Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/8a7720-27a4-4a2b-a6ad-e28309e65ae7/1/KELDopb47LObNAKNtgfo-rlmHpY.roa
File: KELDopb47LObNAKNtgfo-rlmHpY.roa (raw, json)
Hash identifier: S2De6mGhUmbWF/s9cp+wMBJ5c2UPnMcHr6Qt/9uHAUo=
Subject key identifier: 28:42:C3:A2:96:F8:EC:B3:9B:34:02:8D:B6:07:E8:FA:B9:66:1E:96
Certificate issuer: /CN=5d02898b4a7a4bf9aa5dff6d2210c35d695bf5a4
Certificate serial: 0242DCE8
Authority key identifier: 5D:02:89:8B:4A:7A:4B:F9:AA:5D:FF:6D:22:10:C3:5D:69:5B:F5:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XQKJi0p6S_mqXf9tIhDDXWlb9aQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/8a7720-27a4-4a2b-a6ad-e28309e65ae7/1/KELDopb47LObNAKNtgfo-rlmHpY.roa
Signing time: Sat 01 Jan 2022 01:52:20 +0000
ROA not before: Sat 01 Jan 2022 01:52:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207849
IP address blocks: 193.108.183.0/24 maxlen: 24
193.108.198.0/24 maxlen: 24
193.108.208.0/24 maxlen: 24
193.108.211.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37936360 (0x242dce8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d02898b4a7a4bf9aa5dff6d2210c35d695bf5a4
Validity
Not Before: Jan 1 01:52:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2842c3a296f8ecb39b34028db607e8fab9661e96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d8:a2:31:5c:61:78:84:9f:dd:07:07:cf:e9:
66:f7:85:fc:c0:4e:f2:fa:bc:e2:6f:aa:0b:aa:01:
5d:ff:a2:9d:27:f3:1d:a1:bc:ef:eb:1e:6a:2e:bf:
9b:4f:31:2b:67:9f:58:9b:92:0b:12:f1:b1:1a:49:
a7:b8:29:4a:85:bc:91:ed:82:f5:80:17:a5:21:16:
92:f2:d9:2a:53:a5:95:66:57:b6:1c:c6:8f:0b:90:
6e:d7:bb:7f:bb:d5:f7:20:14:09:6a:a2:4e:ff:c7:
0a:95:4b:67:cd:2b:bf:65:d0:64:9a:89:88:51:4f:
46:96:15:39:77:db:68:76:cb:09:64:39:aa:2e:bf:
2a:31:ec:2a:13:6d:54:99:63:f9:23:98:55:5f:35:
cb:09:50:e1:89:f0:87:f5:16:fd:77:0a:7b:24:27:
8a:88:07:bc:75:1b:bd:25:89:2e:db:71:7d:36:18:
49:b8:1c:5c:67:70:45:79:75:a5:1c:42:ba:0e:b6:
72:0a:fc:c8:be:e0:24:a3:98:6f:8e:3b:e5:be:6a:
2c:a4:e7:d5:69:49:18:48:68:cd:a6:44:8f:48:a0:
5c:5c:ee:80:1b:4a:e3:cc:79:43:a9:a7:f0:b7:a0:
a6:ff:98:94:09:73:cc:c1:1c:15:2f:74:f9:6c:9f:
c5:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:42:C3:A2:96:F8:EC:B3:9B:34:02:8D:B6:07:E8:FA:B9:66:1E:96
X509v3 Authority Key Identifier:
keyid:5D:02:89:8B:4A:7A:4B:F9:AA:5D:FF:6D:22:10:C3:5D:69:5B:F5:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XQKJi0p6S_mqXf9tIhDDXWlb9aQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/8a7720-27a4-4a2b-a6ad-e28309e65ae7/1/KELDopb47LObNAKNtgfo-rlmHpY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/8a7720-27a4-4a2b-a6ad-e28309e65ae7/1/XQKJi0p6S_mqXf9tIhDDXWlb9aQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.183.0/24
193.108.198.0/24
193.108.208.0/24
193.108.211.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:9e:05:41:9c:a6:8c:a8:8b:5d:b7:56:4c:97:fe:d9:f9:74:
7a:6b:d6:15:96:ba:65:a7:f4:7d:08:02:a8:bc:ba:89:19:7e:
0a:ac:6e:5e:ba:23:f6:6d:eb:08:21:c6:f4:ef:44:51:c0:89:
79:b9:86:08:ad:75:e1:3c:6f:89:e1:61:50:16:44:c5:27:8d:
cd:19:1e:f2:6d:8c:66:31:fc:2f:f0:12:5f:b3:83:50:6e:b4:
5c:1f:ca:61:ae:df:93:01:77:9f:e8:7f:53:b5:12:da:26:26:
52:ae:4c:4c:38:b8:5d:ac:18:dc:0d:20:a6:55:67:f0:83:b9:
17:4a:21:16:5c:75:83:49:d8:36:56:4d:31:18:bb:50:96:94:
4a:9f:9c:62:3a:66:66:ba:bb:82:27:05:02:b1:c3:eb:d8:0e:
2c:bd:95:c3:d2:7f:ed:4d:73:3e:21:f1:77:be:16:42:fc:6b:
5d:67:fb:02:5d:2b:61:f0:14:49:80:4f:c0:07:91:0e:76:9d:
ad:b6:82:e4:61:db:41:e3:f7:2a:52:8b:fa:36:3b:5e:2f:03:
6b:96:75:d5:b0:2b:f2:88:82:37:01:b2:de:c4:25:7b:5d:67:
42:8e:28:b0:e8:43:14:23:84:4a:5c:e5:3a:99:77:dd:60:2c:
27:7b:26:08
-----BEGIN CERTIFICATE-----
MIIFATCCA+mgAwIBAgIEAkLc6DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ZDAyODk4YjRhN2E0YmY5YWE1ZGZmNmQyMjEwYzM1ZDY5NWJmNWE0MB4XDTIyMDEw
MTAxNTIyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjg0MmMzYTI5NmY4
ZWNiMzliMzQwMjhkYjYwN2U4ZmFiOTY2MWU5NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ7YojFcYXiEn90HB8/pZveF/MBO8vq84m+qC6oBXf+inSfz
HaG87+seai6/m08xK2efWJuSCxLxsRpJp7gpSoW8ke2C9YAXpSEWkvLZKlOllWZX
thzGjwuQbte7f7vV9yAUCWqiTv/HCpVLZ80rv2XQZJqJiFFPRpYVOXfbaHbLCWQ5
qi6/KjHsKhNtVJlj+SOYVV81ywlQ4Ynwh/UW/XcKeyQniogHvHUbvSWJLttxfTYY
SbgcXGdwRXl1pRxCug62cgr8yL7gJKOYb4475b5qLKTn1WlJGEhozaZEj0igXFzu
gBtK48x5Q6mn8Legpv+YlAlzzMEcFS90+WyfxdECAwEAAaOCAhswggIXMB0GA1Ud
DgQWBBQoQsOilvjss5s0Ao22B+j6uWYeljAfBgNVHSMEGDAWgBRdAomLSnpL+apd
/20iEMNdaVv1pDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1hRS0ppMHA2U19tcVhmOXRJaEREWFdsYjlhUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWEvOGE3NzIwLTI3YTQtNGEyYi1hNmFkLWUyODMwOWU2NWFlNy8x
L0tFTERvcGI0N0xPYk5BS050Z2ZvLXJsbUhwWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWEv
OGE3NzIwLTI3YTQtNGEyYi1hNmFkLWUyODMwOWU2NWFlNy8xL1hRS0ppMHA2U19t
cVhmOXRJaEREWFdsYjlhUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAx
BggrBgEFBQcBBwEB/wQiMCAwHgQCAAEwGAMEAMFstwMEAMFsxgMEAMFs0AMEAMFs
0zANBgkqhkiG9w0BAQsFAAOCAQEAj54FQZymjKiLXbdWTJf+2fl0emvWFZa6Zaf0
fQgCqLy6iRl+CqxuXroj9m3rCCHG9O9EUcCJebmGCK114TxvieFhUBZExSeNzRke
8m2MZjH8L/ASX7ODUG60XB/KYa7fkwF3n+h/U7US2iYmUq5MTDi4XawY3A0gplVn
8IO5F0ohFlx1g0nYNlZNMRi7UJaUSp+cYjpmZrq7gicFArHD69gOLL2Vw9J/7U1z
PiHxd74WQvxrXWf7Al0rYfAUSYBPwAeRDnadrbaC5GHbQeP3KlKL+jY7Xi8Da5Z1
1bAr8oiCNwGy3sQle11nQo4osOhDFCOESlzlOpl33WAsJ3smCA==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:16 2023 by rpki-client on console.sobornost.net