Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/62764b-9aa6-4f12-a71c-6bac34987019/1/hvoAGNJSutuo8kbrusm0FHj125k.roa
File: hvoAGNJSutuo8kbrusm0FHj125k.roa (raw, json)
Hash identifier: 2Yfkhui2JO1UdSvumb77JKohHt977YuP1tU2aHhuOBw=
Subject key identifier: 86:FA:00:18:D2:52:BA:DB:A8:F2:46:EB:BA:C9:B4:14:78:F5:DB:99
Certificate issuer: /CN=35c96065093998ba42cfba11bf0d17d3ac403d40
Certificate serial: 0185E5DC88116C00CB7B27AFBCC4922A2F3A
Authority key identifier: 35:C9:60:65:09:39:98:BA:42:CF:BA:11:BF:0D:17:D3:AC:40:3D:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NclgZQk5mLpCz7oRvw0X06xAPUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/62764b-9aa6-4f12-a71c-6bac34987019/1/hvoAGNJSutuo8kbrusm0FHj125k.roa
Signing time: Tue 24 Jan 2023 22:18:33 +0000
ROA not before: Tue 24 Jan 2023 22:18:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 79.139.52.0/22 maxlen: 24
116.50.16.0/21 maxlen: 24
83.142.200.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e5:dc:88:11:6c:00:cb:7b:27:af:bc:c4:92:2a:2f:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35c96065093998ba42cfba11bf0d17d3ac403d40
Validity
Not Before: Jan 24 22:18:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=86fa0018d252badba8f246ebbac9b41478f5db99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:39:67:02:c5:d0:06:c5:3d:fa:2d:72:e5:9e:
23:e3:c3:08:9c:5b:33:33:bd:ac:16:a8:2b:9f:65:
51:bb:51:9b:8f:fc:40:76:f7:18:f2:58:45:53:3a:
3d:b9:75:a2:cf:48:fe:6e:0f:df:05:a6:39:2e:67:
e9:e1:f1:fe:0d:0a:41:5b:5d:d4:9b:ec:74:d6:e6:
f6:00:81:ed:ab:0a:ed:09:1d:0e:12:f2:f6:74:88:
43:8f:7d:01:6f:a0:a3:ed:9b:9c:10:59:04:e5:2c:
d8:64:61:d3:b6:69:e0:ad:5f:d7:f8:23:c0:b3:a6:
4f:05:a9:a0:63:d0:ec:62:c7:e9:fc:7c:a2:29:23:
ed:a9:7c:b8:11:17:62:34:69:47:34:60:09:68:b3:
49:de:40:c6:66:ae:f4:ab:44:ea:ea:14:49:c7:36:
5e:7b:11:29:54:aa:a7:28:c4:06:51:5e:42:be:b0:
b4:6b:42:9e:46:97:d1:50:34:f1:7b:69:4c:74:f4:
5b:db:17:18:74:90:ed:fd:f7:13:fe:0d:a2:87:27:
d3:aa:c5:9c:ab:1b:03:db:a1:8c:ca:4e:ee:f8:57:
6e:ce:7e:b8:38:31:8c:80:43:8c:29:bd:4f:99:42:
3a:18:4a:82:44:e4:40:7e:bd:04:47:32:39:01:e1:
60:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:FA:00:18:D2:52:BA:DB:A8:F2:46:EB:BA:C9:B4:14:78:F5:DB:99
X509v3 Authority Key Identifier:
keyid:35:C9:60:65:09:39:98:BA:42:CF:BA:11:BF:0D:17:D3:AC:40:3D:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NclgZQk5mLpCz7oRvw0X06xAPUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/62764b-9aa6-4f12-a71c-6bac34987019/1/hvoAGNJSutuo8kbrusm0FHj125k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/62764b-9aa6-4f12-a71c-6bac34987019/1/NclgZQk5mLpCz7oRvw0X06xAPUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.139.52.0/22
83.142.200.0/21
116.50.16.0/21
Signature Algorithm: sha256WithRSAEncryption
0b:69:ce:3f:a8:42:d8:dc:e4:85:f7:69:3f:2d:3f:f5:26:97:
49:0e:4f:f3:d4:b1:40:0a:c6:2e:f4:11:62:73:84:ae:67:4e:
e9:cc:0c:34:e7:0b:18:c9:95:86:39:49:2f:dd:92:7f:67:ce:
82:b5:e5:a3:d0:4b:31:4f:a7:88:e8:a5:f5:73:a5:de:f1:86:
bc:84:b7:60:30:fd:c0:b8:1e:e0:b9:63:fd:f6:ee:e8:72:7d:
5d:63:b8:80:72:5f:37:cb:9a:29:15:61:f3:7b:ae:9b:9d:32:
48:e6:02:d9:00:de:fe:e4:6c:c4:1a:ae:cf:8e:4c:5f:08:1d:
c2:fb:da:71:88:7f:bb:59:e9:c0:a4:b9:9d:88:c3:c6:68:f9:
7d:5d:b5:28:89:23:a8:32:e6:fc:51:76:81:30:15:72:ea:e8:
be:f4:c2:8b:b3:47:d0:79:73:49:0a:4b:31:55:1d:61:b4:d3:
04:d1:46:6c:7d:46:f2:d6:4b:15:0e:f2:73:1e:1c:b3:b1:f1:
eb:f5:4a:df:f4:be:c6:18:c3:a1:4b:25:5c:17:18:77:8b:6e:
0a:f1:04:8e:84:46:55:6b:ca:79:ee:86:c3:80:21:b5:3c:29:
4c:7e:47:67:36:94:90:9f:77:9b:63:46:3d:53:b3:42:c7:14:
6f:8d:49:4b
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYXl3IgRbADLeyevvMSSKi86MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1Yzk2MDY1MDkzOTk4YmE0MmNmYmExMWJmMGQxN2QzYWM0
MDNkNDAwHhcNMjMwMTI0MjIxODMzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NmZhMDAxOGQyNTJiYWRiYThmMjQ2ZWJiYWM5YjQxNDc4ZjVkYjk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqDlnAsXQBsU9+i1y5Z4j48MInFsz
M72sFqgrn2VRu1Gbj/xAdvcY8lhFUzo9uXWiz0j+bg/fBaY5Lmfp4fH+DQpBW13U
m+x01ub2AIHtqwrtCR0OEvL2dIhDj30Bb6Cj7ZucEFkE5SzYZGHTtmngrV/X+CPA
s6ZPBamgY9DsYsfp/HyiKSPtqXy4ERdiNGlHNGAJaLNJ3kDGZq70q0Tq6hRJxzZe
exEpVKqnKMQGUV5CvrC0a0KeRpfRUDTxe2lMdPRb2xcYdJDt/fcT/g2ihyfTqsWc
qxsD26GMyk7u+Fduzn64ODGMgEOMKb1PmUI6GEqCRORAfr0ERzI5AeFgVwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFIb6ABjSUrrbqPJG67rJtBR49duZMB8GA1UdIwQY
MBaAFDXJYGUJOZi6Qs+6Eb8NF9OsQD1AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTmNsZ1pRazVtTHBDejdvUnZ3MFgwNnhBUFVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi82Mjc2NGItOWFhNi00ZjEyLWE3MWMt
NmJhYzM0OTg3MDE5LzEvaHZvQUdOSlN1dHVvOGticnVzbTBGSGoxMjVrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi82Mjc2NGItOWFhNi00ZjEyLWE3MWMtNmJhYzM0OTg3MDE5
LzEvTmNsZ1pRazVtTHBDejdvUnZ3MFgwNnhBUFVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCT4s0AwQD
U47IAwQDdDIQMA0GCSqGSIb3DQEBCwUAA4IBAQALac4/qELY3OSF92k/LT/1JpdJ
Dk/z1LFACsYu9BFic4SuZ07pzAw05wsYyZWGOUkv3ZJ/Z86CteWj0EsxT6eI6KX1
c6Xe8Ya8hLdgMP3AuB7guWP99u7ocn1dY7iAcl83y5opFWHze66bnTJI5gLZAN7+
5GzEGq7PjkxfCB3C+9pxiH+7WenApLmdiMPGaPl9XbUoiSOoMub8UXaBMBVy6ui+
9MKLs0fQeXNJCksxVR1htNME0UZsfUby1ksVDvJzHhyzsfHr9Urf9L7GGMOhSyVc
Fxh3i24K8QSOhEZVa8p57obDgCG1PClMfkdnNpSQn3ebY0Y9U7NCxxRvjUlL
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:54 2023 by rpki-client on console.sobornost.net