Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/V8ewH5QBe0IJYwppEkBAisvF9C0.roa
File: V8ewH5QBe0IJYwppEkBAisvF9C0.roa (raw, json)
Hash identifier: 9MPdzUVg4C27o/mkEEzKD5mEZ0z0ZjkIWREEfkd9Ip4=
Subject key identifier: 57:C7:B0:1F:94:01:7B:42:09:63:0A:69:12:40:40:8A:CB:C5:F4:2D
Certificate issuer: /CN=3d8a553e05f0319bf452fa206c14ccda87304654
Certificate serial: 01936384D617A7CABA543780C9E229BDB28C
Authority key identifier: 3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/V8ewH5QBe0IJYwppEkBAisvF9C0.roa
Signing time: Mon 25 Nov 2024 13:31:10 +0000
ROA not before: Mon 25 Nov 2024 13:31:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199998
IP address blocks: 94.158.248.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:63:84:d6:17:a7:ca:ba:54:37:80:c9:e2:29:bd:b2:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8a553e05f0319bf452fa206c14ccda87304654
Validity
Not Before: Nov 25 13:31:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=57c7b01f94017b4209630a691240408acbc5f42d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:9a:75:41:12:5c:f8:43:dd:dc:62:7a:1b:6f:
26:93:10:03:02:ac:6a:93:97:ab:0e:2a:e7:ca:2c:
b9:d6:b2:e9:06:39:e4:05:cf:00:44:09:c9:73:99:
30:d6:49:fc:cf:c7:9a:18:52:d7:1c:5f:3f:0b:85:
2d:2b:f0:99:7b:1c:3a:f5:56:13:56:86:fc:77:72:
bf:37:d7:ea:51:b6:0c:53:cf:4d:95:11:2b:6c:cf:
4c:45:a6:f9:d3:a3:fb:8e:2f:3d:b5:66:ac:fa:d0:
ea:cf:e9:f1:ef:c9:1b:84:46:a4:c9:ab:2e:66:28:
4a:3a:e5:42:b2:34:5a:16:4a:c2:c8:08:85:63:b1:
ec:86:24:bc:b3:51:16:62:33:4a:80:53:23:bf:a4:
f0:19:02:3b:96:9b:d3:74:64:2f:42:2a:93:26:cc:
fc:d6:b3:fd:ab:4b:51:26:21:ef:64:86:be:3f:dd:
e1:a4:31:46:1a:fe:2e:94:17:2f:5a:f0:86:d7:29:
96:55:58:7b:cf:e2:bd:0d:ea:3b:48:52:87:97:23:
3b:93:11:d9:90:b3:b2:c8:80:12:01:14:27:34:d0:
f0:fa:74:6b:70:5f:da:96:65:58:13:14:66:ff:7f:
50:a3:8a:3b:74:df:0d:f9:a5:ce:8e:47:df:b9:75:
b6:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:C7:B0:1F:94:01:7B:42:09:63:0A:69:12:40:40:8A:CB:C5:F4:2D
X509v3 Authority Key Identifier:
keyid:3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/V8ewH5QBe0IJYwppEkBAisvF9C0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.158.248.0/24
Signature Algorithm: sha256WithRSAEncryption
74:cc:59:bc:80:1c:7b:3a:17:7a:31:65:6e:f3:09:36:b6:83:
5f:5c:4f:72:dc:82:b3:53:4c:0c:48:b3:de:a0:f9:70:84:35:
24:2d:2e:db:8b:20:39:d2:d1:50:67:f4:b8:46:a6:4e:4b:24:
be:9d:65:1b:73:e3:71:81:68:de:2f:22:48:cf:88:af:51:99:
1c:a6:db:d9:33:1e:f1:1c:ec:49:f2:99:9a:de:7d:c5:c3:42:
ff:ca:a3:88:8d:c8:2c:1d:9b:28:2a:b8:81:55:ca:7e:62:b0:
a6:93:8d:57:00:48:ea:ab:bf:95:b2:e3:1a:c2:84:11:be:82:
bb:58:06:ac:b3:81:b0:86:53:8e:56:a3:17:fc:23:0b:88:35:
d1:b6:1a:70:fd:7f:ce:8b:50:e5:59:a5:49:da:85:61:ff:b1:
44:c8:c9:3a:73:c0:2e:c3:fc:5d:36:3e:5d:2d:c8:69:a6:f3:
00:c4:8a:f9:58:bd:f0:3a:fd:1b:e3:16:58:8b:6c:e2:1c:6d:
9f:35:cf:c9:d3:76:b9:1f:79:b7:93:d5:9c:43:67:61:98:8a:
e2:0a:7b:5f:a8:64:73:f4:7b:6d:23:60:3f:f2:45:31:28:70:
b7:96:0f:a6:e1:e0:d1:7e:b7:3e:24:64:c1:fd:8d:fd:9a:a3:
86:73:d2:f2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZNjhNYXp8q6VDeAyeIpvbKMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkOGE1NTNlMDVmMDMxOWJmNDUyZmEyMDZjMTRjY2RhODcz
MDQ2NTQwHhcNMjQxMTI1MTMzMTEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1N2M3YjAxZjk0MDE3YjQyMDk2MzBhNjkxMjQwNDA4YWNiYzVmNDJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Jp1QRJc+EPd3GJ6G28mkxADAqxq
k5erDirnyiy51rLpBjnkBc8ARAnJc5kw1kn8z8eaGFLXHF8/C4UtK/CZexw69VYT
Vob8d3K/N9fqUbYMU89NlRErbM9MRab506P7ji89tWas+tDqz+nx78kbhEakyasu
ZihKOuVCsjRaFkrCyAiFY7HshiS8s1EWYjNKgFMjv6TwGQI7lpvTdGQvQiqTJsz8
1rP9q0tRJiHvZIa+P93hpDFGGv4ulBcvWvCG1ymWVVh7z+K9Deo7SFKHlyM7kxHZ
kLOyyIASARQnNNDw+nRrcF/almVYExRm/39Qo4o7dN8N+aXOjkffuXW24QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFfHsB+UAXtCCWMKaRJAQIrLxfQtMB8GA1UdIwQY
MBaAFD2KVT4F8DGb9FL6IGwUzNqHMEZUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUFlwVlBnWHdNWnYwVXZvZ2JCVE0yb2N3UmxRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy81MmNlNTQtZTQ5Yy00MTFjLTg1Mjct
MGZiNDgyM2Y1Yjg3LzEvVjhld0g1UUJlMElKWXdwcEVrQkFpc3ZGOUMwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy81MmNlNTQtZTQ5Yy00MTFjLTg1MjctMGZiNDgyM2Y1Yjg3
LzEvUFlwVlBnWHdNWnYwVXZvZ2JCVE0yb2N3UmxRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXp74MA0G
CSqGSIb3DQEBCwUAA4IBAQB0zFm8gBx7Ohd6MWVu8wk2toNfXE9y3IKzU0wMSLPe
oPlwhDUkLS7biyA50tFQZ/S4RqZOSyS+nWUbc+NxgWjeLyJIz4ivUZkcptvZMx7x
HOxJ8pma3n3Fw0L/yqOIjcgsHZsoKriBVcp+YrCmk41XAEjqq7+VsuMawoQRvoK7
WAass4GwhlOOVqMX/CMLiDXRthpw/X/Oi1DlWaVJ2oVh/7FEyMk6c8Auw/xdNj5d
LchppvMAxIr5WL3wOv0b4xZYi2ziHG2fNc/J03a5H3m3k9WcQ2dhmIriCntfqGRz
9HttI2A/8kUxKHC3lg+m4eDRfrc+JGTB/Y39mqOGc9Ly
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:17 2024 by rpki-client on console.sobornost.net