Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/l9XDoIfh5GOLvbbTkxuGgx0Oz30.roa
File: l9XDoIfh5GOLvbbTkxuGgx0Oz30.roa (raw, json)
Hash identifier: qKivxVy5V3UdmA2Vhm9tI5uZmxwRDBgk6gOnp9PsnCo=
Subject key identifier: 97:D5:C3:A0:87:E1:E4:63:8B:BD:B6:D3:93:1B:86:83:1D:0E:CF:7D
Certificate issuer: /CN=7539b7a123417aa719325946aa89e0f30ab0ca09
Certificate serial: 01937262AE33280203D7219EEE09B3B520EE
Authority key identifier: 75:39:B7:A1:23:41:7A:A7:19:32:59:46:AA:89:E0:F3:0A:B0:CA:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dTm3oSNBeqcZMllGqong8wqwygk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/l9XDoIfh5GOLvbbTkxuGgx0Oz30.roa
Signing time: Thu 28 Nov 2024 10:48:09 +0000
ROA not before: Thu 28 Nov 2024 10:48:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3302
IP address blocks: 62.94.0.0/16 maxlen: 24
81.92.32.0/20 maxlen: 20
83.211.0.0/16 maxlen: 24
185.82.0.0/22 maxlen: 22
194.20.0.0/16 maxlen: 24
194.21.0.0/18 maxlen: 24
194.153.192.0/20 maxlen: 24
194.153.208.0/22 maxlen: 24
195.62.224.0/19 maxlen: 24
212.90.0.0/19 maxlen: 24
212.110.0.0/19 maxlen: 24
213.136.128.0/18 maxlen: 24
213.149.192.0/19 maxlen: 19
213.183.128.0/19 maxlen: 19
213.198.128.0/18 maxlen: 24
217.15.208.0/20 maxlen: 24
217.29.160.0/20 maxlen: 20
2001:750::/29 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:72:62:ae:33:28:02:03:d7:21:9e:ee:09:b3:b5:20:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7539b7a123417aa719325946aa89e0f30ab0ca09
Validity
Not Before: Nov 28 10:48:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=97d5c3a087e1e4638bbdb6d3931b86831d0ecf7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f2:c8:b6:7d:32:d3:a1:d9:79:61:a0:90:28:
db:8f:7e:62:42:6d:08:68:5a:81:97:da:78:fa:20:
bb:2c:0e:8f:9e:14:9f:8c:de:72:9d:7c:91:a4:99:
9a:b8:de:aa:f5:17:1e:96:55:9b:f9:70:48:23:ab:
88:1d:48:36:cf:95:8a:83:9f:15:ae:90:c7:41:37:
e4:75:d2:89:e9:49:52:78:49:35:14:f8:63:df:3b:
ce:4c:7c:08:1a:38:ae:50:2f:82:db:25:fd:36:bb:
01:69:b0:c1:d7:e6:53:e8:b2:1e:ef:1f:31:b6:fb:
b9:dd:98:f7:f2:97:75:2b:ab:aa:34:d2:ee:8a:23:
2f:5e:ae:be:6a:16:87:18:9f:8b:2f:b3:e0:3a:e7:
38:0d:b3:ea:50:f7:98:b3:35:bf:14:ec:d8:e1:d5:
fe:6f:e8:ca:99:25:34:89:4b:79:5a:b6:6d:7a:d9:
99:ee:10:d7:2b:00:81:2e:ff:a1:10:18:57:59:90:
32:d8:38:79:0e:55:f7:11:d5:34:e0:9c:1c:05:41:
2e:25:5f:e2:2c:e7:57:67:05:e4:df:2f:7f:94:f7:
2f:11:48:22:c3:62:e6:81:96:19:0e:0a:b2:d0:25:
14:6e:69:cb:d3:8f:1a:32:22:05:d2:3a:62:cf:fb:
5b:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:D5:C3:A0:87:E1:E4:63:8B:BD:B6:D3:93:1B:86:83:1D:0E:CF:7D
X509v3 Authority Key Identifier:
keyid:75:39:B7:A1:23:41:7A:A7:19:32:59:46:AA:89:E0:F3:0A:B0:CA:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dTm3oSNBeqcZMllGqong8wqwygk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/l9XDoIfh5GOLvbbTkxuGgx0Oz30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/dTm3oSNBeqcZMllGqong8wqwygk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.94.0.0/16
81.92.32.0/20
83.211.0.0/16
185.82.0.0/22
194.20.0.0-194.21.63.255
194.153.192.0-194.153.211.255
195.62.224.0/19
212.90.0.0/19
212.110.0.0/19
213.136.128.0/18
213.149.192.0/19
213.183.128.0/19
213.198.128.0/18
217.15.208.0/20
217.29.160.0/20
IPv6:
2001:750::/29
Signature Algorithm: sha256WithRSAEncryption
bf:ef:2b:e2:11:d8:1c:74:96:e5:51:9a:a8:f9:18:40:54:2b:
63:9d:ba:29:ac:54:4c:d5:0d:b4:6f:26:c2:31:cb:5a:05:f8:
2d:d5:33:9e:ad:de:a4:c1:8b:09:fa:e8:e6:71:95:ac:25:9f:
41:d5:ca:99:e6:a0:27:41:09:fc:48:45:c5:93:e8:33:7f:39:
d2:7c:7d:7e:17:75:7b:97:4e:7a:85:8e:88:b0:79:28:7d:1b:
73:60:b5:70:8f:03:56:cb:37:77:81:82:43:e5:19:06:96:47:
7f:8d:63:9e:f5:4d:45:09:72:1d:64:fa:e5:af:e1:fc:de:f7:
40:90:2f:66:4a:42:c6:d8:3b:f7:c1:8f:8e:b7:1a:95:be:74:
86:32:6b:7c:07:76:b9:75:0c:62:8d:12:b4:2c:71:35:49:e5:
a5:ee:39:4a:c9:37:a4:7e:92:16:4f:66:c6:2f:10:d1:3f:2f:
ee:25:da:f4:a7:b9:4e:68:cd:5d:0c:c8:2a:8b:44:1c:75:8d:
2c:ae:f9:b2:2f:20:0f:89:83:3c:38:f6:fb:d3:04:04:e4:43:
16:c6:fb:66:90:0f:e9:98:35:06:9d:bb:8f:9b:2d:e5:3e:90:
c1:d7:40:98:99:02:5f:2b:c9:86:1a:b1:3f:51:77:03:99:be:
9b:57:dd:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:00 2024 by rpki-client on console.sobornost.net