Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/465aae-2a2c-4200-8e5c-05f093385ac8/1/DbIBkORHppdE6BOrYRydRpQi0dA.roa
File: DbIBkORHppdE6BOrYRydRpQi0dA.roa (raw, json)
Hash identifier: Igyk+pRYgPusoeHtMI4ZBN21Ts/uK3CANXcdGqhKMT4=
Subject key identifier: 0D:B2:01:90:E4:47:A6:97:44:E8:13:AB:61:1C:9D:46:94:22:D1:D0
Certificate issuer: /CN=12a657f3424c8dd55215af853b93307c366c538a
Certificate serial: 01919AAAFC49EBD0050A32F139CDF9EFBE04
Authority key identifier: 12:A6:57:F3:42:4C:8D:D5:52:15:AF:85:3B:93:30:7C:36:6C:53:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EqZX80JMjdVSFa-FO5MwfDZsU4o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/465aae-2a2c-4200-8e5c-05f093385ac8/1/DbIBkORHppdE6BOrYRydRpQi0dA.roa
Signing time: Wed 28 Aug 2024 20:26:22 +0000
ROA not before: Wed 28 Aug 2024 20:26:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211995
IP address blocks: 46.22.225.0/24 maxlen: 24
46.22.226.0/24 maxlen: 24
46.22.227.0/24 maxlen: 24
46.22.228.0/24 maxlen: 24
46.22.229.0/24 maxlen: 24
46.22.230.0/24 maxlen: 24
46.22.231.0/24 maxlen: 24
46.22.232.0/24 maxlen: 24
46.22.233.0/24 maxlen: 24
46.22.234.0/24 maxlen: 24
46.22.235.0/24 maxlen: 24
46.22.236.0/24 maxlen: 24
46.22.237.0/24 maxlen: 24
46.22.238.0/24 maxlen: 24
46.22.239.0/24 maxlen: 24
46.28.237.0/24 maxlen: 24
93.114.130.0/24 maxlen: 24
109.237.112.0/20 maxlen: 20
109.237.112.0/24 maxlen: 24
109.237.113.0/24 maxlen: 24
109.237.114.0/24 maxlen: 24
185.55.36.0/22 maxlen: 22
185.77.3.0/24 maxlen: 24
185.136.207.0/24 maxlen: 24
185.233.35.0/24 maxlen: 24
194.164.222.0/24 maxlen: 24
213.142.158.0/24 maxlen: 24
2a10:d880::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:9a:aa:fc:49:eb:d0:05:0a:32:f1:39:cd:f9:ef:be:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12a657f3424c8dd55215af853b93307c366c538a
Validity
Not Before: Aug 28 20:26:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0db20190e447a69744e813ab611c9d469422d1d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:7b:fd:88:03:ba:5e:27:bc:e5:db:dd:8e:c8:
3e:8e:a0:b9:17:45:5f:9c:bd:d3:d2:76:ba:57:e7:
18:42:47:9a:bf:f3:49:26:80:81:d0:c2:8f:9a:b8:
dc:f3:9f:06:9f:0f:40:8a:b7:43:7a:03:57:f2:c5:
91:07:c4:3b:71:59:a4:4e:03:ed:1e:42:1a:6e:b4:
ac:80:b9:3d:45:18:a8:f6:2c:1e:28:25:db:c6:76:
cd:b0:3d:d0:ae:d8:3c:90:8d:40:d5:46:ec:a4:fb:
7f:ad:d2:be:c5:58:86:6e:86:fb:9c:c6:19:7e:53:
c4:97:77:a6:8e:5a:17:0b:37:6d:87:29:68:8b:d4:
be:6e:15:98:ca:4a:d9:58:7c:d5:d4:89:31:e3:0a:
24:40:c2:98:36:21:6c:51:68:5a:3b:4c:b6:09:d5:
91:90:c3:1a:fa:93:28:ec:8d:ea:a3:3a:ec:d8:db:
b1:dd:97:bc:d7:51:f9:de:2c:5f:2a:48:ff:fd:09:
e1:47:0f:ab:0f:bc:5a:ff:58:12:c4:4e:64:a3:3a:
f9:12:7d:21:10:c0:ef:9d:0b:37:b6:fd:61:ce:67:
7c:5c:ba:d2:96:86:52:e5:3f:d8:1b:ae:d7:29:94:
82:53:eb:ed:95:8d:4c:5e:66:66:8e:7b:94:2d:74:
5c:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:B2:01:90:E4:47:A6:97:44:E8:13:AB:61:1C:9D:46:94:22:D1:D0
X509v3 Authority Key Identifier:
keyid:12:A6:57:F3:42:4C:8D:D5:52:15:AF:85:3B:93:30:7C:36:6C:53:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EqZX80JMjdVSFa-FO5MwfDZsU4o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/465aae-2a2c-4200-8e5c-05f093385ac8/1/DbIBkORHppdE6BOrYRydRpQi0dA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/465aae-2a2c-4200-8e5c-05f093385ac8/1/EqZX80JMjdVSFa-FO5MwfDZsU4o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.22.225.0-46.22.239.255
46.28.237.0/24
93.114.130.0/24
109.237.112.0/20
185.55.36.0/22
185.77.3.0/24
185.136.207.0/24
185.233.35.0/24
194.164.222.0/24
213.142.158.0/24
IPv6:
2a10:d880::/29
Signature Algorithm: sha256WithRSAEncryption
a8:03:06:35:d7:1d:18:9b:ce:9f:9b:ad:bc:fa:56:75:0c:7d:
6b:4a:c4:b3:12:6c:14:5c:37:de:c9:ff:6f:af:e9:cd:25:cb:
79:15:a9:b9:81:e9:05:2c:8f:90:0c:78:9a:b0:fd:17:64:52:
44:50:81:3a:c1:da:f4:fa:c4:02:bf:a4:13:66:ed:87:48:db:
7c:c7:76:43:5e:1f:06:b5:f0:d1:44:22:9c:62:5a:fc:49:9d:
d1:41:78:22:3d:eb:5c:a7:19:95:d9:05:45:bf:b9:cd:5b:c7:
ce:85:2c:dd:84:e9:5e:60:27:2d:a3:e8:0f:85:8c:56:02:84:
bd:81:fd:20:31:9d:d5:ab:0f:a3:51:d2:65:02:e8:d0:b9:6c:
50:0b:2f:26:5b:f0:ee:65:43:0f:7f:c5:26:b3:a9:f4:6c:0b:
98:52:ea:f2:17:87:63:95:a8:b7:d5:17:48:ea:f7:ab:0a:c2:
8f:38:82:21:e0:ae:d6:16:99:f7:f0:a2:93:00:00:e5:b8:72:
7a:c3:9d:21:56:2f:4c:97:db:6d:1d:d2:c3:26:a1:be:b2:bd:
d8:ba:e4:f5:a8:0f:2a:43:b6:40:42:b6:b6:3e:6e:d7:5b:ea:
83:51:66:92:d2:71:c9:cf:32:4d:79:c4:0d:b5:ed:af:d5:c2:
98:ff:bd:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 30 00:28:22 2024 by rpki-client on console.sobornost.net