Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/465aae-2a2c-4200-8e5c-05f093385ac8/1/nqw9ux8lUNDrSDeIKeRKdPINa48.roa
File: nqw9ux8lUNDrSDeIKeRKdPINa48.roa (raw, json)
Hash identifier: OZAwI/2IZjFeYG+HgwZIGQg2iVUJRzOpGh+7yfd8M2I=
Subject key identifier: 9E:AC:3D:BB:1F:25:50:D0:EB:48:37:88:29:E4:4A:74:F2:0D:6B:8F
Certificate issuer: /CN=12a657f3424c8dd55215af853b93307c366c538a
Certificate serial: 0191526692938B773E875EA2680E60ACEB3B
Authority key identifier: 12:A6:57:F3:42:4C:8D:D5:52:15:AF:85:3B:93:30:7C:36:6C:53:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EqZX80JMjdVSFa-FO5MwfDZsU4o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/465aae-2a2c-4200-8e5c-05f093385ac8/1/nqw9ux8lUNDrSDeIKeRKdPINa48.roa
Signing time: Wed 14 Aug 2024 19:38:59 +0000
ROA not before: Wed 14 Aug 2024 19:38:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211995
IP address blocks: 46.22.225.0/24 maxlen: 24
46.22.226.0/24 maxlen: 24
46.22.227.0/24 maxlen: 24
46.22.228.0/24 maxlen: 24
46.22.229.0/24 maxlen: 24
46.22.230.0/24 maxlen: 24
46.22.231.0/24 maxlen: 24
46.22.232.0/24 maxlen: 24
46.22.233.0/24 maxlen: 24
46.22.234.0/24 maxlen: 24
46.22.235.0/24 maxlen: 24
46.22.236.0/24 maxlen: 24
46.22.237.0/24 maxlen: 24
46.22.238.0/24 maxlen: 24
46.22.239.0/24 maxlen: 24
46.28.237.0/24 maxlen: 24
93.114.130.0/24 maxlen: 24
109.237.112.0/20 maxlen: 20
109.237.112.0/24 maxlen: 24
109.237.113.0/24 maxlen: 24
185.77.3.0/24 maxlen: 24
185.136.207.0/24 maxlen: 24
185.233.35.0/24 maxlen: 24
194.164.222.0/24 maxlen: 24
213.142.158.0/24 maxlen: 24
2a10:d880::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:52:66:92:93:8b:77:3e:87:5e:a2:68:0e:60:ac:eb:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12a657f3424c8dd55215af853b93307c366c538a
Validity
Not Before: Aug 14 19:38:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9eac3dbb1f2550d0eb48378829e44a74f20d6b8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:27:2f:1b:a3:ec:60:2d:d9:e8:b3:a8:e0:34:
cd:fd:58:00:42:dc:2a:40:82:12:16:69:18:90:9b:
be:cf:58:88:60:2f:cb:03:cf:8d:84:ec:15:41:87:
cb:a9:d2:ea:00:6b:43:c1:94:98:3b:40:2d:59:32:
72:fe:88:76:01:1c:b9:b0:e1:77:d6:e9:aa:23:ce:
24:35:60:b3:ba:5b:25:65:57:41:96:45:c1:03:90:
67:01:2c:e2:35:1f:ed:61:84:8c:e0:53:c2:f6:42:
d3:0a:fc:c7:78:8b:34:c1:2b:39:01:96:9f:6c:fc:
ae:a9:f2:07:77:25:4a:20:a4:8f:c3:34:e8:5a:9a:
f5:25:6d:6e:93:37:99:2c:57:d3:99:3f:cd:31:9d:
11:3f:44:31:f1:23:b5:e2:49:fd:47:4f:19:fe:7c:
b4:c2:8c:cf:c3:dd:0c:99:d3:71:c0:53:59:96:66:
b4:61:84:06:96:12:62:6d:7d:c7:90:d1:a6:32:09:
e7:21:cc:c7:e2:d0:2f:d7:f1:90:cd:2d:23:a8:17:
1d:46:ed:d4:fb:96:31:4c:a5:cd:32:23:a2:7e:76:
36:5a:e8:11:8c:d2:48:c7:92:09:88:76:9a:f2:6b:
3a:94:bc:3c:4c:a3:2f:32:ca:f1:ea:7b:68:c6:b0:
de:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:AC:3D:BB:1F:25:50:D0:EB:48:37:88:29:E4:4A:74:F2:0D:6B:8F
X509v3 Authority Key Identifier:
keyid:12:A6:57:F3:42:4C:8D:D5:52:15:AF:85:3B:93:30:7C:36:6C:53:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EqZX80JMjdVSFa-FO5MwfDZsU4o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/465aae-2a2c-4200-8e5c-05f093385ac8/1/nqw9ux8lUNDrSDeIKeRKdPINa48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/465aae-2a2c-4200-8e5c-05f093385ac8/1/EqZX80JMjdVSFa-FO5MwfDZsU4o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.22.225.0-46.22.239.255
46.28.237.0/24
93.114.130.0/24
109.237.112.0/20
185.77.3.0/24
185.136.207.0/24
185.233.35.0/24
194.164.222.0/24
213.142.158.0/24
IPv6:
2a10:d880::/29
Signature Algorithm: sha256WithRSAEncryption
38:f1:9a:31:62:b5:b5:47:20:5a:a6:5e:94:da:ae:a4:96:dd:
96:43:ae:25:4f:ae:65:18:8f:6f:00:a4:27:e4:cf:8a:63:5e:
ab:f5:2a:92:d1:b8:23:98:bc:87:4d:06:a9:3b:7b:8f:6d:13:
66:68:b7:00:91:b5:ad:68:b7:ee:54:1b:64:c8:fe:2d:62:fb:
8b:31:86:53:62:c4:1e:8b:67:f9:a6:d5:d1:37:ca:33:c1:ee:
e6:aa:b0:a3:6e:71:22:86:ef:00:23:70:e1:51:b7:4c:70:05:
c7:f1:8a:04:6f:4a:5e:b1:47:15:93:f3:3b:6c:a1:67:c5:2f:
11:c8:1b:d5:e1:3e:b8:ca:5b:0c:2e:7a:de:40:22:30:90:6b:
ca:35:75:d0:c9:7f:c4:aa:ca:7f:fb:a0:04:06:31:54:0f:61:
ee:cc:c1:11:20:d9:8a:08:fc:a0:6b:f8:b6:bb:dd:09:66:f7:
ce:8b:94:9c:a1:f6:ab:a0:16:1f:60:88:4f:b9:cf:65:26:1d:
b0:c7:d2:7a:d4:72:50:d0:78:e6:de:05:cc:83:d3:bd:06:c2:
3f:2e:19:a9:73:06:06:59:9a:97:8c:af:1a:4b:26:05:d6:b7:
19:8a:73:90:5f:28:0f:84:39:9e:ce:b6:c5:d2:b8:ef:ea:eb:
ff:33:e6:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 27 04:11:31 2024 by rpki-client on console.sobornost.net