Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/332477-c83c-4f80-b1be-7c0db7bae135/1/I5rniyLF9L3wuNZPI7TfBdNjsco.roa
File: I5rniyLF9L3wuNZPI7TfBdNjsco.roa (raw, json)
Hash identifier: 2xLdSKo1gJmKq4+P9ETagG6VCBVFDDsCkz0DeKARy70=
Subject key identifier: 23:9A:E7:8B:22:C5:F4:BD:F0:B8:D6:4F:23:B4:DF:05:D3:63:B1:CA
Certificate issuer: /CN=1ee5efbf65897160d55a52dc3a22c017876cd06c
Certificate serial: 019156836FB0F580EE0410934A5A8FCD1C76
Authority key identifier: 1E:E5:EF:BF:65:89:71:60:D5:5A:52:DC:3A:22:C0:17:87:6C:D0:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HuXvv2WJcWDVWlLcOiLAF4ds0Gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/332477-c83c-4f80-b1be-7c0db7bae135/1/I5rniyLF9L3wuNZPI7TfBdNjsco.roa
Signing time: Thu 15 Aug 2024 14:48:59 +0000
ROA not before: Thu 15 Aug 2024 14:48:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198949
IP address blocks: 185.176.124.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:56:83:6f:b0:f5:80:ee:04:10:93:4a:5a:8f:cd:1c:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ee5efbf65897160d55a52dc3a22c017876cd06c
Validity
Not Before: Aug 15 14:48:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=239ae78b22c5f4bdf0b8d64f23b4df05d363b1ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:50:3b:08:79:34:05:13:20:9d:e4:32:db:c3:
cd:d4:6d:83:d1:9d:dc:3d:be:32:14:17:8f:26:61:
b9:37:da:34:73:6d:33:5b:99:d9:16:c8:2e:97:58:
f3:d6:0e:7e:c8:c0:47:83:e1:2b:de:a3:07:8c:1b:
e1:36:84:5f:14:71:b9:58:76:a6:8e:5f:d0:00:03:
bb:4b:48:3a:bd:32:33:36:ef:a6:d9:25:90:da:6b:
9d:80:eb:eb:29:54:ca:87:fc:19:64:94:90:e3:7a:
19:0d:7e:49:0c:c3:83:43:c4:90:0f:d3:f8:ff:56:
5f:81:f3:27:29:d9:26:04:59:df:01:2c:ce:0d:e1:
b3:b2:f8:ba:61:f1:06:5d:46:2e:7c:92:47:e9:10:
f5:61:f3:75:23:a0:67:f9:83:a2:19:fb:9b:ba:b7:
cd:b1:07:1e:aa:9b:e8:bb:6f:2e:68:46:4e:4c:00:
03:cd:94:59:c0:86:48:69:0d:51:bf:45:f9:88:b1:
b8:65:f2:6f:d4:25:ce:88:37:48:e3:64:5f:29:15:
79:7f:6e:ce:3d:dc:57:db:70:48:eb:ae:37:7c:64:
05:25:5c:d7:34:cd:64:b5:d1:20:d8:e4:09:a8:94:
bc:c3:af:ef:ea:44:e7:ee:26:32:4d:3c:db:62:de:
b3:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:9A:E7:8B:22:C5:F4:BD:F0:B8:D6:4F:23:B4:DF:05:D3:63:B1:CA
X509v3 Authority Key Identifier:
keyid:1E:E5:EF:BF:65:89:71:60:D5:5A:52:DC:3A:22:C0:17:87:6C:D0:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HuXvv2WJcWDVWlLcOiLAF4ds0Gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/332477-c83c-4f80-b1be-7c0db7bae135/1/I5rniyLF9L3wuNZPI7TfBdNjsco.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/332477-c83c-4f80-b1be-7c0db7bae135/1/HuXvv2WJcWDVWlLcOiLAF4ds0Gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.176.124.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:0f:49:ac:9c:06:d7:2a:78:da:64:69:06:0b:5c:42:87:76:
e1:d2:06:33:e1:ca:b9:01:38:44:35:8c:40:41:88:b7:fb:e9:
59:8a:03:af:b7:fd:54:36:35:9b:1d:a7:86:d1:0a:57:bf:3e:
f1:e2:b6:cb:7b:41:81:1c:e1:c8:29:43:65:b9:7c:b1:c8:40:
a5:56:7d:12:c3:83:22:58:5c:c5:c5:27:d4:50:65:39:4e:31:
02:21:9b:31:8a:c9:01:62:e8:45:1d:f5:ce:a1:81:da:d7:9e:
79:9d:a2:8b:33:14:21:19:a2:98:56:92:0e:ae:68:8d:c0:df:
25:5d:64:ed:aa:f1:14:0a:12:83:9d:20:af:3f:47:2d:68:98:
99:1e:36:22:6c:16:fa:80:04:91:18:20:c3:4c:f8:43:9d:57:
af:22:9a:5d:b8:92:eb:83:4f:b0:15:fc:59:e4:f3:1e:58:bc:
1d:b3:ef:4c:f4:9e:45:e9:59:51:8a:13:45:8d:b6:ee:f9:9f:
c9:2d:b9:81:ab:08:80:4e:cf:2f:81:a5:09:83:f2:91:40:eb:
5f:54:43:db:3c:28:3b:6e:87:7e:d6:75:88:07:61:07:8c:97:
6e:3c:c5:20:d5:0a:34:c3:8e:51:7e:81:c4:95:90:7e:72:1c:
74:75:ae:24
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZFWg2+w9YDuBBCTSlqPzRx2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlZTVlZmJmNjU4OTcxNjBkNTVhNTJkYzNhMjJjMDE3ODc2
Y2QwNmMwHhcNMjQwODE1MTQ0ODU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMzlhZTc4YjIyYzVmNGJkZjBiOGQ2NGYyM2I0ZGYwNWQzNjNiMWNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA31A7CHk0BRMgneQy28PN1G2D0Z3c
Pb4yFBePJmG5N9o0c20zW5nZFsgul1jz1g5+yMBHg+Er3qMHjBvhNoRfFHG5WHam
jl/QAAO7S0g6vTIzNu+m2SWQ2mudgOvrKVTKh/wZZJSQ43oZDX5JDMODQ8SQD9P4
/1ZfgfMnKdkmBFnfASzODeGzsvi6YfEGXUYufJJH6RD1YfN1I6Bn+YOiGfuburfN
sQceqpvou28uaEZOTAADzZRZwIZIaQ1Rv0X5iLG4ZfJv1CXOiDdI42RfKRV5f27O
PdxX23BI6643fGQFJVzXNM1ktdEg2OQJqJS8w6/v6kTn7iYyTTzbYt6zxwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCOa54sixfS98LjWTyO03wXTY7HKMB8GA1UdIwQY
MBaAFB7l779liXFg1VpS3DoiwBeHbNBsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHVYdnYyV0pjV0RWV2xMY09pTEFGNGRzMEd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi8zMzI0NzctYzgzYy00ZjgwLWIxYmUt
N2MwZGI3YmFlMTM1LzEvSTVybml5TEY5TDN3dU5aUEk3VGZCZE5qc2NvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi8zMzI0NzctYzgzYy00ZjgwLWIxYmUtN2MwZGI3YmFlMTM1
LzEvSHVYdnYyV0pjV0RWV2xMY09pTEFGNGRzMEd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAubB8MA0G
CSqGSIb3DQEBCwUAA4IBAQCyD0msnAbXKnjaZGkGC1xCh3bh0gYz4cq5AThENYxA
QYi3++lZigOvt/1UNjWbHaeG0QpXvz7x4rbLe0GBHOHIKUNluXyxyEClVn0Sw4Mi
WFzFxSfUUGU5TjECIZsxiskBYuhFHfXOoYHa1555naKLMxQhGaKYVpIOrmiNwN8l
XWTtqvEUChKDnSCvP0ctaJiZHjYibBb6gASRGCDDTPhDnVevIppduJLrg0+wFfxZ
5PMeWLwds+9M9J5F6VlRihNFjbbu+Z/JLbmBqwiATs8vgaUJg/KRQOtfVEPbPCg7
bod+1nWIB2EHjJduPMUg1Qo0w45RfoHElZB+chx0da4k
-----END CERTIFICATE-----
Generated at Wed Sep 11 05:44:43 2024 by rpki-client on console.sobornost.net