Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/nIAGOEKo_TgB4aH3SDQ0fQRm91k.roa
File: nIAGOEKo_TgB4aH3SDQ0fQRm91k.roa (raw, json)
Hash identifier: KxgeT4SQxYCuZhtMyq1sxJhHIwUWQ0o5+MhOIVhKGPQ=
Subject key identifier: 9C:80:06:38:42:A8:FD:38:01:E1:A1:F7:48:34:34:7D:04:66:F7:59
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 01936907A9B8D3DFEB4DA26E7CA080E895DC
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/nIAGOEKo_TgB4aH3SDQ0fQRm91k.roa
Signing time: Tue 26 Nov 2024 15:12:10 +0000
ROA not before: Tue 26 Nov 2024 15:12:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215826
IP address blocks: 185.100.157.0/24 maxlen: 24
185.177.239.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:07:a9:b8:d3:df:eb:4d:a2:6e:7c:a0:80:e8:95:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Nov 26 15:12:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9c80063842a8fd3801e1a1f74834347d0466f759
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:0e:b3:2a:f6:e9:ed:cc:e8:66:60:41:aa:42:
fa:6d:7f:75:ce:26:e1:3b:aa:49:6d:82:dc:42:d3:
1e:17:12:33:e9:91:1a:d4:dd:b7:6d:c2:6a:cc:15:
70:e0:d4:52:67:78:ae:fd:af:ad:39:fe:b8:64:65:
d0:28:31:e0:24:18:5d:d9:7b:92:e6:53:ff:d9:3b:
60:2c:ee:f6:fc:07:78:cb:d6:4d:c9:e6:77:35:56:
50:cc:82:52:6e:cd:b9:53:86:cb:3a:28:e6:7b:3c:
dc:b0:23:c2:f6:1c:1a:72:2b:26:34:64:b5:55:d6:
8e:71:ad:07:96:ca:45:3c:fa:d2:25:41:f1:d4:60:
99:3c:a0:6a:ba:3d:28:9b:33:69:97:88:a5:2a:37:
7b:f1:70:ee:2b:0d:e1:14:57:95:00:b8:17:4f:2a:
e2:7f:9a:18:b7:02:16:ff:c2:a9:51:f0:42:6f:f2:
09:9c:b2:1e:3b:55:41:79:a0:09:51:00:33:22:1b:
e2:55:08:d2:88:38:b3:0d:fb:53:e1:9f:89:98:38:
5a:0c:5a:4b:a0:26:2e:d8:24:11:8d:b7:b0:da:33:
90:10:71:d9:23:6f:b2:38:e6:28:b3:4c:50:9f:d8:
f1:a6:4b:45:18:80:2a:39:49:3a:30:20:12:4f:bb:
ba:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:80:06:38:42:A8:FD:38:01:E1:A1:F7:48:34:34:7D:04:66:F7:59
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/nIAGOEKo_TgB4aH3SDQ0fQRm91k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.100.157.0/24
185.177.239.0/24
Signature Algorithm: sha256WithRSAEncryption
53:3a:29:47:66:d0:04:0e:2b:be:5f:70:04:18:e4:c5:40:9a:
9a:ec:ed:54:88:ff:d6:d1:7f:62:55:81:f4:03:21:e4:f1:7d:
d7:99:70:4a:a9:7b:ef:02:b1:94:6c:11:87:ff:c6:9a:a1:52:
5d:a6:16:77:b1:29:a0:ef:cd:b1:60:c8:c2:cb:ed:f1:58:b4:
a3:02:2a:5d:ef:c8:9f:8e:89:a0:79:17:f6:65:39:77:97:05:
f1:06:22:7c:e1:fd:32:22:a2:11:01:48:26:cb:eb:8e:88:8a:
a9:61:57:01:0e:3b:17:ce:f2:47:14:2c:6a:61:20:4d:c3:f1:
ae:61:2d:12:ab:7e:a5:6b:dc:f8:e5:4d:32:94:38:70:35:d6:
05:54:eb:5a:1c:cd:9a:02:dc:43:33:e0:45:af:89:91:57:e2:
3f:24:bb:4f:93:bf:06:11:07:5d:21:40:66:30:b4:b3:bb:dd:
3b:3d:58:2c:3a:c6:cd:9f:3f:31:e1:fe:bd:b5:ae:02:00:eb:
d3:14:60:1c:54:ed:22:24:a2:0f:1b:41:60:00:67:d8:7a:cd:
c8:71:15:93:71:0f:83:10:eb:c8:bf:0a:a1:6e:cf:7a:29:9d:
31:3f:9b:0f:9e:aa:eb:cc:f1:cf:23:37:06:1e:82:87:ce:b4:
de:43:06:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:11 2024 by rpki-client on console.sobornost.net