Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/ba7219-ad7c-48b0-9c96-17228cef0049/1/dbYoIuD-MvU4XrJsQb2-jFm0tKw.roa
File: dbYoIuD-MvU4XrJsQb2-jFm0tKw.roa (raw, json)
Hash identifier: Gk+C5eFieo3OzlvLErfuo33Rf+CLulMn53Vsu/uNRJk=
Subject key identifier: 75:B6:28:22:E0:FE:32:F5:38:5E:B2:6C:41:BD:BE:8C:59:B4:B4:AC
Certificate issuer: /CN=a77720c7dc1dc3edd1d0d47f923bcd833f06af36
Certificate serial: 0193F00ACEF32A2B52BA9BAE1CEE968680E2
Authority key identifier: A7:77:20:C7:DC:1D:C3:ED:D1:D0:D4:7F:92:3B:CD:83:3F:06:AF:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p3cgx9wdw-3R0NR_kjvNgz8GrzY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/ba7219-ad7c-48b0-9c96-17228cef0049/1/dbYoIuD-MvU4XrJsQb2-jFm0tKw.roa
Signing time: Sun 22 Dec 2024 20:24:20 +0000
ROA not before: Sun 22 Dec 2024 20:24:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49895
IP address blocks: 46.254.72.0/22 maxlen: 22
46.254.72.0/24 maxlen: 24
46.254.73.0/24 maxlen: 24
46.254.74.0/24 maxlen: 24
46.254.75.0/24 maxlen: 24
213.5.8.0/21 maxlen: 21
213.5.8.0/24 maxlen: 24
213.5.9.0/24 maxlen: 24
213.5.10.0/24 maxlen: 24
213.5.11.0/24 maxlen: 24
213.5.12.0/24 maxlen: 24
213.5.13.0/24 maxlen: 24
213.5.14.0/24 maxlen: 24
213.5.15.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:f0:0a:ce:f3:2a:2b:52:ba:9b:ae:1c:ee:96:86:80:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a77720c7dc1dc3edd1d0d47f923bcd833f06af36
Validity
Not Before: Dec 22 20:24:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=75b62822e0fe32f5385eb26c41bdbe8c59b4b4ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:cb:6b:5e:ac:a4:d8:5a:2c:23:d2:0d:3c:7b:
d6:6d:31:b7:93:52:ca:e6:80:54:f3:0f:ce:2d:a1:
89:74:96:fb:61:3e:bc:32:db:39:0e:f6:51:cc:3f:
b7:8b:11:d2:ae:8d:cb:3c:96:8c:18:59:f2:c1:a1:
6e:a7:4b:63:9a:57:70:dd:79:a9:f2:eb:3e:3f:9e:
d6:d7:32:2a:42:fb:9a:aa:56:80:40:b3:2b:83:83:
48:6c:42:b2:3f:75:9a:14:f0:31:a0:cd:2e:05:2a:
e3:0b:84:40:39:9d:28:38:e2:0b:cd:75:1e:f0:bf:
73:96:d6:b1:81:35:c4:ff:e2:df:90:c9:bd:4d:5a:
84:7d:be:03:71:12:1a:67:52:6a:5a:fc:7c:b8:9f:
0b:6e:9e:56:72:fb:32:15:da:ce:46:49:0d:3e:ab:
76:d7:f0:c1:25:4b:a9:95:43:1f:9b:40:3c:8e:e3:
c3:16:8a:9f:09:c9:3c:a4:22:ce:fb:34:6b:08:87:
fe:c5:c1:81:af:bc:ca:15:fd:fd:3b:b4:ae:98:03:
ad:ba:4c:11:22:9e:6f:22:4f:54:98:f9:87:56:0a:
7a:4b:26:3e:f1:95:71:a3:0f:eb:40:1a:60:3b:1f:
29:bd:38:92:84:a5:05:a8:96:60:4d:35:42:d8:9b:
16:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:B6:28:22:E0:FE:32:F5:38:5E:B2:6C:41:BD:BE:8C:59:B4:B4:AC
X509v3 Authority Key Identifier:
keyid:A7:77:20:C7:DC:1D:C3:ED:D1:D0:D4:7F:92:3B:CD:83:3F:06:AF:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p3cgx9wdw-3R0NR_kjvNgz8GrzY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/ba7219-ad7c-48b0-9c96-17228cef0049/1/dbYoIuD-MvU4XrJsQb2-jFm0tKw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/ba7219-ad7c-48b0-9c96-17228cef0049/1/p3cgx9wdw-3R0NR_kjvNgz8GrzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.254.72.0/22
213.5.8.0/21
Signature Algorithm: sha256WithRSAEncryption
3f:9d:bc:d4:2f:88:31:08:24:cd:d4:60:25:52:f8:5d:d9:b8:
3b:18:64:07:6e:b6:9f:f5:60:02:25:ac:94:69:c2:a6:5f:51:
59:5e:86:53:a1:94:9a:a0:4c:c2:9d:40:d7:c6:bc:84:6d:18:
0f:b4:a8:74:76:29:27:4b:af:2d:65:5e:d6:f6:ee:83:c8:34:
d3:48:21:0c:b9:88:cb:39:91:0c:dd:a6:ce:7c:39:17:1e:5f:
07:b8:81:84:eb:d1:c1:af:22:4b:79:99:c8:70:af:42:ea:43:
81:a4:8d:2e:db:6c:53:fc:9c:7a:5f:dd:1d:7d:d1:1d:02:9b:
f1:f5:c2:f2:10:01:39:84:03:06:34:f4:fe:2b:ea:29:24:aa:
a8:83:bd:d8:cf:32:35:4c:c0:86:2c:78:40:e3:cd:b3:cf:35:
91:fc:ae:69:b3:26:cd:7c:fe:92:55:e7:e9:de:ad:cb:50:4e:
87:88:6d:27:4f:94:02:73:12:e9:17:52:cb:d2:62:e5:40:4c:
21:dc:f1:72:88:01:8b:ae:1a:60:32:ca:06:fa:50:c1:a5:4a:
36:3c:64:84:a3:18:06:7c:61:3f:84:a6:8e:6b:63:7a:7d:26:
df:53:73:1b:7b:30:e3:c1:71:6c:4f:82:e0:1f:ec:69:80:5f:
c0:dd:f0:7a
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZPwCs7zKitSupuuHO6WhoDiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE3NzcyMGM3ZGMxZGMzZWRkMWQwZDQ3ZjkyM2JjZDgzM2Yw
NmFmMzYwHhcNMjQxMjIyMjAyNDIwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NWI2MjgyMmUwZmUzMmY1Mzg1ZWIyNmM0MWJkYmU4YzU5YjRiNGFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0MtrXqyk2FosI9INPHvWbTG3k1LK
5oBU8w/OLaGJdJb7YT68Mts5DvZRzD+3ixHSro3LPJaMGFnywaFup0tjmldw3Xmp
8us+P57W1zIqQvuaqlaAQLMrg4NIbEKyP3WaFPAxoM0uBSrjC4RAOZ0oOOILzXUe
8L9zltaxgTXE/+LfkMm9TVqEfb4DcRIaZ1JqWvx8uJ8Lbp5WcvsyFdrORkkNPqt2
1/DBJUuplUMfm0A8juPDFoqfCck8pCLO+zRrCIf+xcGBr7zKFf39O7SumAOtukwR
Ip5vIk9UmPmHVgp6SyY+8ZVxow/rQBpgOx8pvTiShKUFqJZgTTVC2JsWgwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFHW2KCLg/jL1OF6ybEG9voxZtLSsMB8GA1UdIwQY
MBaAFKd3IMfcHcPt0dDUf5I7zYM/Bq82MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcDNjZ3g5d2R3LTNSME5SX2tqdk5nejhHcnpZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9iYTcyMTktYWQ3Yy00OGIwLTljOTYt
MTcyMjhjZWYwMDQ5LzEvZGJZb0l1RC1NdlU0WHJKc1FiMi1qRm0wdEt3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS9iYTcyMTktYWQ3Yy00OGIwLTljOTYtMTcyMjhjZWYwMDQ5
LzEvcDNjZ3g5d2R3LTNSME5SX2tqdk5nejhHcnpZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCLv5IAwQD
1QUIMA0GCSqGSIb3DQEBCwUAA4IBAQA/nbzUL4gxCCTN1GAlUvhd2bg7GGQHbraf
9WACJayUacKmX1FZXoZToZSaoEzCnUDXxryEbRgPtKh0diknS68tZV7W9u6DyDTT
SCEMuYjLOZEM3abOfDkXHl8HuIGE69HBryJLeZnIcK9C6kOBpI0u22xT/Jx6X90d
fdEdApvx9cLyEAE5hAMGNPT+K+opJKqog73YzzI1TMCGLHhA482zzzWR/K5psybN
fP6SVefp3q3LUE6HiG0nT5QCcxLpF1LL0mLlQEwh3PFyiAGLrhpgMsoG+lDBpUo2
PGSEoxgGfGE/hKaOa2N6fSbfU3MbezDjwXFsT4LgH+xpgF/A3fB6
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:03 2024 by rpki-client on console.sobornost.net