Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/3EZh3l5AnoonrNtnCnWrYrQC4Ds.roa
File: 3EZh3l5AnoonrNtnCnWrYrQC4Ds.roa (raw, json)
Hash identifier: m4tLl7SpXeC9y0+qoi4hnlZPS/JU8YWX9jmRBoW2gl0=
Subject key identifier: DC:46:61:DE:5E:40:9E:8A:27:AC:DB:67:0A:75:AB:62:B4:02:E0:3B
Certificate issuer: /CN=4da84d247ce37cdccf06e1571d226a2b85677bcd
Certificate serial: 0193791AF527F48C17FAEBA84E72E27C3347
Authority key identifier: 4D:A8:4D:24:7C:E3:7C:DC:CF:06:E1:57:1D:22:6A:2B:85:67:7B:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TahNJHzjfNzPBuFXHSJqK4Vne80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/3EZh3l5AnoonrNtnCnWrYrQC4Ds.roa
Signing time: Fri 29 Nov 2024 18:07:09 +0000
ROA not before: Fri 29 Nov 2024 18:07:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206119
IP address blocks: 185.78.87.0/24 maxlen: 24
185.174.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:79:1a:f5:27:f4:8c:17:fa:eb:a8:4e:72:e2:7c:33:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4da84d247ce37cdccf06e1571d226a2b85677bcd
Validity
Not Before: Nov 29 18:07:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dc4661de5e409e8a27acdb670a75ab62b402e03b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:7c:f1:12:da:83:26:44:c9:f1:40:70:b1:ee:
45:9c:9f:1e:01:3c:35:28:48:65:87:c0:a9:25:89:
4e:f4:12:bc:e8:9c:a9:b8:54:73:55:9d:8f:97:6f:
3b:9a:bc:ea:f8:4c:08:07:f9:05:e8:22:0c:91:33:
37:aa:35:8c:b1:76:13:93:35:f3:5b:e2:63:4e:8a:
d9:32:2a:ff:fa:b4:5e:a3:9f:2f:b7:50:f6:59:6c:
ed:48:7f:05:f5:8d:c4:0b:fa:24:b1:6d:96:d0:ca:
88:0c:67:f3:dd:fe:d2:2d:9f:f1:5d:64:b4:a1:2f:
6a:a3:a2:2c:6b:3b:87:0b:23:82:d2:b8:17:4c:b4:
02:fc:4e:ee:cb:d5:af:04:86:fe:7b:90:60:dc:ee:
06:e6:dc:fd:2c:fa:9e:2b:0f:e7:47:56:d0:2e:d8:
49:1e:fb:6d:20:a3:32:d7:2f:b1:a4:23:70:cb:e5:
e1:7b:31:c4:48:6f:f5:28:8a:66:6b:f3:0b:77:f2:
a8:74:1d:bb:2a:5d:07:ed:a6:84:bb:36:01:f9:fe:
fc:79:b0:a0:f1:f6:28:f8:ff:64:31:54:ea:cf:4f:
88:10:e6:83:9c:9a:6b:46:ba:35:bf:3e:d0:92:5d:
49:f1:52:00:82:53:82:19:7f:e4:ee:7d:06:87:13:
ca:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:46:61:DE:5E:40:9E:8A:27:AC:DB:67:0A:75:AB:62:B4:02:E0:3B
X509v3 Authority Key Identifier:
keyid:4D:A8:4D:24:7C:E3:7C:DC:CF:06:E1:57:1D:22:6A:2B:85:67:7B:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TahNJHzjfNzPBuFXHSJqK4Vne80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/3EZh3l5AnoonrNtnCnWrYrQC4Ds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/TahNJHzjfNzPBuFXHSJqK4Vne80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.78.87.0/24
185.174.71.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:ba:6d:f3:85:cd:e1:a0:fe:09:f0:2c:83:ae:76:9a:b4:1a:
fd:a9:78:68:a0:09:66:31:bc:01:ec:01:48:ca:04:88:64:ad:
20:cb:28:99:e1:b2:c8:2d:59:e4:c1:20:e0:11:6b:56:34:48:
84:52:ea:78:4a:c6:41:1c:13:33:87:d3:67:c5:54:6d:e5:91:
fd:68:a4:c4:3c:1a:85:4f:25:57:6e:0e:c6:28:0f:c8:af:0e:
4b:58:0f:39:42:12:1d:47:9d:fd:59:59:3b:71:89:48:d6:99:
03:5d:2b:65:45:80:0d:3a:7c:00:72:b4:8a:bf:98:b0:5f:34:
c1:d4:85:2a:6d:4b:b0:e0:71:39:c3:05:4b:5b:31:29:89:a5:
32:9c:2b:21:59:e8:ea:e9:b8:e5:7e:67:c5:3a:5c:78:5f:3f:
23:b5:da:ee:a0:16:1d:5b:25:42:86:5f:3e:80:f2:33:73:15:
cd:0e:85:d0:6b:65:4e:65:12:9d:ce:bb:e5:36:ed:98:15:3d:
d4:3c:33:fb:cc:69:ae:be:67:a1:e8:36:e5:a0:dd:26:bc:e6:
90:4b:58:c5:9b:18:db:c5:ee:88:69:0d:da:59:17:ab:a4:b1:
85:41:5c:5f:43:75:c5:7e:f7:fb:d2:05:d9:18:25:c9:b8:7a:
38:f3:1c:c8
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZN5GvUn9IwX+uuoTnLifDNHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkYTg0ZDI0N2NlMzdjZGNjZjA2ZTE1NzFkMjI2YTJiODU2
NzdiY2QwHhcNMjQxMTI5MTgwNzA5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYzQ2NjFkZTVlNDA5ZThhMjdhY2RiNjcwYTc1YWI2MmI0MDJlMDNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkHzxEtqDJkTJ8UBwse5FnJ8eATw1
KEhlh8CpJYlO9BK86JypuFRzVZ2Pl287mrzq+EwIB/kF6CIMkTM3qjWMsXYTkzXz
W+JjTorZMir/+rReo58vt1D2WWztSH8F9Y3EC/oksW2W0MqIDGfz3f7SLZ/xXWS0
oS9qo6IsazuHCyOC0rgXTLQC/E7uy9WvBIb+e5Bg3O4G5tz9LPqeKw/nR1bQLthJ
HvttIKMy1y+xpCNwy+XhezHESG/1KIpma/MLd/KodB27Kl0H7aaEuzYB+f78ebCg
8fYo+P9kMVTqz0+IEOaDnJprRro1vz7Qkl1J8VIAglOCGX/k7n0GhxPKNQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFNxGYd5eQJ6KJ6zbZwp1q2K0AuA7MB8GA1UdIwQY
MBaAFE2oTSR843zczwbhVx0iaiuFZ3vNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVGFoTkpIempmTnpQQnVGWEhTSnFLNFZuZTgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC8yMTBmYmItYWE2ZS00OWM5LTkxOGIt
NTU1OGE4YjUzZTNkLzEvM0VaaDNsNUFub29uck50bkNuV3JZclFDNERzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC8yMTBmYmItYWE2ZS00OWM5LTkxOGItNTU1OGE4YjUzZTNk
LzEvVGFoTkpIempmTnpQQnVGWEhTSnFLNFZuZTgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuU5XAwQA
ua5HMA0GCSqGSIb3DQEBCwUAA4IBAQCPum3zhc3hoP4J8CyDrnaatBr9qXhooAlm
MbwB7AFIygSIZK0gyyiZ4bLILVnkwSDgEWtWNEiEUup4SsZBHBMzh9NnxVRt5ZH9
aKTEPBqFTyVXbg7GKA/Irw5LWA85QhIdR539WVk7cYlI1pkDXStlRYANOnwAcrSK
v5iwXzTB1IUqbUuw4HE5wwVLWzEpiaUynCshWejq6bjlfmfFOlx4Xz8jtdruoBYd
WyVChl8+gPIzcxXNDoXQa2VOZRKdzrvlNu2YFT3UPDP7zGmuvmeh6DbloN0mvOaQ
S1jFmxjbxe6IaQ3aWRerpLGFQVxfQ3XFfvf70gXZGCXJuHo48xzI
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:06 2024 by rpki-client on console.sobornost.net