Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/V1jcK6i4AOBXO6aT-NsKAexyKXk.roa
File: V1jcK6i4AOBXO6aT-NsKAexyKXk.roa (raw, json)
Hash identifier: PV6IqRh0/TKDfMiKducY+3ii/cAKa9HWv15aHc14zNU=
Subject key identifier: 57:58:DC:2B:A8:B8:00:E0:57:3B:A6:93:F8:DB:0A:01:EC:72:29:79
Certificate issuer: /CN=4ee843a85dd664e9dc0310892bd7dd9ce52591c7
Certificate serial: 0191097EB6773D965A788B8FBEB2B4F9B1FC
Authority key identifier: 4E:E8:43:A8:5D:D6:64:E9:DC:03:10:89:2B:D7:DD:9C:E5:25:91:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TuhDqF3WZOncAxCJK9fdnOUlkcc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/V1jcK6i4AOBXO6aT-NsKAexyKXk.roa
Signing time: Wed 31 Jul 2024 15:53:04 +0000
ROA not before: Wed 31 Jul 2024 15:53:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25160
IP address blocks: 5.10.144.0/20 maxlen: 24
82.163.192.0/19 maxlen: 24
91.238.221.0/24 maxlen: 24
144.98.0.0/16 maxlen: 24
158.41.64.0/18 maxlen: 24
165.65.0.0/16 maxlen: 24
185.28.240.0/22 maxlen: 24
185.120.204.0/22 maxlen: 24
185.237.48.0/22 maxlen: 24
193.0.176.0/23 maxlen: 24
193.221.128.0/19 maxlen: 24
194.8.254.0/23 maxlen: 24
206.245.208.0/20 maxlen: 24
206.245.240.0/20 maxlen: 24
2a00:e340::/29 maxlen: 48
2a00:e340::/32 maxlen: 48
2a00:e340:3::/48 maxlen: 48
2a00:e341::/32 maxlen: 48
2a00:e342::/32 maxlen: 48
2a00:e343::/32 maxlen: 48
2a00:e344::/32 maxlen: 48
2a00:e344:3f00::/48 maxlen: 48
2a00:e345::/32 maxlen: 48
2a00:e346::/32 maxlen: 48
2a00:e347::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:09:7e:b6:77:3d:96:5a:78:8b:8f:be:b2:b4:f9:b1:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ee843a85dd664e9dc0310892bd7dd9ce52591c7
Validity
Not Before: Jul 31 15:53:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5758dc2ba8b800e0573ba693f8db0a01ec722979
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:0e:a6:9e:b7:49:01:ed:5f:78:96:31:1f:ca:
49:31:36:b9:68:34:80:3c:e5:86:14:40:e8:1f:0e:
74:42:e7:4f:e8:79:f3:98:8e:b3:a5:26:e6:24:e6:
02:eb:d9:21:b4:60:d9:0d:77:e0:00:9d:fc:3d:bd:
ca:89:27:7f:f9:a2:12:78:c0:ca:e4:a6:eb:5a:27:
1e:42:23:1b:50:3c:22:02:b2:32:3a:18:66:ac:a9:
2c:a8:43:16:51:02:24:d6:29:e7:5f:36:32:3a:3e:
fb:a8:32:1e:44:aa:14:26:15:f2:ec:13:74:54:34:
bd:38:1e:7b:1f:98:0a:15:cf:8e:49:f1:44:4a:6e:
8c:b2:83:7c:c2:b6:7c:6a:57:0c:98:db:23:05:e7:
39:7f:58:a9:99:da:16:a0:97:20:1e:8a:57:c4:19:
81:3d:08:fc:f1:9e:8b:72:f3:8e:d7:e9:c6:cc:46:
23:d7:8c:8c:32:be:fb:e4:35:03:a8:57:cb:56:3a:
5a:d3:71:ab:44:64:4d:16:17:d4:48:77:83:7e:d8:
32:9f:46:b7:13:d7:f6:45:0d:53:44:aa:f6:d3:f4:
b0:49:99:0b:11:23:e8:e8:95:c5:70:61:33:75:7b:
c0:b3:6b:e0:a9:92:59:c7:a0:64:b5:85:a8:3a:9b:
7c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:58:DC:2B:A8:B8:00:E0:57:3B:A6:93:F8:DB:0A:01:EC:72:29:79
X509v3 Authority Key Identifier:
keyid:4E:E8:43:A8:5D:D6:64:E9:DC:03:10:89:2B:D7:DD:9C:E5:25:91:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TuhDqF3WZOncAxCJK9fdnOUlkcc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/V1jcK6i4AOBXO6aT-NsKAexyKXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.10.144.0/20
82.163.192.0/19
91.238.221.0/24
144.98.0.0/16
158.41.64.0/18
165.65.0.0/16
185.28.240.0/22
185.120.204.0/22
185.237.48.0/22
193.0.176.0/23
193.221.128.0/19
194.8.254.0/23
206.245.208.0/20
206.245.240.0/20
IPv6:
2a00:e340::/29
Signature Algorithm: sha256WithRSAEncryption
a3:4c:b9:ff:1e:6e:40:03:d7:a4:17:b9:43:6e:48:99:aa:8c:
1b:9d:e8:cf:3d:18:0e:ad:91:36:e1:5e:91:24:a4:91:4c:f5:
41:06:70:94:cf:ea:5a:6c:fc:32:65:34:9d:ca:35:fd:a0:a5:
9f:c0:7f:67:23:4c:3d:5f:ce:0d:88:66:82:7e:e7:c9:b4:9a:
99:6e:be:77:0a:f3:d9:07:32:61:76:1e:c0:af:85:fd:fc:14:
6c:de:09:99:58:49:b0:73:5a:29:e8:00:50:30:a7:77:16:cd:
00:88:c9:6c:36:68:6b:a3:42:b6:6c:59:f6:34:02:0a:86:57:
30:25:56:70:d9:81:81:71:73:33:81:54:a5:93:8c:0b:b7:d8:
b4:99:32:ce:86:9d:ca:49:11:71:c7:c7:2a:5e:c4:4d:68:14:
76:a4:6f:a5:b3:f0:cc:8b:a2:75:b6:81:03:b5:58:a0:40:f4:
76:7f:2e:5d:0e:05:7a:6f:ad:3e:89:4a:3f:e4:df:ab:7b:57:
3a:34:81:2e:d5:73:db:b7:be:1b:56:05:98:e6:60:23:e2:24:
2d:88:8b:49:e2:de:70:71:85:2f:9d:7d:50:d9:1f:3f:a9:92:
d5:cd:c1:bc:62:e9:c5:8a:06:d9:2d:80:34:84:f1:2f:57:90:
d5:21:16:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 15 03:09:20 2024 by rpki-client on console.sobornost.net