Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/5ca48b-c966-4e63-868d-a85c1b2ec1ce/1/bAGREH7Yp5iHjK0zYf-4daHbwes.roa
File: bAGREH7Yp5iHjK0zYf-4daHbwes.roa (raw, json)
Hash identifier: 4m6qHWZlq7o1L7UQ6wapfpU9IX+0ljqCHqnzFKh1/6s=
Subject key identifier: 6C:01:91:10:7E:D8:A7:98:87:8C:AD:33:61:FF:B8:75:A1:DB:C1:EB
Certificate issuer: /CN=a81558853febc79d813eb2c0ce5cb736fb73c0df
Certificate serial: 0192FC4657DA54F89E42143A5997B2F3FF9D
Authority key identifier: A8:15:58:85:3F:EB:C7:9D:81:3E:B2:C0:CE:5C:B7:36:FB:73:C0:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qBVYhT_rx52BPrLAzly3NvtzwN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/5ca48b-c966-4e63-868d-a85c1b2ec1ce/1/bAGREH7Yp5iHjK0zYf-4daHbwes.roa
Signing time: Tue 05 Nov 2024 12:22:01 +0000
ROA not before: Tue 05 Nov 2024 12:22:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200534
IP address blocks: 185.221.108.0/23 maxlen: 23
185.221.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:fc:46:57:da:54:f8:9e:42:14:3a:59:97:b2:f3:ff:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a81558853febc79d813eb2c0ce5cb736fb73c0df
Validity
Not Before: Nov 5 12:22:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6c0191107ed8a798878cad3361ffb875a1dbc1eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:fa:35:03:e1:f6:53:7e:82:ca:cb:f9:a8:a9:
3e:00:f4:ae:24:2e:91:35:b5:d5:f0:b5:5e:01:f5:
31:95:36:83:a2:38:00:e1:90:b3:11:7f:5a:2d:9c:
12:b6:3b:e1:d6:36:43:17:45:f0:57:58:ab:11:90:
3b:cd:58:50:e2:09:9e:f0:4a:ea:f0:16:51:4b:ab:
5a:3f:1a:10:1f:70:5c:a6:ae:58:f1:f7:78:ce:14:
cb:32:22:71:c8:1a:d0:4b:ff:53:8d:f7:1c:a3:b1:
08:f7:34:5c:2f:3e:ec:57:be:80:f2:d5:4e:d3:71:
ab:f9:c5:cb:6f:44:3d:c2:d9:ae:b2:64:57:e9:51:
8d:3b:09:22:31:4f:3f:1f:66:08:e2:21:99:9b:d7:
73:15:28:42:59:d3:8d:71:7e:f6:ad:50:24:70:a8:
ac:ad:c0:f3:94:b5:7d:58:ce:32:be:03:d6:ea:30:
44:21:56:98:78:db:3b:04:f0:58:b7:01:fe:51:f1:
db:e5:25:15:aa:b6:40:20:90:0e:fc:d6:14:76:d7:
6b:ce:71:ec:46:6c:22:4a:40:c3:bb:ef:cd:fe:d3:
c8:fd:39:f3:de:d0:7c:4f:1b:63:99:71:1f:07:b8:
f5:ca:f9:c1:77:18:94:e9:aa:e3:5c:b7:c9:f0:52:
5e:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:01:91:10:7E:D8:A7:98:87:8C:AD:33:61:FF:B8:75:A1:DB:C1:EB
X509v3 Authority Key Identifier:
keyid:A8:15:58:85:3F:EB:C7:9D:81:3E:B2:C0:CE:5C:B7:36:FB:73:C0:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qBVYhT_rx52BPrLAzly3NvtzwN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/5ca48b-c966-4e63-868d-a85c1b2ec1ce/1/bAGREH7Yp5iHjK0zYf-4daHbwes.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/5ca48b-c966-4e63-868d-a85c1b2ec1ce/1/qBVYhT_rx52BPrLAzly3NvtzwN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.108.0/23
185.221.111.0/24
Signature Algorithm: sha256WithRSAEncryption
36:52:58:9a:11:50:a7:68:51:72:ff:c6:90:36:c9:c8:72:24:
a8:45:f1:4d:ea:1f:0c:91:3a:2c:01:5b:e7:93:70:d2:f5:e8:
bc:d1:a1:7a:48:77:9d:f5:73:f6:d4:70:e6:08:51:86:00:b6:
8c:2f:10:14:d4:b6:50:de:bd:90:fc:4d:c0:3a:20:82:31:bc:
d0:53:63:bf:3d:d4:33:aa:57:50:eb:b6:f0:73:c1:00:e8:8a:
05:eb:8f:ce:1d:67:71:e3:e3:32:aa:d1:e7:e6:90:ee:be:86:
eb:d2:6b:8f:b2:da:10:0e:ae:df:40:58:5d:86:77:cc:00:f5:
63:3f:ee:29:bd:6c:f1:7e:64:cd:0d:be:bb:17:bc:de:97:51:
84:e6:b4:04:b3:35:dc:e9:a1:37:b9:a4:55:c2:0a:04:19:7b:
ba:a4:c8:57:6b:51:49:9d:92:f1:7d:6d:b3:85:eb:42:04:31:
dd:99:23:aa:5b:c3:2a:2b:47:e2:be:ef:7f:52:2f:15:8f:63:
b8:a7:a6:ff:4c:58:4e:01:89:1b:9b:64:79:d9:b7:86:c9:d3:
77:13:fa:a7:cd:11:62:8d:c0:9f:3f:25:05:ab:57:c7:c4:f8:
3d:f8:4d:28:b9:af:49:5d:63:4d:47:e2:e2:50:a0:f6:b7:b1:
f2:f5:aa:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:28 2024 by rpki-client on console.sobornost.net