Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/b172b7-6ae5-46e1-b0c0-0065e4a890b4/1/R5nlKv9Eoqx8ny6bikcL8ILjN-0.roa
File: R5nlKv9Eoqx8ny6bikcL8ILjN-0.roa (raw, json)
Hash identifier: liKQqVCCYl8j1ASH7mTLxqrZjkLasU89CiPw3ZGA3w8=
Subject key identifier: 47:99:E5:2A:FF:44:A2:AC:7C:9F:2E:9B:8A:47:0B:F0:82:E3:37:ED
Certificate issuer: /CN=adca6e54acd026cefa362b4227b89081c0a50049
Certificate serial: 01935E1C8DE363E505E28E79CCEF9053762A
Authority key identifier: AD:CA:6E:54:AC:D0:26:CE:FA:36:2B:42:27:B8:90:81:C0:A5:00:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rcpuVKzQJs76NitCJ7iQgcClAEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/b172b7-6ae5-46e1-b0c0-0065e4a890b4/1/R5nlKv9Eoqx8ny6bikcL8ILjN-0.roa
Signing time: Sun 24 Nov 2024 12:19:09 +0000
ROA not before: Sun 24 Nov 2024 12:19:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214270
IP address blocks: 89.33.128.0/24 maxlen: 24
2a01:fb80::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:5e:1c:8d:e3:63:e5:05:e2:8e:79:cc:ef:90:53:76:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adca6e54acd026cefa362b4227b89081c0a50049
Validity
Not Before: Nov 24 12:19:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4799e52aff44a2ac7c9f2e9b8a470bf082e337ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:56:92:49:c6:e3:41:71:c1:19:de:86:bc:57:
a6:1c:d0:61:04:43:a5:9b:5d:32:24:36:5b:20:31:
5d:7c:c1:20:07:0b:e1:a0:c9:56:1f:16:70:d8:d2:
80:80:47:7b:c2:e3:ce:ae:01:c1:31:6a:1e:f7:fa:
7e:74:18:e0:e0:d3:67:78:59:c1:1f:0d:dc:8a:98:
cb:5e:2e:02:e3:1f:62:90:e1:73:7b:09:1d:67:d6:
ad:8f:bf:15:a0:fd:b3:2c:d4:c0:a2:0f:b9:98:8d:
52:33:dc:4c:77:93:78:c5:a7:50:9e:72:8e:4d:0c:
36:9f:cd:41:0b:a3:aa:8b:3d:c2:1d:ed:4a:72:80:
a3:12:8f:e7:43:3d:ed:bb:b2:7a:91:73:ee:6e:09:
36:b2:2a:94:51:4e:ef:6c:c0:d0:13:8e:e8:da:50:
78:15:be:6c:c5:10:3a:a8:98:d8:45:f4:0b:9a:85:
ef:37:1b:2d:41:9d:2a:a4:9b:42:de:58:ce:63:e4:
97:9b:65:46:1c:c5:67:b7:82:e9:b4:d3:9f:e8:4c:
ef:78:d7:fb:4e:1d:d0:d5:e4:60:c6:81:79:b6:cc:
e2:5b:84:53:b0:4a:b3:95:75:e6:78:45:f8:87:f9:
0b:d3:95:ff:21:1e:0a:bd:4f:33:ce:c4:da:08:ad:
11:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:99:E5:2A:FF:44:A2:AC:7C:9F:2E:9B:8A:47:0B:F0:82:E3:37:ED
X509v3 Authority Key Identifier:
keyid:AD:CA:6E:54:AC:D0:26:CE:FA:36:2B:42:27:B8:90:81:C0:A5:00:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rcpuVKzQJs76NitCJ7iQgcClAEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/b172b7-6ae5-46e1-b0c0-0065e4a890b4/1/R5nlKv9Eoqx8ny6bikcL8ILjN-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/b172b7-6ae5-46e1-b0c0-0065e4a890b4/1/rcpuVKzQJs76NitCJ7iQgcClAEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.33.128.0/24
IPv6:
2a01:fb80::/29
Signature Algorithm: sha256WithRSAEncryption
35:68:21:8a:39:8a:fd:29:10:1c:b3:8d:65:b3:08:df:32:d1:
4a:ca:e9:24:af:ca:12:f7:7c:dd:02:f7:a6:ff:7a:37:29:12:
47:a1:40:a4:6d:4e:5f:db:2c:c2:73:94:38:e0:54:6e:a8:c3:
f4:ed:77:2e:76:4d:00:5e:6a:1e:8a:a2:7f:96:0f:a8:02:73:
3b:e6:7d:92:79:d0:2c:77:70:81:80:be:0e:10:2d:72:b0:6c:
15:c6:2c:e0:85:31:d2:70:cf:f3:d3:00:4a:ff:a5:ee:2f:a4:
a6:43:91:d1:90:c0:cf:65:32:78:32:a4:ec:22:f8:f7:dc:f3:
1e:5e:fa:87:69:9c:54:9a:dd:7c:1e:2e:b0:23:49:92:5d:ab:
e6:6e:01:79:11:a4:c5:ab:18:10:ac:1e:bc:75:46:22:2b:27:
8c:6f:c7:72:b5:05:1b:3b:57:6c:ba:b2:f8:34:76:4f:35:24:
43:84:72:05:8a:aa:82:0d:d2:0b:cb:ad:33:84:4c:5f:2a:d7:
c8:50:ae:94:96:0d:8d:55:16:6f:f7:c3:2b:f4:7e:b9:b8:1a:
f0:cd:f2:26:61:fb:ee:4a:3c:3a:52:f0:d0:0a:8c:86:8d:d8:
e7:be:89:d4:31:2f:a1:0e:39:f2:8e:6c:3f:49:ff:ee:97:64:
ca:b6:06:fe
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZNeHI3jY+UF4o55zO+QU3YqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkY2E2ZTU0YWNkMDI2Y2VmYTM2MmI0MjI3Yjg5MDgxYzBh
NTAwNDkwHhcNMjQxMTI0MTIxOTA5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0Nzk5ZTUyYWZmNDRhMmFjN2M5ZjJlOWI4YTQ3MGJmMDgyZTMzN2VkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvFaSScbjQXHBGd6GvFemHNBhBEOl
m10yJDZbIDFdfMEgBwvhoMlWHxZw2NKAgEd7wuPOrgHBMWoe9/p+dBjg4NNneFnB
Hw3cipjLXi4C4x9ikOFzewkdZ9atj78VoP2zLNTAog+5mI1SM9xMd5N4xadQnnKO
TQw2n81BC6Oqiz3CHe1KcoCjEo/nQz3tu7J6kXPubgk2siqUUU7vbMDQE47o2lB4
Fb5sxRA6qJjYRfQLmoXvNxstQZ0qpJtC3ljOY+SXm2VGHMVnt4LptNOf6EzveNf7
Th3Q1eRgxoF5tsziW4RTsEqzlXXmeEX4h/kL05X/IR4KvU8zzsTaCK0R7wIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFEeZ5Sr/RKKsfJ8um4pHC/CC4zftMB8GA1UdIwQY
MBaAFK3KblSs0CbO+jYrQie4kIHApQBJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmNwdVZLelFKczc2Tml0Q0o3aVFnY0NsQUVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS9iMTcyYjctNmFlNS00NmUxLWIwYzAt
MDA2NWU0YTg5MGI0LzEvUjVubEt2OUVvcXg4bnk2YmlrY0w4SUxqTi0wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS9iMTcyYjctNmFlNS00NmUxLWIwYzAtMDA2NWU0YTg5MGI0
LzEvcmNwdVZLelFKczc2Tml0Q0o3aVFnY0NsQUVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAWSGAMA0E
AgACMAcDBQMqAfuAMA0GCSqGSIb3DQEBCwUAA4IBAQA1aCGKOYr9KRAcs41lswjf
MtFKyukkr8oS93zdAvem/3o3KRJHoUCkbU5f2yzCc5Q44FRuqMP07Xcudk0AXmoe
iqJ/lg+oAnM75n2SedAsd3CBgL4OEC1ysGwVxizghTHScM/z0wBK/6XuL6SmQ5HR
kMDPZTJ4MqTsIvj33PMeXvqHaZxUmt18Hi6wI0mSXavmbgF5EaTFqxgQrB68dUYi
KyeMb8dytQUbO1dsurL4NHZPNSRDhHIFiqqCDdILy60zhExfKtfIUK6Ulg2NVRZv
98Mr9H65uBrwzfImYfvuSjw6UvDQCoyGjdjnvonUMS+hDjnyjmw/Sf/ul2TKtgb+
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:18 2024 by rpki-client on console.sobornost.net