Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/fd908a-c04b-4147-9ff6-3955d136206e/1/_XjqxmYy4wVYC3iHfyDWXfLzTCU.roa
File: _XjqxmYy4wVYC3iHfyDWXfLzTCU.roa (raw, json)
Hash identifier: gZXRRr+b5XtBmGz4gCoTDXMQIUX+8QxWGBXBOmo31N8=
Subject key identifier: FD:78:EA:C6:66:32:E3:05:58:0B:78:87:7F:20:D6:5D:F2:F3:4C:25
Certificate issuer: /CN=15e041354318adb7fa24a2d87ce7c9b88f10e61c
Certificate serial: 0C1D9191
Authority key identifier: 15:E0:41:35:43:18:AD:B7:FA:24:A2:D8:7C:E7:C9:B8:8F:10:E6:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FeBBNUMYrbf6JKLYfOfJuI8Q5hw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/fd908a-c04b-4147-9ff6-3955d136206e/1/_XjqxmYy4wVYC3iHfyDWXfLzTCU.roa
Signing time: Thu 28 Apr 2022 13:32:16 +0000
ROA not before: Thu 28 Apr 2022 13:32:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9127
IP address blocks: 82.146.4.0/23 maxlen: 23
84.238.164.0/24 maxlen: 24
84.238.166.0/24 maxlen: 24
212.72.192.0/22 maxlen: 22
212.72.192.0/24 maxlen: 24
212.72.196.0/23 maxlen: 23
82.146.10.0/24 maxlen: 24
82.146.8.0/23 maxlen: 23
212.72.200.0/23 maxlen: 23
82.146.14.0/24 maxlen: 24
212.72.204.0/24 maxlen: 24
212.72.213.0/24 maxlen: 24
212.72.208.0/22 maxlen: 22
212.72.207.0/24 maxlen: 24
213.130.94.0/24 maxlen: 24
212.72.215.0/24 maxlen: 24
82.146.30.0/24 maxlen: 24
212.72.216.0/22 maxlen: 22
212.72.220.0/24 maxlen: 24
212.72.222.0/23 maxlen: 24
213.130.70.0/23 maxlen: 23
213.130.72.0/23 maxlen: 23
213.130.75.0/24 maxlen: 24
2a00:e40::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 203264401 (0xc1d9191)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15e041354318adb7fa24a2d87ce7c9b88f10e61c
Validity
Not Before: Apr 28 13:32:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd78eac66632e305580b78877f20d65df2f34c25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:54:13:13:31:a1:b2:e5:4c:ef:e2:52:32:44:
5b:ea:41:18:74:c0:c8:e5:2a:45:73:44:25:05:ae:
f4:73:3a:aa:96:e8:ca:33:e6:75:b0:74:2b:3d:2f:
2a:70:04:da:ec:f8:ae:29:83:99:77:69:37:e4:5d:
61:6d:05:ee:2f:07:4c:79:31:bb:20:7b:5a:e9:0f:
4a:48:d0:bc:54:ec:db:17:0b:18:18:9e:1f:29:5c:
5d:b0:24:43:71:39:8b:fd:37:63:4d:81:09:aa:a2:
9b:4d:12:f2:7e:2e:08:8a:bf:40:c4:d1:d2:5f:f4:
48:c4:1f:2a:40:6e:f8:9b:0a:15:db:20:c0:d2:e5:
a1:90:3e:a9:da:01:02:88:60:27:a1:ae:51:7b:67:
14:6e:ff:d5:77:c6:ef:31:4b:bd:10:06:ef:37:e5:
0d:b0:5a:2f:22:03:4a:37:6b:50:05:08:11:4e:8e:
cc:10:b5:c7:be:43:51:94:d4:8c:9d:86:49:cf:a3:
d7:c0:27:6d:60:fa:47:03:fd:e4:96:1f:9c:5c:81:
a8:11:59:bc:1c:bb:da:43:7b:db:79:ae:8e:5e:3f:
1d:05:33:20:88:a0:a4:4b:bd:3f:35:cb:45:3c:9a:
75:67:9a:48:af:7e:5c:27:c8:d1:92:97:0e:ae:c0:
2c:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:78:EA:C6:66:32:E3:05:58:0B:78:87:7F:20:D6:5D:F2:F3:4C:25
X509v3 Authority Key Identifier:
keyid:15:E0:41:35:43:18:AD:B7:FA:24:A2:D8:7C:E7:C9:B8:8F:10:E6:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FeBBNUMYrbf6JKLYfOfJuI8Q5hw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/fd908a-c04b-4147-9ff6-3955d136206e/1/_XjqxmYy4wVYC3iHfyDWXfLzTCU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/fd908a-c04b-4147-9ff6-3955d136206e/1/FeBBNUMYrbf6JKLYfOfJuI8Q5hw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.146.4.0/23
82.146.8.0-82.146.10.255
82.146.14.0/24
82.146.30.0/24
84.238.164.0/24
84.238.166.0/24
212.72.192.0-212.72.197.255
212.72.200.0/23
212.72.204.0/24
212.72.207.0-212.72.211.255
212.72.213.0/24
212.72.215.0-212.72.220.255
212.72.222.0/23
213.130.70.0-213.130.73.255
213.130.75.0/24
213.130.94.0/24
IPv6:
2a00:e40::/32
Signature Algorithm: sha256WithRSAEncryption
31:e4:ed:6f:22:e1:34:7b:5a:6d:50:5b:50:98:64:d0:46:1a:
34:22:fb:d5:5d:98:14:2f:fa:1f:f3:e1:54:4c:40:8f:9c:88:
61:d0:36:4f:fb:94:83:fd:ca:4a:73:0f:90:5e:9f:f4:65:d1:
f3:c5:be:c0:b1:34:1c:65:50:08:7a:96:a2:d5:53:66:c3:91:
a7:82:e7:7b:25:72:37:e0:6a:05:f3:64:e7:b8:93:44:ea:00:
0b:66:c5:67:cd:11:0a:e7:12:69:01:fa:18:a7:5e:a0:18:e9:
ff:c7:76:ae:87:be:4f:fc:92:10:84:d9:6a:22:08:ac:a9:0a:
e6:0a:be:a4:72:7b:3f:46:01:d6:b1:0a:4e:4e:ae:83:cf:14:
4f:83:34:3a:6f:6d:4d:04:56:1f:f1:d5:aa:36:1f:b7:91:29:
2f:13:be:72:80:22:f9:ec:88:f2:ad:66:8f:54:47:7d:fb:d8:
a1:4c:49:d8:92:9d:b8:fa:40:20:53:0c:d7:a8:de:3d:a3:bf:
f2:6e:42:64:b3:7c:d8:fb:9c:19:e8:d8:af:a3:73:aa:a1:87:
09:af:cb:7a:80:1a:66:11:23:37:9c:13:14:cd:db:c7:89:94:
4d:ca:1f:9f:27:15:96:30:77:9b:cb:de:e2:c0:ac:f6:28:91:
2f:5d:49:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:42 2023 by rpki-client on console.sobornost.net