Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/068cb9-6cba-453d-858a-c5bbf95f8584/1/ayOI6oCE_gJuOJep8pP3XMm3XCo.roa
File: ayOI6oCE_gJuOJep8pP3XMm3XCo.roa (raw, json)
Hash identifier: JfF+NVW4OSMlvTmgPzFRHcvNg2ZWumpjpVz9ba+FUDg=
Subject key identifier: 6B:23:88:EA:80:84:FE:02:6E:38:97:A9:F2:93:F7:5C:C9:B7:5C:2A
Certificate issuer: /CN=700c030930a9d2e4da88d81852a44c3f78bfb440
Certificate serial: 018CC492265B4369D17BBEA0617F0CFDA36A
Authority key identifier: 70:0C:03:09:30:A9:D2:E4:DA:88:D8:18:52:A4:4C:3F:78:BF:B4:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cAwDCTCp0uTaiNgYUqRMP3i_tEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/068cb9-6cba-453d-858a-c5bbf95f8584/1/ayOI6oCE_gJuOJep8pP3XMm3XCo.roa
Signing time: Mon 01 Jan 2024 10:29:21 +0000
ROA not before: Mon 01 Jan 2024 10:29:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20596
IP address blocks: 185.113.24.0/22 maxlen: 22
2a06:6740::/29 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:92:26:5b:43:69:d1:7b:be:a0:61:7f:0c:fd:a3:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=700c030930a9d2e4da88d81852a44c3f78bfb440
Validity
Not Before: Jan 1 10:29:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6b2388ea8084fe026e3897a9f293f75cc9b75c2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:47:da:0b:d0:fe:55:cb:47:99:09:c4:60:9c:
f2:21:42:3c:58:9f:91:02:d5:ec:ed:52:90:06:fa:
a3:1c:d4:7e:d2:fe:1a:04:06:e3:a7:82:b2:63:ce:
f8:7d:5f:81:2d:cf:0d:b1:50:47:c0:66:98:9c:fa:
43:38:85:51:71:4d:d4:5f:ac:28:06:71:2e:44:25:
57:d3:9c:2e:2b:22:a9:97:e8:d8:25:a2:80:9e:ab:
d3:aa:2d:8e:9a:73:92:06:55:1d:34:ef:48:f7:13:
1b:01:c1:dd:aa:d0:31:d0:ea:ef:41:26:09:e7:e8:
02:2d:5b:fd:ad:e0:0c:73:b1:85:63:3d:57:35:43:
4b:cf:d6:2f:9e:10:22:5a:30:80:9a:38:15:70:b4:
28:48:5d:ca:dc:ec:41:35:d1:02:9c:6b:42:f2:60:
08:8c:b7:02:41:c7:08:b3:d9:18:24:23:54:b6:2f:
35:43:f8:2a:ce:b7:69:9d:2d:c1:0d:33:16:6e:64:
97:a0:c8:6c:ca:8b:38:3e:da:f7:d9:83:a2:b0:ad:
43:03:dd:e6:1f:76:48:22:37:5f:9b:38:71:40:45:
e6:2e:c8:c2:a5:ea:41:e5:a0:91:06:9e:94:00:57:
8b:ae:14:b7:38:80:48:88:9a:bf:7c:2d:3d:ab:d0:
4d:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:23:88:EA:80:84:FE:02:6E:38:97:A9:F2:93:F7:5C:C9:B7:5C:2A
X509v3 Authority Key Identifier:
keyid:70:0C:03:09:30:A9:D2:E4:DA:88:D8:18:52:A4:4C:3F:78:BF:B4:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cAwDCTCp0uTaiNgYUqRMP3i_tEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/068cb9-6cba-453d-858a-c5bbf95f8584/1/ayOI6oCE_gJuOJep8pP3XMm3XCo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/068cb9-6cba-453d-858a-c5bbf95f8584/1/cAwDCTCp0uTaiNgYUqRMP3i_tEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.113.24.0/22
IPv6:
2a06:6740::/29
Signature Algorithm: sha256WithRSAEncryption
77:2b:83:f0:02:74:77:dc:e7:0a:e1:a4:ac:b5:77:79:30:46:
d6:5b:78:ac:ad:47:27:04:11:e9:3b:06:ff:47:b8:b5:fb:68:
94:d7:1b:ec:46:de:e7:a4:bc:b0:36:97:19:61:a1:79:6a:9d:
ce:d7:86:0b:82:8b:c4:c7:74:7b:87:8d:fc:47:10:14:49:ed:
d1:ec:7c:65:8f:4f:9c:5c:89:a4:93:da:de:0a:c0:cc:20:e8:
e7:9c:7e:db:71:ce:9b:e2:23:e3:f0:4a:38:e5:9b:17:02:50:
22:a3:a2:4d:16:33:97:19:d7:e1:8b:9d:ec:f2:a8:dd:cf:7d:
02:40:6e:7a:0b:11:53:c0:76:58:13:4b:e7:fb:17:df:b6:ca:
41:a6:0e:f8:24:f4:10:63:e8:dc:0e:c4:b6:d8:1f:29:20:b3:
66:41:da:ad:d7:5a:3f:15:f1:e2:43:32:4a:f8:22:ea:55:56:
95:d5:91:00:7e:58:71:63:70:23:ad:f1:37:52:76:2f:90:99:
d5:84:11:9a:ea:79:8a:e5:f2:15:a7:ea:a7:ca:ce:37:a1:86:
b6:55:a3:a4:a9:db:c2:01:c4:32:6b:24:04:a3:78:8c:f3:9e:
dc:37:a0:48:88:66:68:a6:76:ef:ef:18:f3:7b:7c:55:68:0a:
d1:a1:d5:d9
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYzEkiZbQ2nRe76gYX8M/aNqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwMGMwMzA5MzBhOWQyZTRkYTg4ZDgxODUyYTQ0YzNmNzhi
ZmI0NDAwHhcNMjQwMTAxMTAyOTIxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YjIzODhlYTgwODRmZTAyNmUzODk3YTlmMjkzZjc1Y2M5Yjc1YzJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv0faC9D+VctHmQnEYJzyIUI8WJ+R
AtXs7VKQBvqjHNR+0v4aBAbjp4KyY874fV+BLc8NsVBHwGaYnPpDOIVRcU3UX6wo
BnEuRCVX05wuKyKpl+jYJaKAnqvTqi2OmnOSBlUdNO9I9xMbAcHdqtAx0OrvQSYJ
5+gCLVv9reAMc7GFYz1XNUNLz9YvnhAiWjCAmjgVcLQoSF3K3OxBNdECnGtC8mAI
jLcCQccIs9kYJCNUti81Q/gqzrdpnS3BDTMWbmSXoMhsyos4Ptr32YOisK1DA93m
H3ZIIjdfmzhxQEXmLsjCpepB5aCRBp6UAFeLrhS3OIBIiJq/fC09q9BNcQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFGsjiOqAhP4CbjiXqfKT91zJt1wqMB8GA1UdIwQY
MBaAFHAMAwkwqdLk2ojYGFKkTD94v7RAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0F3RENUQ3AwdVRhaU5nWVVxUk1QM2lfdEVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS8wNjhjYjktNmNiYS00NTNkLTg1OGEt
YzViYmY5NWY4NTg0LzEvYXlPSTZvQ0VfZ0p1T0plcDhwUDNYTW0zWENvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS8wNjhjYjktNmNiYS00NTNkLTg1OGEtYzViYmY5NWY4NTg0
LzEvY0F3RENUQ3AwdVRhaU5nWVVxUk1QM2lfdEVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuXEYMA0E
AgACMAcDBQMqBmdAMA0GCSqGSIb3DQEBCwUAA4IBAQB3K4PwAnR33OcK4aSstXd5
MEbWW3isrUcnBBHpOwb/R7i1+2iU1xvsRt7npLywNpcZYaF5ap3O14YLgovEx3R7
h438RxAUSe3R7Hxlj0+cXImkk9reCsDMIOjnnH7bcc6b4iPj8Eo45ZsXAlAio6JN
FjOXGdfhi53s8qjdz30CQG56CxFTwHZYE0vn+xfftspBpg74JPQQY+jcDsS22B8p
ILNmQdqt11o/FfHiQzJK+CLqVVaV1ZEAflhxY3AjrfE3UnYvkJnVhBGa6nmK5fIV
p+qnys43oYa2VaOkqdvCAcQyayQEo3iM857cN6BIiGZopnbv7xjze3xVaArRodXZ
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:03 2024 by rpki-client on console.sobornost.net