Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/0iA0GP3kfFqT8rilI6_2M6RvodI.roa
File: 0iA0GP3kfFqT8rilI6_2M6RvodI.roa (raw, json)
Hash identifier: zRLqepzvq0be9gu2lO39LpAeTna8rN6Sw/P4KWaw0fU=
Subject key identifier: D2:20:34:18:FD:E4:7C:5A:93:F2:B8:A5:23:AF:F6:33:A4:6F:A1:D2
Certificate issuer: /CN=297ef9befd1a7e24c0cc9729987fc065d6b7132f
Certificate serial: 01922DCC2DDE01D31F8525F76880C38EB2DE
Authority key identifier: 29:7E:F9:BE:FD:1A:7E:24:C0:CC:97:29:98:7F:C0:65:D6:B7:13:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KX75vv0afiTAzJcpmH_AZda3Ey8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/0iA0GP3kfFqT8rilI6_2M6RvodI.roa
Signing time: Thu 26 Sep 2024 10:06:48 +0000
ROA not before: Thu 26 Sep 2024 10:06:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50053
IP address blocks: 185.23.238.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:2d:cc:2d:de:01:d3:1f:85:25:f7:68:80:c3:8e:b2:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297ef9befd1a7e24c0cc9729987fc065d6b7132f
Validity
Not Before: Sep 26 10:06:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d2203418fde47c5a93f2b8a523aff633a46fa1d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:03:5c:f6:58:a0:3f:b0:64:05:46:f3:8f:67:
e9:ba:83:bd:38:73:3b:f8:1e:0e:c0:f9:21:1b:76:
75:d9:06:be:25:1a:7c:b1:18:7e:38:5d:ce:d3:ec:
29:d7:63:fb:26:03:85:b7:42:b9:57:9d:77:c2:e6:
92:3c:76:2b:21:bb:c9:6f:21:f8:50:5d:c4:95:bc:
fb:7f:b9:fa:1e:c3:7d:5b:e0:c0:64:fd:48:74:67:
98:e8:f0:15:7a:87:1f:47:54:6d:bb:2e:fc:88:13:
db:54:14:a7:bd:b5:96:64:ef:7e:fd:c6:81:5a:f0:
ae:4c:41:1f:36:fe:6f:cf:33:5d:c2:8b:34:a5:04:
3c:7b:f1:23:e9:62:4e:53:2f:7c:51:3c:dc:ca:e0:
95:35:90:cb:ac:93:4a:a7:90:8a:68:5d:41:c8:cf:
b3:6a:ee:b0:79:01:3f:04:cb:61:cb:42:90:28:37:
2a:eb:d8:ea:91:b4:8d:07:3d:92:c4:14:7c:7c:86:
a1:d1:af:e0:b9:82:05:03:24:48:a5:33:d4:fd:a5:
d0:ec:45:bd:f8:d0:d4:2f:99:93:6e:8d:01:11:79:
11:38:31:de:15:9f:43:78:fd:02:32:d7:61:d2:15:
fd:ef:4c:56:0d:7a:22:9c:9f:3e:f8:f9:54:cc:06:
fe:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:20:34:18:FD:E4:7C:5A:93:F2:B8:A5:23:AF:F6:33:A4:6F:A1:D2
X509v3 Authority Key Identifier:
keyid:29:7E:F9:BE:FD:1A:7E:24:C0:CC:97:29:98:7F:C0:65:D6:B7:13:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KX75vv0afiTAzJcpmH_AZda3Ey8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/0iA0GP3kfFqT8rilI6_2M6RvodI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/KX75vv0afiTAzJcpmH_AZda3Ey8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.238.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:01:39:23:b5:d7:40:f5:fe:78:35:0d:37:ad:93:44:6f:24:
cc:c7:04:44:01:37:2c:db:ad:e1:f2:78:a7:ac:73:1b:7e:e9:
44:0b:f4:92:92:cd:8a:5d:72:7e:c0:67:67:bc:e6:a5:2a:37:
57:07:1f:23:28:14:c4:68:05:d6:e7:f2:ad:04:0d:49:27:b4:
2f:94:c7:58:5a:8f:30:b5:5e:3b:af:bf:2b:7c:e6:7b:42:48:
b1:32:17:ef:e0:d1:a9:34:6a:bf:5d:eb:e9:2f:50:35:3e:b1:
3d:7c:4b:a3:26:53:67:70:d4:fa:76:5e:90:d0:7b:1d:34:31:
3a:a4:bf:3a:4a:47:31:96:68:66:1c:4d:63:5f:e9:df:b8:5e:
11:7c:63:ac:48:15:98:39:5c:d1:31:4d:c4:9c:d7:e8:46:08:
e3:d5:20:7b:99:3b:20:a8:e4:ca:ef:30:50:a2:cb:0f:a4:9b:
8d:73:33:21:18:62:53:f1:07:b8:a9:74:de:10:85:f6:6c:e3:
5e:e7:94:01:75:18:45:8e:19:6b:08:b0:ed:cc:7f:d1:aa:84:
8b:86:82:5e:74:75:fb:8b:01:4c:13:30:d7:c4:ac:95:49:04:
1d:4d:4b:74:1a:51:59:f5:8c:b3:6b:db:ff:fa:c0:b3:94:16:
5a:c1:30:51
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZItzC3eAdMfhSX3aIDDjrLeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5N2VmOWJlZmQxYTdlMjRjMGNjOTcyOTk4N2ZjMDY1ZDZi
NzEzMmYwHhcNMjQwOTI2MTAwNjQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMjIwMzQxOGZkZTQ3YzVhOTNmMmI4YTUyM2FmZjYzM2E0NmZhMWQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAigNc9ligP7BkBUbzj2fpuoO9OHM7
+B4OwPkhG3Z12Qa+JRp8sRh+OF3O0+wp12P7JgOFt0K5V513wuaSPHYrIbvJbyH4
UF3Elbz7f7n6HsN9W+DAZP1IdGeY6PAVeocfR1Rtuy78iBPbVBSnvbWWZO9+/caB
WvCuTEEfNv5vzzNdwos0pQQ8e/Ej6WJOUy98UTzcyuCVNZDLrJNKp5CKaF1ByM+z
au6weQE/BMthy0KQKDcq69jqkbSNBz2SxBR8fIah0a/guYIFAyRIpTPU/aXQ7EW9
+NDUL5mTbo0BEXkRODHeFZ9DeP0CMtdh0hX970xWDXoinJ8++PlUzAb+AQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNIgNBj95Hxak/K4pSOv9jOkb6HSMB8GA1UdIwQY
MBaAFCl++b79Gn4kwMyXKZh/wGXWtxMvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1g3NXZ2MGFmaVRBekpjcG1IX0FaZGEzRXk4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS9iZTQ5MDktNzQ1Zi00ZDBjLWJmYWIt
ZGVlNzY4NjAwMTNkLzEvMGlBMEdQM2tmRnFUOHJpbEk2XzJNNlJ2b2RJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS9iZTQ5MDktNzQ1Zi00ZDBjLWJmYWItZGVlNzY4NjAwMTNk
LzEvS1g3NXZ2MGFmaVRBekpjcG1IX0FaZGEzRXk4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuRfuMA0G
CSqGSIb3DQEBCwUAA4IBAQB+ATkjtddA9f54NQ03rZNEbyTMxwREATcs263h8nin
rHMbfulEC/SSks2KXXJ+wGdnvOalKjdXBx8jKBTEaAXW5/KtBA1JJ7QvlMdYWo8w
tV47r78rfOZ7QkixMhfv4NGpNGq/XevpL1A1PrE9fEujJlNncNT6dl6Q0HsdNDE6
pL86SkcxlmhmHE1jX+nfuF4RfGOsSBWYOVzRMU3EnNfoRgjj1SB7mTsgqOTK7zBQ
ossPpJuNczMhGGJT8Qe4qXTeEIX2bONe55QBdRhFjhlrCLDtzH/RqoSLhoJedHX7
iwFMEzDXxKyVSQQdTUt0GlFZ9Yyza9v/+sCzlBZawTBR
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:11 2024 by rpki-client on console.sobornost.net