Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/_gJpb1k03JP8aVpzb8pa_HyQlyk.roa
File: _gJpb1k03JP8aVpzb8pa_HyQlyk.roa (raw, json)
Hash identifier: C4G1X/J81Y9CmGvAyL7Q2DRTFLN+xAqR3ZF644AdAws=
Subject key identifier: FE:02:69:6F:59:34:DC:93:FC:69:5A:73:6F:CA:5A:FC:7C:90:97:29
Certificate issuer: /CN=67499595a65aab0b53768def08091e31061e9e65
Certificate serial: 0190A6774B654979A4714709D564BD3F6F30
Authority key identifier: 67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/_gJpb1k03JP8aVpzb8pa_HyQlyk.roa
Signing time: Fri 12 Jul 2024 10:22:34 +0000
ROA not before: Fri 12 Jul 2024 10:22:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43824
IP address blocks: 185.100.171.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a6:77:4b:65:49:79:a4:71:47:09:d5:64:bd:3f:6f:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67499595a65aab0b53768def08091e31061e9e65
Validity
Not Before: Jul 12 10:22:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fe02696f5934dc93fc695a736fca5afc7c909729
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:6d:b8:89:bd:49:c7:fe:2d:da:a9:8d:ea:37:
47:76:19:48:04:16:8b:f8:bd:3b:54:73:03:b2:a9:
f7:51:94:b0:f1:91:b1:8c:16:24:36:9a:4f:05:16:
21:d2:00:94:ff:23:65:54:9f:f0:8a:f7:7d:83:13:
31:a9:fa:fe:d2:30:29:f0:5d:6d:5f:1c:33:b5:38:
0f:9f:af:27:c7:e6:5d:5a:90:3b:f1:c2:a2:c6:f0:
78:c8:84:69:bb:02:64:7f:96:de:17:72:77:f3:3e:
83:26:5b:c3:2b:59:60:0a:7d:0e:c0:f4:75:dc:b1:
51:2f:d8:d1:b9:c5:1a:2a:2d:66:38:1c:6a:ab:76:
2d:06:2f:d8:a5:36:b1:cf:68:e9:3f:be:c8:8f:bf:
2a:84:98:9c:e9:cb:53:1a:71:be:31:7d:9d:99:38:
05:4f:22:a5:69:8e:6d:b5:0b:1e:87:77:2b:fd:2e:
3f:ba:e0:77:ae:f8:22:55:10:be:23:5a:ae:32:41:
2f:9a:37:08:44:a1:2e:e2:d3:8c:7b:95:44:99:1a:
ac:d8:b1:69:05:fe:6d:70:82:99:fa:ec:c7:79:70:
82:90:7e:bd:82:5e:f5:37:37:a6:65:2b:d7:33:30:
ee:60:43:27:f4:a9:01:66:85:51:c0:d7:bb:bc:88:
be:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:02:69:6F:59:34:DC:93:FC:69:5A:73:6F:CA:5A:FC:7C:90:97:29
X509v3 Authority Key Identifier:
keyid:67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/_gJpb1k03JP8aVpzb8pa_HyQlyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.100.171.0/24
Signature Algorithm: sha256WithRSAEncryption
60:38:22:68:ea:8f:68:fa:bb:25:47:97:03:be:aa:e4:2d:46:
31:d7:cb:59:b3:52:19:ca:09:dc:8f:d2:3b:2f:ff:88:57:e7:
30:e5:50:1b:c1:10:cc:f1:f4:5e:80:d2:28:9a:2c:00:7b:a4:
63:63:8a:a0:cb:35:4d:8f:4f:aa:73:19:b6:c1:66:92:00:dc:
d9:a9:b5:f5:16:99:39:15:66:a9:79:33:4a:d1:73:87:9c:58:
62:85:72:f2:ca:b9:1c:b6:7b:8e:73:42:64:31:9d:a7:75:a9:
24:5a:5c:0b:49:5b:a5:a7:7d:23:32:da:af:07:39:60:84:ec:
7e:76:b5:59:74:92:03:de:17:30:50:d5:c9:3f:d2:37:7c:d3:
bb:05:c5:ff:90:a6:3d:37:9f:7d:97:60:88:c4:55:8c:ad:60:
0f:2b:1a:d3:ee:cd:73:59:5f:5b:0d:01:25:60:75:4c:18:4a:
c7:fe:68:c3:3f:17:02:85:ec:80:6b:93:e3:9e:be:a2:17:c4:
80:d5:9f:56:10:ff:48:fa:83:cf:fb:3e:69:79:5c:08:d1:c3:
61:55:26:7b:c6:35:52:a1:84:dd:ab:03:32:ca:d2:c5:fa:26:
bb:71:57:24:fa:27:56:07:2c:6e:92:da:29:3e:fd:90:f6:7b:
f1:ec:85:79
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZCmd0tlSXmkcUcJ1WS9P28wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY3NDk5NTk1YTY1YWFiMGI1Mzc2OGRlZjA4MDkxZTMxMDYx
ZTllNjUwHhcNMjQwNzEyMTAyMjM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZTAyNjk2ZjU5MzRkYzkzZmM2OTVhNzM2ZmNhNWFmYzdjOTA5NzI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqG24ib1Jx/4t2qmN6jdHdhlIBBaL
+L07VHMDsqn3UZSw8ZGxjBYkNppPBRYh0gCU/yNlVJ/wivd9gxMxqfr+0jAp8F1t
XxwztTgPn68nx+ZdWpA78cKixvB4yIRpuwJkf5beF3J38z6DJlvDK1lgCn0OwPR1
3LFRL9jRucUaKi1mOBxqq3YtBi/YpTaxz2jpP77Ij78qhJic6ctTGnG+MX2dmTgF
TyKlaY5ttQseh3cr/S4/uuB3rvgiVRC+I1quMkEvmjcIRKEu4tOMe5VEmRqs2LFp
Bf5tcIKZ+uzHeXCCkH69gl71NzemZSvXMzDuYEMn9KkBZoVRwNe7vIi+BQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP4CaW9ZNNyT/Glac2/KWvx8kJcpMB8GA1UdIwQY
MBaAFGdJlZWmWqsLU3aN7wgJHjEGHp5lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9iNzQ0YjgtZjM5ZC00OTViLWIyMTct
MzU1MDgwNDE2NTJkLzEvX2dKcGIxazAzSlA4YVZwemI4cGFfSHlRbHlrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi9iNzQ0YjgtZjM5ZC00OTViLWIyMTctMzU1MDgwNDE2NTJk
LzEvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuWSrMA0G
CSqGSIb3DQEBCwUAA4IBAQBgOCJo6o9o+rslR5cDvqrkLUYx18tZs1IZygncj9I7
L/+IV+cw5VAbwRDM8fRegNIomiwAe6RjY4qgyzVNj0+qcxm2wWaSANzZqbX1Fpk5
FWapeTNK0XOHnFhihXLyyrkctnuOc0JkMZ2ndakkWlwLSVulp30jMtqvBzlghOx+
drVZdJID3hcwUNXJP9I3fNO7BcX/kKY9N599l2CIxFWMrWAPKxrT7s1zWV9bDQEl
YHVMGErH/mjDPxcCheyAa5Pjnr6iF8SA1Z9WEP9I+oPP+z5peVwI0cNhVSZ7xjVS
oYTdqwMyytLF+ia7cVck+idWByxuktopPv2Q9nvx7IV5
-----END CERTIFICATE-----
Generated at Wed Aug 21 19:04:30 2024 by rpki-client on console.sobornost.net