Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/Ce_RoFPoElKIYM38KLh_w28lWmk.roa
File: Ce_RoFPoElKIYM38KLh_w28lWmk.roa (raw, json)
Hash identifier: U3C1t+P+5o5vKNMhc7i9nwTOidW16U8UtpQr3WWCeBc=
Subject key identifier: 09:EF:D1:A0:53:E8:12:52:88:60:CD:FC:28:B8:7F:C3:6F:25:5A:69
Certificate issuer: /CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Certificate serial: 019368D54E71FA31BBC5F150AC4484B7097E
Authority key identifier: EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/Ce_RoFPoElKIYM38KLh_w28lWmk.roa
Signing time: Tue 26 Nov 2024 14:17:09 +0000
ROA not before: Tue 26 Nov 2024 14:17:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3316
IP address blocks: 86.62.49.0/24 maxlen: 24
193.232.85.0/24 maxlen: 24
193.232.131.0/24 maxlen: 24
194.85.105.0/24 maxlen: 24
194.85.106.0/24 maxlen: 24
194.85.117.0/24 maxlen: 24
194.85.118.0/24 maxlen: 24
194.85.119.0/24 maxlen: 24
194.190.132.0/22 maxlen: 22
194.190.132.0/24 maxlen: 24
194.190.134.0/24 maxlen: 24
194.190.138.0/24 maxlen: 24
194.190.141.0/24 maxlen: 24
194.190.142.0/24 maxlen: 24
194.190.145.0/24 maxlen: 24
194.190.148.0/24 maxlen: 24
194.226.29.0/24 maxlen: 24
194.226.44.0/24 maxlen: 24
194.226.46.0/23 maxlen: 23
195.19.26.0/24 maxlen: 24
195.208.22.0/23 maxlen: 23
195.209.4.0/24 maxlen: 24
195.209.8.0/24 maxlen: 24
195.209.16.0/24 maxlen: 24
195.209.146.0/24 maxlen: 24
212.193.118.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:d5:4e:71:fa:31:bb:c5:f1:50:ac:44:84:b7:09:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Validity
Not Before: Nov 26 14:17:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=09efd1a053e812528860cdfc28b87fc36f255a69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:cc:5f:3a:f1:45:e1:2b:3c:97:f0:ec:eb:ac:
5d:32:39:77:65:04:b3:6c:1b:50:8e:bb:32:66:99:
cd:91:b5:87:bf:9c:87:c1:31:f4:80:88:e9:77:0d:
f2:d1:79:34:0a:f3:7d:10:ce:91:45:c3:4b:38:b7:
e2:f0:d6:47:f9:ab:ad:fe:18:c4:a2:11:11:bb:e2:
af:eb:41:83:5a:cb:a8:29:f8:6a:ed:49:fb:88:bb:
1b:83:a8:17:6e:cd:10:b5:5e:e6:53:b8:22:1b:12:
d8:d3:a1:2d:a0:49:dc:8e:a0:87:a1:bd:6b:61:8d:
90:0f:e7:c9:9d:e8:c1:28:d1:69:9b:75:65:71:98:
db:da:53:16:d8:25:06:f9:db:33:45:ad:8d:2f:87:
ed:87:3f:ce:20:7d:43:5e:0f:b8:8c:95:9f:f2:e0:
68:29:11:8d:00:97:ff:94:02:5d:31:c3:69:eb:ed:
90:96:29:fe:fa:bf:44:14:c8:a8:2e:79:16:15:80:
1b:67:3b:fa:c0:74:3d:c3:a5:03:fd:2a:82:41:ee:
a7:03:32:70:ca:db:45:57:49:47:5f:29:e3:4b:62:
ce:f1:19:c6:3e:12:e8:87:5d:60:36:36:47:f5:f3:
47:cb:7a:dc:56:cc:09:03:f8:08:f3:7a:61:00:c8:
78:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:EF:D1:A0:53:E8:12:52:88:60:CD:FC:28:B8:7F:C3:6F:25:5A:69
X509v3 Authority Key Identifier:
keyid:EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/Ce_RoFPoElKIYM38KLh_w28lWmk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.62.49.0/24
193.232.85.0/24
193.232.131.0/24
194.85.105.0-194.85.106.255
194.85.117.0-194.85.119.255
194.190.132.0/22
194.190.138.0/24
194.190.141.0-194.190.142.255
194.190.145.0/24
194.190.148.0/24
194.226.29.0/24
194.226.44.0/24
194.226.46.0/23
195.19.26.0/24
195.208.22.0/23
195.209.4.0/24
195.209.8.0/24
195.209.16.0/24
195.209.146.0/24
212.193.118.0/24
Signature Algorithm: sha256WithRSAEncryption
54:61:87:65:7f:6e:e1:30:aa:4f:0b:aa:0f:5e:3a:7b:2b:57:
f6:ea:2b:3c:b7:1b:14:2a:a3:71:57:65:b4:55:c5:79:85:34:
e1:24:71:72:15:0f:8a:e8:69:4b:30:d4:d3:2e:bc:16:6a:88:
a3:22:4d:87:64:d1:b1:17:1e:a3:e3:4d:e8:57:58:27:2f:7d:
f7:9e:f4:25:77:8f:3f:35:4f:64:9f:5c:a4:70:57:61:51:88:
2a:3b:26:6c:b8:9c:04:17:cc:04:cf:1d:52:de:5e:f3:82:99:
ce:7e:6f:73:b2:ad:fa:0a:7e:fb:38:9c:0b:6c:61:99:2c:49:
80:d2:93:ea:10:df:77:c0:c2:2f:71:9d:d6:71:ce:52:02:6a:
a5:cd:4f:23:ba:2d:c9:38:75:ef:c8:ff:39:f2:e8:8e:d0:b6:
8a:de:1a:4d:67:9d:cb:cc:c4:e1:51:1b:55:59:e2:6d:24:e2:
38:91:49:fa:32:c5:8d:76:d1:78:02:3f:5a:96:f3:6e:8a:d4:
f5:fe:2d:ff:5b:9b:6e:bd:ea:40:90:ba:f7:1e:98:6d:9d:f0:
2d:71:37:34:eb:44:32:4d:ab:92:6e:8b:b1:4d:47:74:d6:64:
ab:79:fe:e0:48:c1:82:76:89:3b:e6:e0:d6:cf:62:d3:81:ec:
3d:b0:71:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:23 2024 by rpki-client on console.sobornost.net