Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/5b48a7-a0d7-43f2-a362-8b2b4738b1cc/1/ydoegD-_vJ7UjPs94SBpF_5h1v4.roa
File: ydoegD-_vJ7UjPs94SBpF_5h1v4.roa (raw, json)
Hash identifier: XR9FiB6zn1q4gRyf7wkiOrNDpi5bI8I4eMjMvM9YDP4=
Subject key identifier: C9:DA:1E:80:3F:BF:BC:9E:D4:8C:FB:3D:E1:20:69:17:FE:61:D6:FE
Certificate issuer: /CN=4b9331fa7be470dc179e16c306e98c6c731a575c
Certificate serial: 0193DDCC7372D92B88791FE1BD473794FC1E
Authority key identifier: 4B:93:31:FA:7B:E4:70:DC:17:9E:16:C3:06:E9:8C:6C:73:1A:57:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S5Mx-nvkcNwXnhbDBumMbHMaV1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/5b48a7-a0d7-43f2-a362-8b2b4738b1cc/1/ydoegD-_vJ7UjPs94SBpF_5h1v4.roa
Signing time: Thu 19 Dec 2024 07:23:03 +0000
ROA not before: Thu 19 Dec 2024 07:23:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 54994
IP address blocks: 140.150.0.0/24 maxlen: 24
140.150.1.0/24 maxlen: 24
140.150.2.0/24 maxlen: 24
140.150.3.0/24 maxlen: 24
140.150.4.0/24 maxlen: 24
140.150.5.0/24 maxlen: 24
140.150.6.0/24 maxlen: 24
140.150.7.0/24 maxlen: 24
140.150.10.0/24 maxlen: 24
140.150.12.0/24 maxlen: 24
140.150.14.0/24 maxlen: 24
140.150.18.0/24 maxlen: 24
140.150.19.0/24 maxlen: 24
140.150.21.0/24 maxlen: 24
140.150.22.0/24 maxlen: 24
140.150.23.0/24 maxlen: 24
140.150.24.0/24 maxlen: 24
140.150.25.0/24 maxlen: 24
140.150.28.0/24 maxlen: 24
140.150.29.0/24 maxlen: 24
140.150.30.0/24 maxlen: 24
140.150.31.0/24 maxlen: 24
140.150.32.0/24 maxlen: 24
140.150.33.0/24 maxlen: 24
140.150.34.0/24 maxlen: 24
140.150.35.0/24 maxlen: 24
140.150.36.0/24 maxlen: 24
140.150.37.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:dd:cc:73:72:d9:2b:88:79:1f:e1:bd:47:37:94:fc:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b9331fa7be470dc179e16c306e98c6c731a575c
Validity
Not Before: Dec 19 07:23:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c9da1e803fbfbc9ed48cfb3de1206917fe61d6fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:5b:18:20:47:3f:3d:c1:e3:d0:46:e2:fd:8e:
f6:70:78:af:4d:b9:be:1f:3b:e6:74:bf:37:b8:8e:
26:24:7f:02:d2:92:d0:3d:9e:c1:2c:43:d9:c5:12:
a7:99:bf:e8:ed:75:3d:55:f1:1f:c1:cd:92:f4:9e:
73:46:04:fb:fc:c1:fd:a0:1e:e9:ed:83:33:3b:92:
1c:fe:3f:86:0e:51:f6:7d:83:89:41:a7:ee:fd:2a:
0f:88:5c:4a:50:b6:1a:5e:43:92:f0:10:19:55:41:
3e:19:25:b4:3f:73:e3:ca:df:b6:57:0a:1d:95:dd:
b3:a0:42:5f:76:a9:08:6d:9d:c6:27:76:87:d1:f1:
de:fc:67:ce:77:86:23:10:92:b1:50:4f:92:7c:6d:
1c:bc:df:57:36:8c:48:cc:bb:8b:6e:ad:d9:93:9a:
61:7d:6f:f1:83:48:e4:92:f6:39:72:56:7e:49:b4:
bc:42:21:5e:19:c6:32:10:5b:5c:29:9e:67:3a:f8:
7b:72:57:ce:b7:24:d1:b5:5c:10:8f:6f:21:e3:7c:
27:29:c2:3c:81:ed:df:97:aa:1f:c3:39:fe:4f:a0:
7e:8d:77:0a:92:90:20:b4:c8:10:0e:b9:62:2b:3c:
15:b2:f7:7f:ce:8e:5e:48:37:22:fe:39:d3:59:c6:
f0:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:DA:1E:80:3F:BF:BC:9E:D4:8C:FB:3D:E1:20:69:17:FE:61:D6:FE
X509v3 Authority Key Identifier:
keyid:4B:93:31:FA:7B:E4:70:DC:17:9E:16:C3:06:E9:8C:6C:73:1A:57:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S5Mx-nvkcNwXnhbDBumMbHMaV1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/5b48a7-a0d7-43f2-a362-8b2b4738b1cc/1/ydoegD-_vJ7UjPs94SBpF_5h1v4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/5b48a7-a0d7-43f2-a362-8b2b4738b1cc/1/S5Mx-nvkcNwXnhbDBumMbHMaV1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.150.0.0/21
140.150.10.0/24
140.150.12.0/24
140.150.14.0/24
140.150.18.0/23
140.150.21.0-140.150.25.255
140.150.28.0-140.150.37.255
Signature Algorithm: sha256WithRSAEncryption
9a:ee:5c:df:39:05:82:ad:9c:71:b8:0b:43:dd:d5:2a:41:c0:
6b:13:c7:78:de:92:37:52:f7:0c:f5:f4:ba:69:81:8d:d0:0d:
ca:f4:40:9f:d6:6b:f6:18:7c:53:ee:1c:48:43:74:a9:31:6f:
5b:52:2c:dc:35:d1:9f:d4:3d:3b:d1:f4:68:bb:97:62:63:05:
be:04:59:71:03:82:4f:f3:c1:23:78:52:0e:33:08:fb:29:2d:
cb:27:c4:db:9a:76:cc:9f:a7:37:3b:9b:f5:e3:0b:56:fb:7d:
16:6c:3a:bb:79:7b:7a:36:10:93:f4:ab:ef:d5:bd:74:ab:35:
23:dd:fc:97:1d:ad:dc:e5:18:b6:25:1b:52:a4:85:3b:69:11:
0a:86:3a:92:70:c4:79:60:98:e9:ce:df:6c:43:e2:af:96:ef:
b6:6d:97:8c:6d:fc:d0:d9:e9:17:98:40:5d:be:28:80:ce:dd:
1b:37:be:79:cf:1d:76:e4:35:64:e8:34:3d:3d:07:83:06:da:
94:0e:ab:fa:37:39:6a:f1:de:63:a2:97:6b:b7:a2:a0:6c:22:
c6:d1:87:f3:5f:77:2b:f9:4d:79:d0:88:28:c2:61:b9:c8:1e:
d1:2f:e5:4e:da:c4:d4:60:50:cf:2c:6e:db:26:a4:7c:5b:2a:
1c:29:64:2a
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgISAZPdzHNy2SuIeR/hvUc3lPweMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiOTMzMWZhN2JlNDcwZGMxNzllMTZjMzA2ZTk4YzZjNzMx
YTU3NWMwHhcNMjQxMjE5MDcyMzAzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjOWRhMWU4MDNmYmZiYzllZDQ4Y2ZiM2RlMTIwNjkxN2ZlNjFkNmZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA11sYIEc/PcHj0Ebi/Y72cHivTbm+
HzvmdL83uI4mJH8C0pLQPZ7BLEPZxRKnmb/o7XU9VfEfwc2S9J5zRgT7/MH9oB7p
7YMzO5Ic/j+GDlH2fYOJQafu/SoPiFxKULYaXkOS8BAZVUE+GSW0P3Pjyt+2Vwod
ld2zoEJfdqkIbZ3GJ3aH0fHe/GfOd4YjEJKxUE+SfG0cvN9XNoxIzLuLbq3Zk5ph
fW/xg0jkkvY5clZ+SbS8QiFeGcYyEFtcKZ5nOvh7clfOtyTRtVwQj28h43wnKcI8
ge3fl6ofwzn+T6B+jXcKkpAgtMgQDrliKzwVsvd/zo5eSDci/jnTWcbw3QIDAQAB
o4ICPTCCAjkwHQYDVR0OBBYEFMnaHoA/v7ye1Iz7PeEgaRf+Ydb+MB8GA1UdIwQY
MBaAFEuTMfp75HDcF54WwwbpjGxzGldcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUzVNeC1udmtjTndYbmhiREJ1bU1iSE1hVjF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC81YjQ4YTctYTBkNy00M2YyLWEzNjIt
OGIyYjQ3MzhiMWNjLzEveWRvZWdELV92SjdValBzOTRTQnBGXzVoMXY0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NC81YjQ4YTctYTBkNy00M2YyLWEzNjItOGIyYjQ3MzhiMWNj
LzEvUzVNeC1udmtjTndYbmhiREJ1bU1iSE1hVjF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFMGCCsGAQUFBwEHAQH/BEQwQjBABAIAATA6AwQDjJYAAwQA
jJYKAwQAjJYMAwQAjJYOAwQBjJYSMAwDBACMlhUDBAGMlhgwDAMEAoyWHAMEAYyW
JDANBgkqhkiG9w0BAQsFAAOCAQEAmu5c3zkFgq2ccbgLQ93VKkHAaxPHeN6SN1L3
DPX0ummBjdANyvRAn9Zr9hh8U+4cSEN0qTFvW1Is3DXRn9Q9O9H0aLuXYmMFvgRZ
cQOCT/PBI3hSDjMI+yktyyfE25p2zJ+nNzub9eMLVvt9Fmw6u3l7ejYQk/Sr79W9
dKs1I938lx2t3OUYtiUbUqSFO2kRCoY6knDEeWCY6c7fbEPir5bvtm2XjG380Nnp
F5hAXb4ogM7dGze+ec8dduQ1ZOg0PT0HgwbalA6r+jc5avHeY6KXa7eioGwixtGH
8193K/lNedCIKMJhucge0S/lTtrE1GBQzyxu2yakfFsqHClkKg==
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:17 2024 by rpki-client on console.sobornost.net