H7RUMXjC+xwPG65WamQxuay+XDU9kmhF77q+n7eSqK
E2fO7fCEs54lB08tX7Ju//yEbtqxB3TJiheoxSlY9TeqrtegO48OePE6P6GUlzhn
dS7RXMgKCQn8fLMrAFbwgZujtKuWOz+XZHe+JjMlNLgGMXHpe+8xTOkzDLelB5Ka
TS45nxixLy9Tj6Z2lsYUHjfGgTVaLSSvbgMwlF4FopopPrbbmrOA/5Ugg3IegM4b
dOoHMqOc/POXbA+iu78tot9tFmIV11a6n/xylVmv4gGl+kOzEq9dLwknFQIDAQAB
o4ICTDCCAkgwHQYDVR0OBBYEFCyuxdQKZxLO9kLbsqAjQxrzIdRfMB8GA1UdIwQY
MBaAFAwgJmPehSxwYP3qApi0kNXtzA8kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRENBbVk5NkZMSEJnX2VvQ21MU1ExZTNNRHlRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8wOTEwZTYtYzA3NC00MGQwLWI3ODkt
YTE3ODA0NDM5ODk1LzEvTEs3RjFBcG5FczcyUXR1eW9DTkRHdk1oMUY4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC8wOTEwZTYtYzA3NC00MGQwLWI3ODktYTE3ODA0NDM5ODk1
LzEvRENBbVk5NkZMSEJnX2VvQ21MU1ExZTNNRHlRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGIGCCsGAQUFBwEHAQH/BFMwUTAkBAIAATAeAwQDsheYAwQC
uRPwAwQCueQUAwQFwxzAAwQC1a0wMCkEAgACMCMDBQAqAiHoAwUDKgkmAAMFAyoM
5gADBQMqDOnAAwUDKg3QQDANBgkqhkiG9w0BAQsFAAOCAQEAYXbsHuKxkMzIalNc
HdAk3ND7Af0JvGzoqWLfqJYEX2yZ2YiJGvD3Lfx2ln05v3mOu3Jflzy+w42KhaFr
x0z89Q1ihY0zd8z+dj6kP1rnEJ10olgutFHqEwVcBXhfZCxe+dFGtxqBUpF6F6YF
kxHON1FLrBHQP+bC38f5vZ+4Dq25ka8at1SS70+FlSLyHCcom5xEZWycT0jvGqNK
Hvbx83QO+cmFXCDKj+ccCVudoFT3OGKZ1796T3oGKvRYsmd7cEgqb9229XjGK0ow
9ferro3dmn0IrGbHcDTYvaOsY8t9umiM4N52d1IF1ZovsF4YFToEFBl0PrHKAkq7
3+7kbQ==
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:15 2024 by rpki-client on console.sobornost.net