Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/ee5cd7-b30e-466b-aaad-6c3b87443e06/1/AFDUrCWFZEBzXoz77ymLwqKMgmg.roa
File: AFDUrCWFZEBzXoz77ymLwqKMgmg.roa (raw, json)
Hash identifier: qfu3PKsHjiKOYAZlOCc5Rqh5idSZsLP56d3JouZXFnM=
Subject key identifier: 00:50:D4:AC:25:85:64:40:73:5E:8C:FB:EF:29:8B:C2:A2:8C:82:68
Certificate issuer: /CN=79d565f99ff5e0ffb5bdf9995ed7a808d41406e5
Certificate serial: 0193A4A5FF9B6A52A87EBF76C7CB3C6B8CAA
Authority key identifier: 79:D5:65:F9:9F:F5:E0:FF:B5:BD:F9:99:5E:D7:A8:08:D4:14:06:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/edVl-Z_14P-1vfmZXteoCNQUBuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/ee5cd7-b30e-466b-aaad-6c3b87443e06/1/AFDUrCWFZEBzXoz77ymLwqKMgmg.roa
Signing time: Sun 08 Dec 2024 05:02:42 +0000
ROA not before: Sun 08 Dec 2024 05:02:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57568
IP address blocks: 130.185.120.0/22 maxlen: 24
185.204.168.0/22 maxlen: 24
185.235.40.0/22 maxlen: 24
193.24.119.0/24 maxlen: 24
194.5.192.0/23 maxlen: 24
194.5.206.0/23 maxlen: 24
2a0f:94c0:100::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:a4:a5:ff:9b:6a:52:a8:7e:bf:76:c7:cb:3c:6b:8c:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79d565f99ff5e0ffb5bdf9995ed7a808d41406e5
Validity
Not Before: Dec 8 05:02:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0050d4ac25856440735e8cfbef298bc2a28c8268
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:2a:7e:8d:cd:15:87:48:88:c2:da:91:79:c6:
9c:d6:67:99:6b:11:42:85:3c:1b:9e:00:c9:6b:79:
bc:51:3a:3c:a9:c9:ab:c1:51:f7:7e:6c:57:69:4a:
8b:4d:c1:84:2a:3c:59:2f:a9:b2:31:c0:fd:32:1a:
ce:de:ee:aa:76:20:4c:08:b3:9c:bb:ed:7e:1d:f9:
4f:3d:1a:a3:7d:9e:12:3f:f5:e3:0c:f1:aa:5f:8f:
58:d4:9e:cf:7e:0f:c9:1e:01:e2:2c:1e:09:36:34:
8c:f7:d6:b7:81:7c:f2:86:69:d4:c0:15:ee:a2:c6:
e6:22:9f:68:e1:3d:e5:35:8a:a6:dd:b7:ba:ac:d2:
f9:eb:f8:36:1d:ac:16:1f:4a:99:df:84:1b:5c:b9:
ed:61:d5:c0:26:3c:53:95:be:26:be:46:ba:52:ca:
17:ff:a3:e3:ad:b3:a4:a5:93:09:8e:4c:62:50:22:
ec:a1:db:57:c9:bc:71:10:3d:d5:08:23:c5:4e:00:
2f:f2:a9:78:c3:e4:ae:58:97:7a:a9:7e:2c:b7:ec:
69:78:a7:db:7a:e0:11:4b:ab:44:8a:96:67:72:a4:
77:57:d7:ec:18:c1:c4:bf:66:f9:f7:49:32:94:9a:
12:01:26:68:aa:ff:a3:36:72:b1:42:ee:1e:48:68:
54:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:50:D4:AC:25:85:64:40:73:5E:8C:FB:EF:29:8B:C2:A2:8C:82:68
X509v3 Authority Key Identifier:
keyid:79:D5:65:F9:9F:F5:E0:FF:B5:BD:F9:99:5E:D7:A8:08:D4:14:06:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/edVl-Z_14P-1vfmZXteoCNQUBuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ee5cd7-b30e-466b-aaad-6c3b87443e06/1/AFDUrCWFZEBzXoz77ymLwqKMgmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ee5cd7-b30e-466b-aaad-6c3b87443e06/1/edVl-Z_14P-1vfmZXteoCNQUBuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.185.120.0/22
185.204.168.0/22
185.235.40.0/22
193.24.119.0/24
194.5.192.0/23
194.5.206.0/23
IPv6:
2a0f:94c0:100::/40
Signature Algorithm: sha256WithRSAEncryption
27:08:64:2c:b6:d5:98:f6:f3:e2:9c:1d:03:5c:44:fa:a8:0d:
33:17:d8:04:49:a5:ef:b3:38:dc:e8:ad:46:a2:06:d0:6c:4c:
36:85:b3:5a:ab:af:75:c5:97:94:f8:05:af:b0:ee:5b:52:39:
74:49:af:09:ff:1d:d4:8d:f7:cc:1d:7f:62:da:e0:24:02:92:
2d:af:ba:05:6e:6c:c5:f8:95:87:78:e4:d4:a8:2c:fa:77:6e:
b3:3c:2b:ac:9e:0d:17:d2:04:e6:7c:a9:b0:29:49:90:ca:c3:
a8:a5:52:34:bf:e9:a2:a7:a4:a2:96:13:e8:21:1b:6c:66:e4:
14:a8:12:c0:4a:29:e6:7f:b5:c5:c8:eb:a1:e2:fb:34:c7:5d:
48:bd:c0:0e:57:d1:6f:93:ec:3e:49:78:a3:30:71:3d:25:c7:
e7:b5:1d:0e:3d:e9:13:4f:64:9c:2d:01:2a:49:a7:c3:6a:b3:
3f:3d:e4:e7:24:39:04:d7:23:1a:af:cd:b1:09:94:f3:ce:3a:
6c:2e:0a:74:43:79:11:93:cd:c5:34:fa:5f:c2:f7:94:ee:2f:
63:ba:f9:e2:7d:21:c1:b9:a5:b6:b4:03:f1:1b:44:e5:18:ef:
75:d7:3e:b9:8c:07:49:d8:59:41:e9:1e:0e:7b:60:05:0a:1a:
29:5d:db:38
-----BEGIN CERTIFICATE-----
MIIFKzCCBBOgAwIBAgISAZOkpf+balKofr92x8s8a4yqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc5ZDU2NWY5OWZmNWUwZmZiNWJkZjk5OTVlZDdhODA4ZDQx
NDA2ZTUwHhcNMjQxMjA4MDUwMjQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMDUwZDRhYzI1ODU2NDQwNzM1ZThjZmJlZjI5OGJjMmEyOGM4MjY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwyp+jc0Vh0iIwtqRecac1meZaxFC
hTwbngDJa3m8UTo8qcmrwVH3fmxXaUqLTcGEKjxZL6myMcD9MhrO3u6qdiBMCLOc
u+1+HflPPRqjfZ4SP/XjDPGqX49Y1J7Pfg/JHgHiLB4JNjSM99a3gXzyhmnUwBXu
osbmIp9o4T3lNYqm3be6rNL56/g2HawWH0qZ34QbXLntYdXAJjxTlb4mvka6UsoX
/6PjrbOkpZMJjkxiUCLsodtXybxxED3VCCPFTgAv8ql4w+SuWJd6qX4st+xpeKfb
euARS6tEipZncqR3V9fsGMHEv2b590kylJoSASZoqv+jNnKxQu4eSGhUjQIDAQAB
o4ICNzCCAjMwHQYDVR0OBBYEFABQ1KwlhWRAc16M++8pi8KijIJoMB8GA1UdIwQY
MBaAFHnVZfmf9eD/tb35mV7XqAjUFAblMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZWRWbC1aXzE0UC0xdmZtWlh0ZW9DTlFVQnVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC9lZTVjZDctYjMwZS00NjZiLWFhYWQt
NmMzYjg3NDQzZTA2LzEvQUZEVXJDV0ZaRUJ6WG96Nzd5bUx3cUtNZ21nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC9lZTVjZDctYjMwZS00NjZiLWFhYWQtNmMzYjg3NDQzZTA2
LzEvZWRWbC1aXzE0UC0xdmZtWlh0ZW9DTlFVQnVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CME0GCCsGAQUFBwEHAQH/BD4wPDAqBAIAATAkAwQCgrl4AwQC
ucyoAwQCuesoAwQAwRh3AwQBwgXAAwQBwgXOMA4EAgACMAgDBgAqD5TAATANBgkq
hkiG9w0BAQsFAAOCAQEAJwhkLLbVmPbz4pwdA1xE+qgNMxfYBEml77M43OitRqIG
0GxMNoWzWquvdcWXlPgFr7DuW1I5dEmvCf8d1I33zB1/YtrgJAKSLa+6BW5sxfiV
h3jk1Kgs+nduszwrrJ4NF9IE5nypsClJkMrDqKVSNL/poqekopYT6CEbbGbkFKgS
wEop5n+1xcjroeL7NMddSL3ADlfRb5PsPkl4ozBxPSXH57UdDj3pE09knC0BKkmn
w2qzPz3k5yQ5BNcjGq/NsQmU8846bC4KdEN5EZPNxTT6X8L3lO4vY7r54n0hwbml
trQD8RtE5Rjvddc+uYwHSdhZQekeDntgBQoaKV3bOA==
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:37 2024 by rpki-client on console.sobornost.net