Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/7Q3zfC3jVeco-QFKz9tFYuuuzNs.roa
File: 7Q3zfC3jVeco-QFKz9tFYuuuzNs.roa (raw, json)
Hash identifier: W9tE+ewk2hSJuU0WMjldzLm+pKqYmLFN40BzIBsjNQA=
Subject key identifier: ED:0D:F3:7C:2D:E3:55:E7:28:F9:01:4A:CF:DB:45:62:EB:AE:CC:DB
Certificate issuer: /CN=168600dfac9d3d1a75e6630d697102f2f2132c48
Certificate serial: 01938C45E40F30EA508D68A269CB887910CC
Authority key identifier: 16:86:00:DF:AC:9D:3D:1A:75:E6:63:0D:69:71:02:F2:F2:13:2C:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FoYA36ydPRp15mMNaXEC8vITLEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/7Q3zfC3jVeco-QFKz9tFYuuuzNs.roa
Signing time: Tue 03 Dec 2024 11:26:50 +0000
ROA not before: Tue 03 Dec 2024 11:26:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203576
IP address blocks: 83.150.212.0/24 maxlen: 24
83.150.213.0/24 maxlen: 24
83.150.214.0/24 maxlen: 24
83.150.215.0/24 maxlen: 24
89.252.188.0/24 maxlen: 32
89.252.189.0/24 maxlen: 32
89.252.190.0/24 maxlen: 32
89.252.191.0/24 maxlen: 32
185.126.216.0/24 maxlen: 32
185.126.217.0/24 maxlen: 32
185.126.218.0/24 maxlen: 32
185.126.219.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:8c:45:e4:0f:30:ea:50:8d:68:a2:69:cb:88:79:10:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=168600dfac9d3d1a75e6630d697102f2f2132c48
Validity
Not Before: Dec 3 11:26:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ed0df37c2de355e728f9014acfdb4562ebaeccdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:70:65:01:6a:21:6d:73:58:7b:fc:b6:f6:61:
e6:93:fd:6c:b4:98:df:7f:70:76:8f:ad:22:d1:b4:
45:18:07:7a:d8:4d:c9:13:71:47:20:65:02:ec:29:
db:48:6b:32:eb:10:98:47:ce:6d:dc:3c:6e:b8:21:
1f:13:10:85:34:6e:7d:9f:44:ec:5b:78:27:1f:97:
b1:65:a2:74:6a:07:b2:1b:d4:18:bd:69:8c:dd:c0:
51:66:82:9b:52:c8:86:e7:47:55:2e:06:57:99:2d:
71:df:db:66:2d:7c:f5:dc:30:aa:5d:26:13:31:a6:
b7:04:4d:81:d0:b8:f2:b2:c1:59:23:7a:9d:f3:16:
50:e3:f5:53:54:42:3e:fe:d6:c6:c3:8b:17:3d:9e:
c9:15:10:10:14:b4:2b:0d:6f:c5:f9:46:a0:16:0f:
d8:3f:2d:e8:4c:97:fb:f9:d6:69:98:b4:94:91:f9:
d6:bd:7e:b0:70:55:9d:2e:6d:05:9b:8f:54:9a:0b:
08:19:86:b7:80:95:db:06:bc:c4:26:19:b2:c7:8d:
ea:da:eb:64:7e:ba:d2:32:cd:06:d8:b6:ba:31:d3:
47:f6:5e:f9:22:b4:21:46:af:ac:8f:78:2d:08:20:
b2:3c:78:9d:e9:7b:84:6e:a9:8c:1b:80:fb:3e:9b:
b5:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:0D:F3:7C:2D:E3:55:E7:28:F9:01:4A:CF:DB:45:62:EB:AE:CC:DB
X509v3 Authority Key Identifier:
keyid:16:86:00:DF:AC:9D:3D:1A:75:E6:63:0D:69:71:02:F2:F2:13:2C:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FoYA36ydPRp15mMNaXEC8vITLEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/7Q3zfC3jVeco-QFKz9tFYuuuzNs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.150.212.0/22
89.252.188.0/22
185.126.216.0/22
Signature Algorithm: sha256WithRSAEncryption
85:62:18:5d:16:79:c3:ed:c4:5f:03:cb:31:7c:74:1f:41:8f:
6a:9f:36:07:8f:bd:dc:5e:43:26:32:1c:32:ff:b3:ba:17:93:
0f:68:1c:f8:e7:88:8b:ab:ae:00:8f:d0:d9:ea:83:da:a4:46:
00:4b:f8:b1:42:d6:09:38:e7:32:a0:a0:5c:b5:4a:54:ce:86:
ff:15:14:5e:89:d2:ee:c7:70:b9:0c:ab:b2:45:15:3d:9a:8a:
bc:b4:fc:0c:64:44:2c:36:b6:ab:41:9c:c7:a9:2e:03:17:8d:
33:6d:96:fd:48:bc:20:2d:c5:6e:17:5e:7e:30:85:53:e3:a1:
4b:c5:a9:10:e4:8a:60:16:6e:21:8e:c1:30:aa:0a:cb:51:35:
6a:12:6a:62:16:ed:d1:7b:4a:8b:9e:9a:6f:43:ed:cb:53:33:
93:1b:2d:1a:52:9b:6c:e1:b5:0e:8a:65:a5:9f:c4:47:d0:c7:
87:ed:7c:46:c0:3b:94:c3:3f:1f:13:4c:b8:9d:59:66:ab:3a:
e2:e4:c4:e1:2a:31:4b:e2:0e:24:02:e5:ca:39:e7:a7:78:24:
93:1a:86:7e:30:b8:9c:7a:00:fd:d3:8c:74:f8:bf:96:61:c2:
b8:37:1d:9a:cc:81:34:ba:00:bb:0a:8a:44:1b:25:53:99:9d:
87:5c:4d:8d
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAZOMReQPMOpQjWiiacuIeRDMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE2ODYwMGRmYWM5ZDNkMWE3NWU2NjMwZDY5NzEwMmYyZjIx
MzJjNDgwHhcNMjQxMjAzMTEyNjUwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZDBkZjM3YzJkZTM1NWU3MjhmOTAxNGFjZmRiNDU2MmViYWVjY2RiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA43BlAWohbXNYe/y29mHmk/1stJjf
f3B2j60i0bRFGAd62E3JE3FHIGUC7CnbSGsy6xCYR85t3DxuuCEfExCFNG59n0Ts
W3gnH5exZaJ0ageyG9QYvWmM3cBRZoKbUsiG50dVLgZXmS1x39tmLXz13DCqXSYT
Maa3BE2B0LjyssFZI3qd8xZQ4/VTVEI+/tbGw4sXPZ7JFRAQFLQrDW/F+UagFg/Y
Py3oTJf7+dZpmLSUkfnWvX6wcFWdLm0Fm49UmgsIGYa3gJXbBrzEJhmyx43q2utk
frrSMs0G2La6MdNH9l75IrQhRq+sj3gtCCCyPHid6XuEbqmMG4D7Ppu1QQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFO0N83wt41XnKPkBSs/bRWLrrszbMB8GA1UdIwQY
MBaAFBaGAN+snT0adeZjDWlxAvLyEyxIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRm9ZQTM2eWRQUnAxNW1NTmFYRUM4dklUTEVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni9hZjM1YzMtN2Y4MS00ODI5LThkYmEt
MThkYmU2NTA0YmI0LzEvN1EzemZDM2pWZWNvLVFGS3o5dEZZdXV1ek5zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni9hZjM1YzMtN2Y4MS00ODI5LThkYmEtMThkYmU2NTA0YmI0
LzEvRm9ZQTM2eWRQUnAxNW1NTmFYRUM4dklUTEVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCU5bUAwQC
Wfy8AwQCuX7YMA0GCSqGSIb3DQEBCwUAA4IBAQCFYhhdFnnD7cRfA8sxfHQfQY9q
nzYHj73cXkMmMhwy/7O6F5MPaBz454iLq64Aj9DZ6oPapEYAS/ixQtYJOOcyoKBc
tUpUzob/FRReidLux3C5DKuyRRU9moq8tPwMZEQsNrarQZzHqS4DF40zbZb9SLwg
LcVuF15+MIVT46FLxakQ5IpgFm4hjsEwqgrLUTVqEmpiFu3Re0qLnppvQ+3LUzOT
Gy0aUpts4bUOimWln8RH0MeH7XxGwDuUwz8fE0y4nVlmqzri5MThKjFL4g4kAuXK
OeeneCSTGoZ+MLicegD904x0+L+WYcK4Nx2azIE0ugC7CopEGyVTmZ2HXE2N
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:18 2024 by rpki-client on console.sobornost.net