Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/eJGMVpMY1ZBtO9g6Q-ZHjo7KaUc.roa
File: eJGMVpMY1ZBtO9g6Q-ZHjo7KaUc.roa (raw, json)
Hash identifier: Yc0wWOSZyXz3aEsPW2qX2Qpw3eZLTWFXwYezAoYA5Rw=
Subject key identifier: 78:91:8C:56:93:18:D5:90:6D:3B:D8:3A:43:E6:47:8E:8E:CA:69:47
Certificate issuer: /CN=b38bb62a47b1a2aedb70f32f58c979ba0c777f06
Certificate serial: 018CC80113325983CE43379E28754506FCCE
Authority key identifier: B3:8B:B6:2A:47:B1:A2:AE:DB:70:F3:2F:58:C9:79:BA:0C:77:7F:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s4u2Kkexoq7bcPMvWMl5ugx3fwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/eJGMVpMY1ZBtO9g6Q-ZHjo7KaUc.roa
Signing time: Tue 02 Jan 2024 02:29:22 +0000
ROA not before: Tue 02 Jan 2024 02:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34245
IP address blocks: 185.106.88.0/22 maxlen: 24
212.17.32.0/19 maxlen: 24
87.192.80.0/24 maxlen: 24
89.124.242.0/23 maxlen: 24
89.124.244.0/24 maxlen: 24
87.232.193.0/24 maxlen: 24
213.159.128.0/22 maxlen: 24
87.192.220.0/23 maxlen: 24
85.91.0.0/19 maxlen: 24
87.198.204.0/24 maxlen: 24
87.232.128.0/21 maxlen: 24
87.232.134.0/24 maxlen: 24
87.198.0.0/16 maxlen: 24
87.232.64.0/18 maxlen: 24
213.79.32.0/19 maxlen: 24
89.127.253.0/24 maxlen: 24
89.127.252.0/23 maxlen: 24
89.127.252.0/24 maxlen: 24
87.232.224.0/24 maxlen: 24
87.232.250.0/23 maxlen: 24
87.232.252.0/22 maxlen: 24
87.232.32.0/19 maxlen: 24
2a01:148::/29 maxlen: 32
2a01:14f::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:13:32:59:83:ce:43:37:9e:28:75:45:06:fc:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b38bb62a47b1a2aedb70f32f58c979ba0c777f06
Validity
Not Before: Jan 2 02:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=78918c569318d5906d3bd83a43e6478e8eca6947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:8a:2e:4a:c0:15:f4:42:d9:9f:28:25:1c:fe:
27:65:df:2f:1a:b6:82:10:cf:43:5d:3d:b2:69:a2:
f6:da:34:2d:56:cf:11:a1:2e:2a:f4:42:91:5e:45:
e9:8f:55:51:f5:f0:60:2a:d1:1e:a8:20:d8:3b:e3:
9e:77:72:af:fa:a1:2e:cb:97:e9:d8:7d:1d:e3:6a:
24:79:e8:14:e5:c1:f7:e6:38:ef:be:e2:0f:76:00:
58:92:cb:c9:e2:df:35:9e:5c:e2:23:e5:c5:b3:5d:
c1:36:b9:25:d1:82:b2:e2:9c:92:ed:08:38:90:d8:
d2:3a:1e:85:77:68:e9:fb:62:57:dd:6f:6a:5a:55:
9d:5e:b5:a3:75:39:15:f6:94:fb:e8:10:ef:45:de:
66:18:31:60:10:53:63:ca:d8:95:4d:b9:84:27:2f:
92:e2:fa:1e:af:35:91:8c:cc:af:22:83:33:0e:51:
94:f0:7b:25:5f:b1:53:77:37:9c:62:8d:03:8d:6b:
68:95:2b:48:4f:01:45:2c:77:e5:56:8b:1c:6c:09:
1b:37:2d:6a:f7:ee:0d:7f:e5:60:d3:a2:41:9b:ef:
00:9a:9e:9e:17:46:13:b7:9d:b7:8c:20:b9:0a:01:
e2:d5:bd:01:25:0a:09:90:ef:40:b0:93:04:0a:3c:
8e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:91:8C:56:93:18:D5:90:6D:3B:D8:3A:43:E6:47:8E:8E:CA:69:47
X509v3 Authority Key Identifier:
keyid:B3:8B:B6:2A:47:B1:A2:AE:DB:70:F3:2F:58:C9:79:BA:0C:77:7F:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s4u2Kkexoq7bcPMvWMl5ugx3fwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/eJGMVpMY1ZBtO9g6Q-ZHjo7KaUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/s4u2Kkexoq7bcPMvWMl5ugx3fwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.91.0.0/19
87.192.80.0/24
87.192.220.0/23
87.198.0.0/16
87.232.32.0-87.232.135.255
87.232.193.0/24
87.232.224.0/24
87.232.250.0-87.232.255.255
89.124.242.0-89.124.244.255
89.127.252.0/23
185.106.88.0/22
212.17.32.0/19
213.79.32.0/19
213.159.128.0/22
IPv6:
2a01:148::/29
Signature Algorithm: sha256WithRSAEncryption
2a:56:cc:41:61:ab:bd:38:db:97:65:1f:0a:c1:de:db:1d:a0:
ac:7a:6a:85:ab:ca:a7:39:01:5c:a2:49:4f:38:4f:c4:26:1f:
3f:2f:2d:04:78:9e:49:ba:b8:e2:12:3f:b3:d1:c1:eb:b2:a1:
13:e1:cf:2d:8e:70:6f:a9:4a:cf:2c:ad:ea:b2:0d:7d:49:a4:
16:71:f4:cb:66:7c:86:a4:1e:e4:db:87:25:2b:91:1c:82:28:
3b:5c:af:ce:0c:93:2c:1b:da:1e:54:42:59:3c:17:d7:a9:67:
db:03:6c:4e:3b:c2:a6:16:d9:c7:8d:17:84:58:38:1f:d9:3a:
67:60:5a:d9:91:09:15:e3:b3:61:34:7e:ef:dd:fa:45:f2:51:
3b:63:5c:6d:4e:6b:22:1e:65:98:c7:d5:77:ef:20:f6:ba:63:
e4:5d:28:11:c0:f2:27:15:44:12:15:ac:67:24:f8:38:8f:80:
30:c2:26:dc:53:77:af:ca:3d:dd:f7:fe:99:02:79:29:f5:83:
4e:d1:16:4d:f7:d7:91:8f:6d:15:7a:37:de:78:9d:22:14:8f:
e6:5e:a3:85:5f:1f:5f:dc:c4:4a:ec:94:8b:71:10:4e:02:0a:
28:59:27:68:72:5f:f7:b9:9f:a0:55:5b:8f:fe:cc:94:ed:92:
eb:fd:5d:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:24 2024 by rpki-client on console.sobornost.net