Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/d61183-2bea-4dd0-b2b2-c3e7b6e14f58/1/5KfOePFpwhVeTsupVvFI4KOG81g.roa
File: 5KfOePFpwhVeTsupVvFI4KOG81g.roa (raw, json)
Hash identifier: AqVXHByd0nvTqr7+HKo4AFF5KSSe49UiLbiDuHDtDxI=
Subject key identifier: E4:A7:CE:78:F1:69:C2:15:5E:4E:CB:A9:56:F1:48:E0:A3:86:F3:58
Certificate issuer: /CN=d0a14d0b08ad412b00d586dea889ee6dac4f5def
Certificate serial: 018CC94E63A87A8E2CDCB2FB259EC68945F7
Authority key identifier: D0:A1:4D:0B:08:AD:41:2B:00:D5:86:DE:A8:89:EE:6D:AC:4F:5D:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KFNCwitQSsA1YbeqInubaxPXe8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/d61183-2bea-4dd0-b2b2-c3e7b6e14f58/1/5KfOePFpwhVeTsupVvFI4KOG81g.roa
Signing time: Tue 02 Jan 2024 08:33:26 +0000
ROA not before: Tue 02 Jan 2024 08:33:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9123
IP address blocks: 185.211.170.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:63:a8:7a:8e:2c:dc:b2:fb:25:9e:c6:89:45:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0a14d0b08ad412b00d586dea889ee6dac4f5def
Validity
Not Before: Jan 2 08:33:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e4a7ce78f169c2155e4ecba956f148e0a386f358
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:78:97:eb:a8:ab:9a:39:35:1a:80:a5:44:8a:
aa:fb:8f:49:56:4b:9e:ce:1f:d9:04:dc:ef:20:14:
fe:f0:fa:64:01:e9:6c:a8:f0:20:0c:90:8f:8d:77:
9d:49:b6:0c:33:83:e9:93:20:70:30:f6:8f:5b:43:
1b:e0:b2:24:11:0f:a8:71:c3:2e:1b:07:a9:77:d9:
fe:e6:50:6a:c4:fe:95:33:39:17:7a:71:24:86:9f:
9b:62:39:68:99:24:e3:ae:3c:0c:bf:58:09:18:39:
9b:58:be:77:4b:05:62:e3:d2:d7:89:cd:e7:c3:39:
19:ff:5f:be:e3:b9:84:dd:94:2c:dc:0e:69:88:56:
81:69:50:66:fc:6f:41:50:00:20:eb:ce:59:2c:09:
1a:3b:08:cb:a6:da:fe:cc:49:75:84:22:5a:0f:a0:
d6:cb:e3:c7:bd:a3:9b:f7:85:3b:f8:0f:d1:a9:13:
fb:20:84:5e:ca:39:f3:1f:86:04:f0:39:63:79:3f:
27:7b:de:9e:51:75:fe:cb:75:e8:ec:ba:d9:64:65:
58:3c:4a:75:92:7f:9b:66:4e:99:6f:04:a7:55:e9:
6c:9e:04:36:0a:1d:78:74:af:88:49:8a:f0:71:34:
b0:64:45:d1:4c:83:ef:f1:00:9f:1a:af:5c:dd:7f:
ca:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:A7:CE:78:F1:69:C2:15:5E:4E:CB:A9:56:F1:48:E0:A3:86:F3:58
X509v3 Authority Key Identifier:
keyid:D0:A1:4D:0B:08:AD:41:2B:00:D5:86:DE:A8:89:EE:6D:AC:4F:5D:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KFNCwitQSsA1YbeqInubaxPXe8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/d61183-2bea-4dd0-b2b2-c3e7b6e14f58/1/5KfOePFpwhVeTsupVvFI4KOG81g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/d61183-2bea-4dd0-b2b2-c3e7b6e14f58/1/0KFNCwitQSsA1YbeqInubaxPXe8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.211.170.0/24
Signature Algorithm: sha256WithRSAEncryption
04:c9:a6:0f:e3:ff:da:2b:b3:54:0e:cb:1d:e0:80:65:46:40:
e7:f7:8e:1d:83:0d:29:0f:b2:aa:0e:5b:23:4e:54:81:b0:55:
d9:24:2d:88:e4:20:c3:f9:45:79:d0:83:c5:42:28:29:74:40:
3f:52:8e:f1:6b:55:03:b0:6f:f4:d2:86:25:43:06:1d:fa:90:
6c:d2:4b:56:ab:ed:09:8e:e4:d9:68:83:c1:6d:0a:97:ab:bd:
36:ce:9f:95:f7:37:9a:77:d4:34:a8:3e:c3:5d:80:82:35:5f:
22:32:85:d0:b9:25:87:8f:75:bd:a5:87:e3:f5:13:cd:03:1f:
b7:27:09:f3:ea:95:6c:50:d1:81:67:68:81:94:a5:dc:db:43:
2a:72:57:e6:6f:ed:ae:65:43:e7:8c:96:aa:55:44:13:f9:61:
cd:ef:d4:33:56:ed:af:93:d9:b3:80:33:7a:38:2f:4e:aa:06:
1a:bb:11:30:85:71:e5:83:c7:90:7c:47:3b:5b:25:ba:0b:ce:
77:12:a1:5c:58:2d:5d:b3:f4:56:81:d4:b4:dd:a5:3f:aa:4c:
18:50:39:c6:e7:96:14:bf:02:e3:7e:68:6d:84:1c:05:37:3b:
6b:54:3a:e6:9e:20:8c:ca:46:6a:26:1b:7a:2d:1b:db:f5:ca:
12:50:66:3f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzJTmOoeo4s3LL7JZ7GiUX3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwYTE0ZDBiMDhhZDQxMmIwMGQ1ODZkZWE4ODllZTZkYWM0
ZjVkZWYwHhcNMjQwMTAyMDgzMzI2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNGE3Y2U3OGYxNjljMjE1NWU0ZWNiYTk1NmYxNDhlMGEzODZmMzU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoHiX66irmjk1GoClRIqq+49JVkue
zh/ZBNzvIBT+8PpkAelsqPAgDJCPjXedSbYMM4PpkyBwMPaPW0Mb4LIkEQ+occMu
Gwepd9n+5lBqxP6VMzkXenEkhp+bYjlomSTjrjwMv1gJGDmbWL53SwVi49LXic3n
wzkZ/1++47mE3ZQs3A5piFaBaVBm/G9BUAAg685ZLAkaOwjLptr+zEl1hCJaD6DW
y+PHvaOb94U7+A/RqRP7IIReyjnzH4YE8DljeT8ne96eUXX+y3Xo7LrZZGVYPEp1
kn+bZk6ZbwSnVelsngQ2Ch14dK+ISYrwcTSwZEXRTIPv8QCfGq9c3X/K+QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOSnznjxacIVXk7LqVbxSOCjhvNYMB8GA1UdIwQY
MBaAFNChTQsIrUErANWG3qiJ7m2sT13vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMEtGTkN3aXRRU3NBMVliZXFJbnViYXhQWGU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC9kNjExODMtMmJlYS00ZGQwLWIyYjIt
YzNlN2I2ZTE0ZjU4LzEvNUtmT2VQRnB3aFZlVHN1cFZ2Rkk0S09HODFnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC9kNjExODMtMmJlYS00ZGQwLWIyYjItYzNlN2I2ZTE0ZjU4
LzEvMEtGTkN3aXRRU3NBMVliZXFJbnViYXhQWGU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudOqMA0G
CSqGSIb3DQEBCwUAA4IBAQAEyaYP4//aK7NUDssd4IBlRkDn944dgw0pD7KqDlsj
TlSBsFXZJC2I5CDD+UV50IPFQigpdEA/Uo7xa1UDsG/00oYlQwYd+pBs0ktWq+0J
juTZaIPBbQqXq702zp+V9zead9Q0qD7DXYCCNV8iMoXQuSWHj3W9pYfj9RPNAx+3
Jwnz6pVsUNGBZ2iBlKXc20Mqclfmb+2uZUPnjJaqVUQT+WHN79QzVu2vk9mzgDN6
OC9OqgYauxEwhXHlg8eQfEc7WyW6C853EqFcWC1ds/RWgdS03aU/qkwYUDnG55YU
vwLjfmhthBwFNztrVDrmniCMykZqJht6LRvb9coSUGY/
-----END CERTIFICATE-----
Generated at Tue Mar 12 15:26:17 2024 by rpki-client on console.sobornost.net