Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/3e35ee-d88f-4c1f-b437-699cf7b09590/1/4wNCGMbEYRpUWPo0-bzTaG23YVs.roa
File: 4wNCGMbEYRpUWPo0-bzTaG23YVs.roa (raw, json)
Hash identifier: puBh6CNF8JoSfSQUlGbDiKvwXQe+NjJY6b6jnxhSJak=
Subject key identifier: E3:03:42:18:C6:C4:61:1A:54:58:FA:34:F9:BC:D3:68:6D:B7:61:5B
Certificate issuer: /CN=ac08da139b56f998be24665db14ad1e156768fc3
Certificate serial: 0192A46469A707452DCEA6A62944BFA090BA
Authority key identifier: AC:08:DA:13:9B:56:F9:98:BE:24:66:5D:B1:4A:D1:E1:56:76:8F:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rAjaE5tW-Zi-JGZdsUrR4VZ2j8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/3e35ee-d88f-4c1f-b437-699cf7b09590/1/4wNCGMbEYRpUWPo0-bzTaG23YVs.roa
Signing time: Sat 19 Oct 2024 10:48:16 +0000
ROA not before: Sat 19 Oct 2024 10:48:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57270
IP address blocks: 193.194.106.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:a4:64:69:a7:07:45:2d:ce:a6:a6:29:44:bf:a0:90:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac08da139b56f998be24665db14ad1e156768fc3
Validity
Not Before: Oct 19 10:48:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e3034218c6c4611a5458fa34f9bcd3686db7615b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:98:91:f8:6c:1e:f4:21:e2:76:3a:87:c2:0a:
9b:71:2d:43:78:b0:e9:9a:28:1f:d8:fa:90:05:02:
32:34:61:1f:d7:b9:4b:29:d0:d4:ca:32:3e:a4:07:
11:2c:0d:6a:4a:fe:99:98:7c:ca:a5:c7:49:36:ad:
26:7e:9d:7d:86:3f:b2:66:27:f5:97:29:f9:19:05:
70:04:7c:6b:be:8e:ce:b6:6e:55:3d:3e:5d:5f:fa:
c6:e5:2f:9a:de:9c:ea:9d:44:bd:d0:db:e7:c8:15:
9d:dd:c1:f7:01:f9:ef:8f:f0:5f:e9:12:1f:13:28:
73:c5:dc:de:66:7c:c8:7d:cc:91:58:93:8e:aa:2a:
e6:fe:3c:82:b2:77:ca:49:c0:dc:30:be:51:3d:d1:
dd:b2:b6:e5:ef:e8:8d:4c:5e:ce:34:9a:78:96:d6:
d8:cb:ac:ff:5d:54:2d:4b:3b:f2:25:a8:90:9c:f9:
28:f2:97:c5:8a:17:43:e4:20:1d:1f:de:44:87:a2:
88:cc:18:45:03:af:8c:25:3a:fe:bb:2c:51:6f:b3:
c2:bc:b3:dc:41:07:22:62:87:15:a8:84:77:e3:b7:
e8:79:d4:b6:d1:6c:de:d0:0b:cb:e0:94:6b:f4:2c:
2a:74:f5:e8:a3:1a:ad:e8:df:ea:cb:35:67:18:76:
61:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:03:42:18:C6:C4:61:1A:54:58:FA:34:F9:BC:D3:68:6D:B7:61:5B
X509v3 Authority Key Identifier:
keyid:AC:08:DA:13:9B:56:F9:98:BE:24:66:5D:B1:4A:D1:E1:56:76:8F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rAjaE5tW-Zi-JGZdsUrR4VZ2j8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/3e35ee-d88f-4c1f-b437-699cf7b09590/1/4wNCGMbEYRpUWPo0-bzTaG23YVs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/3e35ee-d88f-4c1f-b437-699cf7b09590/1/rAjaE5tW-Zi-JGZdsUrR4VZ2j8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.194.106.0/23
Signature Algorithm: sha256WithRSAEncryption
6f:5c:c6:ad:d8:ff:14:5f:fe:95:8d:ac:28:99:da:53:1c:83:
75:ae:28:df:1b:23:7c:e5:3c:96:1e:89:cc:31:27:39:49:82:
17:c0:47:9b:6b:cb:85:b6:da:d0:2c:9f:e8:13:fc:4e:c8:91:
06:56:6b:c6:30:96:e1:8e:58:ed:61:6d:d9:14:66:b9:0d:c7:
9b:cc:c8:f9:98:a3:30:c3:8f:c0:ac:4a:99:8a:44:8c:f1:14:
74:0f:05:7a:8e:13:b4:ae:ed:37:ad:f3:d2:61:41:c4:35:3c:
e9:90:94:28:7d:ca:dd:f1:aa:fc:04:94:a3:70:a7:02:1b:a7:
19:85:ec:07:3c:b6:e4:c7:75:b8:56:36:76:c0:18:67:ee:df:
84:f3:1d:bf:f1:c2:bb:cf:0a:e4:54:a0:7d:77:15:20:3b:f1:
2b:cd:44:4a:20:fd:35:45:13:54:b2:6d:c9:85:57:e3:46:f2:
ea:81:8f:5e:b4:e6:4f:e2:d0:72:b9:c0:33:ad:05:f8:51:a4:
db:c0:59:a0:2e:30:02:76:6a:e5:c9:7e:12:07:7a:61:d7:98:
b6:d4:e1:6f:de:ac:4f:5e:a8:d8:30:5b:a3:be:8e:28:5e:8a:
53:a8:f4:48:aa:26:a5:6a:6b:71:87:fb:cd:b1:33:e9:0a:22:
8f:a0:dd:de
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZKkZGmnB0UtzqamKUS/oJC6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjMDhkYTEzOWI1NmY5OThiZTI0NjY1ZGIxNGFkMWUxNTY3
NjhmYzMwHhcNMjQxMDE5MTA0ODE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMzAzNDIxOGM2YzQ2MTFhNTQ1OGZhMzRmOWJjZDM2ODZkYjc2MTViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkpiR+Gwe9CHidjqHwgqbcS1DeLDp
migf2PqQBQIyNGEf17lLKdDUyjI+pAcRLA1qSv6ZmHzKpcdJNq0mfp19hj+yZif1
lyn5GQVwBHxrvo7Otm5VPT5dX/rG5S+a3pzqnUS90NvnyBWd3cH3Afnvj/Bf6RIf
EyhzxdzeZnzIfcyRWJOOqirm/jyCsnfKScDcML5RPdHdsrbl7+iNTF7ONJp4ltbY
y6z/XVQtSzvyJaiQnPko8pfFihdD5CAdH95Eh6KIzBhFA6+MJTr+uyxRb7PCvLPc
QQciYocVqIR347foedS20Wze0AvL4JRr9CwqdPXooxqt6N/qyzVnGHZhuwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOMDQhjGxGEaVFj6NPm802htt2FbMB8GA1UdIwQY
MBaAFKwI2hObVvmYviRmXbFK0eFWdo/DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvckFqYUU1dFctWmktSkdaZHNVclI0VloyajhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC8zZTM1ZWUtZDg4Zi00YzFmLWI0Mzct
Njk5Y2Y3YjA5NTkwLzEvNHdOQ0dNYkVZUnBVV1BvMC1ielRhRzIzWVZzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC8zZTM1ZWUtZDg4Zi00YzFmLWI0MzctNjk5Y2Y3YjA5NTkw
LzEvckFqYUU1dFctWmktSkdaZHNVclI0VloyajhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwcJqMA0G
CSqGSIb3DQEBCwUAA4IBAQBvXMat2P8UX/6VjawomdpTHIN1rijfGyN85TyWHonM
MSc5SYIXwEeba8uFttrQLJ/oE/xOyJEGVmvGMJbhjljtYW3ZFGa5DcebzMj5mKMw
w4/ArEqZikSM8RR0DwV6jhO0ru03rfPSYUHENTzpkJQofcrd8ar8BJSjcKcCG6cZ
hewHPLbkx3W4VjZ2wBhn7t+E8x2/8cK7zwrkVKB9dxUgO/ErzURKIP01RRNUsm3J
hVfjRvLqgY9etOZP4tByucAzrQX4UaTbwFmgLjACdmrlyX4SB3ph15i21OFv3qxP
XqjYMFujvo4oXopTqPRIqialamtxh/vNsTPpCiKPoN3e
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:03 2024 by rpki-client on console.sobornost.net