Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/70777b-68b0-42a8-9e9d-e8ada51ee8ff/1/2Im8O6ipuKfX31z6DyHVJ8bKzrw.roa
File: 2Im8O6ipuKfX31z6DyHVJ8bKzrw.roa (raw, json)
Hash identifier: RcvD1D1iNymps6RudUha4P4EjPa//NhL6dJIGZmqwX4=
Subject key identifier: D8:89:BC:3B:A8:A9:B8:A7:D7:DF:5C:FA:0F:21:D5:27:C6:CA:CE:BC
Certificate issuer: /CN=4987941e74c1c03e7aba3b878530095eb6fa874e
Certificate serial: 0193B5AAB016D3742AC29C5932995E3C2D32
Authority key identifier: 49:87:94:1E:74:C1:C0:3E:7A:BA:3B:87:85:30:09:5E:B6:FA:87:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SYeUHnTBwD56ujuHhTAJXrb6h04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/70777b-68b0-42a8-9e9d-e8ada51ee8ff/1/2Im8O6ipuKfX31z6DyHVJ8bKzrw.roa
Signing time: Wed 11 Dec 2024 12:21:22 +0000
ROA not before: Wed 11 Dec 2024 12:21:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200736
IP address blocks: 45.66.40.0/22 maxlen: 24
195.20.114.0/24 maxlen: 24
195.214.208.0/22 maxlen: 24
2a10:9300::/29 maxlen: 36
2a10:9300::/36 maxlen: 42
2a10:9301::/36 maxlen: 42
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b5:aa:b0:16:d3:74:2a:c2:9c:59:32:99:5e:3c:2d:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4987941e74c1c03e7aba3b878530095eb6fa874e
Validity
Not Before: Dec 11 12:21:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d889bc3ba8a9b8a7d7df5cfa0f21d527c6cacebc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:46:a7:41:ae:04:43:cf:e3:b8:c7:c7:11:bd:
f1:b2:c0:60:52:85:58:dc:e2:32:5f:22:3d:21:86:
75:0f:33:12:63:86:ae:69:a0:9a:24:03:a8:31:74:
45:05:b5:dc:ac:b5:a3:aa:e2:eb:33:d3:23:e2:df:
5f:52:7f:ad:50:68:9c:40:86:e2:ad:04:d4:b7:60:
ab:bf:f4:dc:44:4e:01:be:d7:4c:6a:8b:44:90:d0:
17:f8:c0:ab:f2:2b:63:cd:42:29:45:9f:93:ef:14:
6c:a4:c2:3e:4b:91:94:c2:cf:39:fa:c8:2d:07:0a:
99:7f:08:be:fb:76:61:52:b3:de:9e:20:30:96:1b:
e3:35:e7:5e:5b:48:f4:5e:da:a4:5a:46:8a:6e:ba:
aa:32:06:24:1d:14:d0:49:87:01:1f:5f:fd:d6:04:
36:de:55:6a:1d:1b:80:db:20:e3:f2:97:77:33:81:
0f:e2:cb:5d:6b:c8:6e:3f:91:bf:f2:90:c7:a6:ed:
da:51:55:5a:e4:28:26:6e:9a:35:fe:77:62:0a:0d:
58:5d:d0:76:9a:e1:d8:bf:af:3f:5e:4b:ce:9c:49:
21:4c:56:e0:fd:53:93:d7:75:fe:ae:7a:38:68:0e:
e1:1d:84:0f:36:65:a2:69:56:74:05:8f:73:17:cf:
3a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:89:BC:3B:A8:A9:B8:A7:D7:DF:5C:FA:0F:21:D5:27:C6:CA:CE:BC
X509v3 Authority Key Identifier:
keyid:49:87:94:1E:74:C1:C0:3E:7A:BA:3B:87:85:30:09:5E:B6:FA:87:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SYeUHnTBwD56ujuHhTAJXrb6h04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/70777b-68b0-42a8-9e9d-e8ada51ee8ff/1/2Im8O6ipuKfX31z6DyHVJ8bKzrw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/70777b-68b0-42a8-9e9d-e8ada51ee8ff/1/SYeUHnTBwD56ujuHhTAJXrb6h04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.40.0/22
195.20.114.0/24
195.214.208.0/22
IPv6:
2a10:9300::/29
Signature Algorithm: sha256WithRSAEncryption
25:c2:69:82:a4:43:34:82:0c:0c:9f:d3:23:d5:94:84:3b:4a:
a5:ae:42:30:b1:50:c3:6d:b4:d0:62:c7:64:1a:5a:d6:65:a6:
20:90:c3:6a:cc:6a:72:46:38:c8:71:37:4f:a8:73:7a:bd:44:
af:6d:10:9f:bb:a5:09:bc:0e:cb:3b:e1:cf:bf:02:ba:71:e6:
37:36:ea:c0:24:23:f9:d8:9b:31:69:ca:76:25:86:82:0e:d4:
5e:4f:f7:f4:2b:cd:c9:33:1c:90:13:97:54:56:b8:99:12:d4:
97:35:96:35:d7:28:65:42:f8:c9:51:4e:15:57:f8:7a:d8:b1:
e5:85:41:92:f5:b8:ab:4d:53:09:ef:64:24:3a:e3:47:f3:f1:
b5:ff:fa:ab:df:48:75:ab:1f:11:96:a6:c2:33:1c:eb:26:b7:
e0:a1:32:00:1f:b5:dc:b0:65:7a:dc:a2:2c:90:4e:dd:71:80:
aa:4a:cf:67:19:22:dc:80:30:ef:30:a0:51:ad:c8:c7:25:ab:
db:7f:36:f5:e4:71:b4:eb:f9:f7:df:e4:d9:2d:8f:d3:5f:35:
06:a3:b8:0f:76:ac:5e:f2:11:c5:06:89:71:3d:1d:d0:06:8a:
5c:37:fb:7d:b2:0c:6b:e3:7b:50:86:da:44:c1:68:be:6d:2d:
8f:df:4e:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:47 2024 by rpki-client on console.sobornost.net