Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/6b050f-c282-4c53-b151-83adb20af00f/1/624RcxBlY4XplRusF7x8Rq9hpZI.roa
File: 624RcxBlY4XplRusF7x8Rq9hpZI.roa (raw, json)
Hash identifier: jw4Hx2AsGTkuxRl803ql7l8leCYcxdXa3H42OEqhTW8=
Subject key identifier: EB:6E:11:73:10:65:63:85:E9:95:1B:AC:17:BC:7C:46:AF:61:A5:92
Certificate issuer: /CN=3e4c8130cca30a3ff92c9b99db5438dc7f3e2830
Certificate serial: 018CC94E0913168B26E383795683E86B6C7A
Authority key identifier: 3E:4C:81:30:CC:A3:0A:3F:F9:2C:9B:99:DB:54:38:DC:7F:3E:28:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PkyBMMyjCj_5LJuZ21Q43H8-KDA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/6b050f-c282-4c53-b151-83adb20af00f/1/624RcxBlY4XplRusF7x8Rq9hpZI.roa
Signing time: Tue 02 Jan 2024 08:33:03 +0000
ROA not before: Tue 02 Jan 2024 08:33:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212457
IP address blocks: 45.151.40.0/22 maxlen: 22
2a10:3d00::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:09:13:16:8b:26:e3:83:79:56:83:e8:6b:6c:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e4c8130cca30a3ff92c9b99db5438dc7f3e2830
Validity
Not Before: Jan 2 08:33:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eb6e117310656385e9951bac17bc7c46af61a592
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:bd:58:f2:98:8a:63:cd:c7:29:f7:00:f2:01:
59:7a:42:97:7f:d6:38:63:33:28:91:e0:81:6c:a3:
2a:3b:b2:55:f2:f6:70:b2:12:08:a1:a2:08:82:87:
71:d8:0b:14:c4:c3:1c:62:68:50:8a:bd:8e:19:d3:
4d:53:ad:79:90:d1:4e:df:cb:b3:32:70:23:fe:99:
d1:73:ad:b9:ea:63:96:3f:70:fb:94:97:4d:3f:f8:
22:6b:eb:0a:fd:60:8d:44:02:95:92:b9:42:69:fd:
a6:3c:2a:e6:7c:ca:37:0d:87:72:9f:08:72:37:30:
14:ed:c2:b9:c0:33:e0:c2:47:75:ce:c4:df:d5:f4:
90:69:2c:d4:4e:9b:32:bb:5f:0d:72:ec:57:19:cb:
68:66:d6:8a:91:99:04:eb:06:22:85:2f:95:b7:d4:
96:e9:37:e8:de:a5:9c:34:a2:ac:e5:ed:48:6e:8d:
93:2a:3b:3d:5c:ee:ed:82:21:d4:03:2e:d4:2e:91:
5a:a7:fc:fe:82:9e:e9:a2:db:ca:60:52:67:a1:87:
46:af:88:e7:1b:12:57:cc:eb:83:c9:de:33:1a:5a:
be:f4:e1:f8:91:1a:43:23:24:3b:cb:e5:d7:d5:21:
16:d4:e3:d7:77:75:76:fb:97:12:7c:71:50:6d:cb:
05:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:6E:11:73:10:65:63:85:E9:95:1B:AC:17:BC:7C:46:AF:61:A5:92
X509v3 Authority Key Identifier:
keyid:3E:4C:81:30:CC:A3:0A:3F:F9:2C:9B:99:DB:54:38:DC:7F:3E:28:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PkyBMMyjCj_5LJuZ21Q43H8-KDA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/6b050f-c282-4c53-b151-83adb20af00f/1/624RcxBlY4XplRusF7x8Rq9hpZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/6b050f-c282-4c53-b151-83adb20af00f/1/PkyBMMyjCj_5LJuZ21Q43H8-KDA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.40.0/22
IPv6:
2a10:3d00::/29
Signature Algorithm: sha256WithRSAEncryption
9c:07:e8:89:fe:c9:aa:c1:62:10:c4:11:2f:69:68:6a:d9:ac:
16:4c:8f:cf:f6:1b:87:85:b6:0d:bd:b9:7e:c7:b1:38:74:fd:
d8:13:07:4c:e5:a7:dd:cb:b9:6c:0b:d4:a8:26:81:2a:c3:ae:
5e:9e:f9:8a:3a:bd:6e:18:e6:2d:02:8e:f9:85:36:2c:64:17:
e1:5f:bc:d4:96:29:f2:e1:a6:63:7c:4e:f3:80:ca:73:ee:92:
33:8a:c6:34:1e:bf:2b:88:87:f2:ca:69:d3:e0:2d:8b:48:81:
b8:b7:82:1c:57:b5:4a:3e:d7:9c:2e:a9:61:ea:0c:a2:12:06:
14:da:6d:67:bf:ad:63:b4:f2:fc:e0:a7:b1:91:ef:93:49:5f:
4d:6d:43:51:38:7b:fa:4b:c5:8a:c0:3b:35:1b:3c:ed:d7:ef:
cf:2d:29:66:4e:aa:b1:4f:97:8d:98:f2:41:00:ca:b9:e9:ef:
48:91:c3:fb:02:18:b4:68:a0:19:c1:db:27:2f:aa:92:63:1b:
46:dc:89:c1:ba:f4:24:82:e6:fd:f9:7a:9b:a7:38:aa:00:1d:
07:fe:3e:21:d1:d9:bf:d8:8d:20:71:ed:e0:e5:37:8c:8c:f3:
f2:1b:d4:92:aa:17:b1:b9:d8:bd:3c:50:c1:73:91:23:20:ee:
f1:6e:e3:ce
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYzJTgkTFosm44N5VoPoa2x6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNGM4MTMwY2NhMzBhM2ZmOTJjOWI5OWRiNTQzOGRjN2Yz
ZTI4MzAwHhcNMjQwMTAyMDgzMzAzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYjZlMTE3MzEwNjU2Mzg1ZTk5NTFiYWMxN2JjN2M0NmFmNjFhNTkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhr1Y8piKY83HKfcA8gFZekKXf9Y4
YzMokeCBbKMqO7JV8vZwshIIoaIIgodx2AsUxMMcYmhQir2OGdNNU615kNFO38uz
MnAj/pnRc6256mOWP3D7lJdNP/gia+sK/WCNRAKVkrlCaf2mPCrmfMo3DYdynwhy
NzAU7cK5wDPgwkd1zsTf1fSQaSzUTpsyu18NcuxXGctoZtaKkZkE6wYihS+Vt9SW
6Tfo3qWcNKKs5e1Ibo2TKjs9XO7tgiHUAy7ULpFap/z+gp7potvKYFJnoYdGr4jn
GxJXzOuDyd4zGlq+9OH4kRpDIyQ7y+XX1SEW1OPXd3V2+5cSfHFQbcsFQQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFOtuEXMQZWOF6ZUbrBe8fEavYaWSMB8GA1UdIwQY
MBaAFD5MgTDMowo/+SybmdtUONx/PigwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUGt5Qk1NeWpDal81TEp1WjIxUTQzSDgtS0RBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS82YjA1MGYtYzI4Mi00YzUzLWIxNTEt
ODNhZGIyMGFmMDBmLzEvNjI0UmN4QmxZNFhwbFJ1c0Y3eDhScTlocFpJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS82YjA1MGYtYzI4Mi00YzUzLWIxNTEtODNhZGIyMGFmMDBm
LzEvUGt5Qk1NeWpDal81TEp1WjIxUTQzSDgtS0RBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLZcoMA0E
AgACMAcDBQMqED0AMA0GCSqGSIb3DQEBCwUAA4IBAQCcB+iJ/smqwWIQxBEvaWhq
2awWTI/P9huHhbYNvbl+x7E4dP3YEwdM5afdy7lsC9SoJoEqw65envmKOr1uGOYt
Ao75hTYsZBfhX7zUliny4aZjfE7zgMpz7pIzisY0Hr8riIfyymnT4C2LSIG4t4Ic
V7VKPtecLqlh6gyiEgYU2m1nv61jtPL84Kexke+TSV9NbUNROHv6S8WKwDs1Gzzt
1+/PLSlmTqqxT5eNmPJBAMq56e9IkcP7Ahi0aKAZwdsnL6qSYxtG3InBuvQkgub9
+XqbpziqAB0H/j4h0dm/2I0gce3g5TeMjPPyG9SSqhexudi9PFDBc5EjIO7xbuPO
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:03 2024 by rpki-client on console.sobornost.net