Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/19d313-777b-4044-a238-8b8f3f8d7303/1/dGwUshDR2g_BGH5-JVljriU0LcA.roa
File: dGwUshDR2g_BGH5-JVljriU0LcA.roa (raw, json)
Hash identifier: 76K/TRbusXhHq4PSe7idkreJg6CVFsRoF+VX3wDiAFA=
Subject key identifier: 74:6C:14:B2:10:D1:DA:0F:C1:18:7E:7E:25:59:63:AE:25:34:2D:C0
Certificate issuer: /CN=4f99e4eae48a01c781faad11f6d81a91ea33bdff
Certificate serial: 018F9F7C7459748581CFAADF5D32ED68A745
Authority key identifier: 4F:99:E4:EA:E4:8A:01:C7:81:FA:AD:11:F6:D8:1A:91:EA:33:BD:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5nk6uSKAceB-q0R9tgakeozvf8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/19d313-777b-4044-a238-8b8f3f8d7303/1/dGwUshDR2g_BGH5-JVljriU0LcA.roa
Signing time: Wed 22 May 2024 08:48:04 +0000
ROA not before: Wed 22 May 2024 08:48:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57752
IP address blocks: 45.10.45.0/24 maxlen: 24
45.10.46.0/23 maxlen: 23
45.88.68.0/22 maxlen: 24
45.89.152.0/22 maxlen: 22
45.91.144.0/22 maxlen: 22
45.130.236.0/22 maxlen: 22
45.130.236.0/24 maxlen: 24
45.130.237.0/24 maxlen: 24
45.130.238.0/24 maxlen: 24
45.130.239.0/24 maxlen: 24
83.136.148.0/23 maxlen: 23
83.136.150.0/23 maxlen: 23
109.205.64.0/21 maxlen: 21
176.118.172.0/22 maxlen: 22
185.17.56.0/22 maxlen: 22
185.17.56.0/24 maxlen: 24
185.17.57.0/24 maxlen: 24
185.54.36.0/22 maxlen: 22
185.167.220.0/22 maxlen: 22
185.234.48.0/22 maxlen: 22
2a03:dc00::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:9f:7c:74:59:74:85:81:cf:aa:df:5d:32:ed:68:a7:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f99e4eae48a01c781faad11f6d81a91ea33bdff
Validity
Not Before: May 22 08:48:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=746c14b210d1da0fc1187e7e255963ae25342dc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f0:0b:e0:d0:1f:ae:4e:83:3f:b6:10:c9:06:
7b:e9:7a:d4:b7:16:49:2a:e4:19:82:92:35:5b:b1:
99:b2:5f:20:eb:11:af:cd:2d:d0:e9:45:c6:9f:93:
5a:f8:11:0e:c7:8b:1a:0c:6b:1d:0f:ea:58:86:0a:
dc:d3:93:fd:17:29:bc:55:f3:7c:3f:e9:dc:74:67:
a1:39:1a:77:bf:73:55:64:67:b0:08:bd:76:8b:16:
10:41:61:c2:4f:18:62:42:bd:2d:0e:2f:5b:6f:8e:
d8:8a:57:db:c5:77:a3:98:3a:01:9f:60:8c:cb:fc:
49:99:80:9d:25:8b:26:89:53:1b:71:ec:b7:83:4a:
ca:bc:a0:e1:0e:a8:70:9f:ee:3f:4b:d7:f3:8a:c9:
64:1e:1b:eb:4d:53:82:cf:0f:9b:a7:48:88:b1:c2:
01:a4:e6:0c:28:77:4f:55:62:da:8c:3b:e6:b1:52:
0a:4e:7b:15:d0:d8:92:6a:66:97:fb:07:68:d8:4b:
18:a2:05:64:28:1a:b1:24:5f:9a:a6:d1:a6:6e:d3:
ee:bc:26:1a:eb:e1:9f:89:cb:b7:d3:8a:5c:e1:38:
3b:dc:69:d8:bd:8d:86:e9:a9:4d:f5:a2:a8:eb:e7:
e4:7b:af:a8:a2:d0:7c:e6:93:ad:58:59:a0:d9:3a:
b4:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:6C:14:B2:10:D1:DA:0F:C1:18:7E:7E:25:59:63:AE:25:34:2D:C0
X509v3 Authority Key Identifier:
keyid:4F:99:E4:EA:E4:8A:01:C7:81:FA:AD:11:F6:D8:1A:91:EA:33:BD:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5nk6uSKAceB-q0R9tgakeozvf8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/19d313-777b-4044-a238-8b8f3f8d7303/1/dGwUshDR2g_BGH5-JVljriU0LcA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/19d313-777b-4044-a238-8b8f3f8d7303/1/T5nk6uSKAceB-q0R9tgakeozvf8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.45.0-45.10.47.255
45.88.68.0/22
45.89.152.0/22
45.91.144.0/22
45.130.236.0/22
83.136.148.0/22
109.205.64.0/21
176.118.172.0/22
185.17.56.0/22
185.54.36.0/22
185.167.220.0/22
185.234.48.0/22
IPv6:
2a03:dc00::/32
Signature Algorithm: sha256WithRSAEncryption
c2:da:19:04:9b:e7:dd:0c:e2:0e:2c:f9:eb:b7:de:7b:5a:71:
fe:38:26:e3:1b:63:33:d2:a2:eb:c1:dd:95:22:4c:46:7a:e3:
34:9f:15:15:ab:13:e7:99:12:9d:05:6f:be:0f:0d:0f:6f:be:
f2:e4:09:08:1f:07:96:e3:ac:a8:df:cf:12:67:88:f0:37:a6:
64:e1:2b:6d:54:4a:73:62:e7:1f:43:c0:88:8d:65:34:c8:28:
46:72:27:12:95:04:4b:8d:4d:26:a2:39:48:7b:97:98:58:58:
7d:56:a0:55:ca:eb:48:93:da:c7:e0:29:8c:c4:3f:db:67:8c:
23:4c:c8:87:e8:23:00:c0:dd:e1:0c:ab:bf:f2:b5:20:8f:cb:
f3:f1:0e:f9:c1:53:5b:17:91:e3:b5:de:c8:1e:7a:b3:e9:ab:
9c:72:25:17:b7:aa:4a:d0:23:c2:a8:00:6d:d8:8a:4c:6d:64:
3d:6c:11:90:c4:62:f1:fe:2a:88:46:98:2b:03:c6:6b:6b:13:
53:a1:d2:cf:13:00:5c:f4:0a:a6:5b:6a:8c:d2:ad:ff:49:a9:
fa:fe:61:60:da:2b:b3:82:2b:a9:77:38:3e:ea:bd:10:70:3b:
c7:06:6d:5d:b6:72:98:e5:4c:61:59:0d:0e:f6:24:f9:2e:f4:
93:c1:3f:5a
-----BEGIN CERTIFICATE-----
MIIFVjCCBD6gAwIBAgISAY+ffHRZdIWBz6rfXTLtaKdFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmOTllNGVhZTQ4YTAxYzc4MWZhYWQxMWY2ZDgxYTkxZWEz
M2JkZmYwHhcNMjQwNTIyMDg0ODA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NDZjMTRiMjEwZDFkYTBmYzExODdlN2UyNTU5NjNhZTI1MzQyZGMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkPAL4NAfrk6DP7YQyQZ76XrUtxZJ
KuQZgpI1W7GZsl8g6xGvzS3Q6UXGn5Na+BEOx4saDGsdD+pYhgrc05P9Fym8VfN8
P+ncdGehORp3v3NVZGewCL12ixYQQWHCTxhiQr0tDi9bb47YilfbxXejmDoBn2CM
y/xJmYCdJYsmiVMbcey3g0rKvKDhDqhwn+4/S9fzislkHhvrTVOCzw+bp0iIscIB
pOYMKHdPVWLajDvmsVIKTnsV0NiSamaX+wdo2EsYogVkKBqxJF+aptGmbtPuvCYa
6+Gficu304pc4Tg73GnYvY2G6alN9aKo6+fke6+ootB85pOtWFmg2Tq09wIDAQAB
o4ICYjCCAl4wHQYDVR0OBBYEFHRsFLIQ0doPwRh+fiVZY64lNC3AMB8GA1UdIwQY
MBaAFE+Z5OrkigHHgfqtEfbYGpHqM73/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDVuazZ1U0tBY2VCLXEwUjl0Z2FrZW96dmY4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC8xOWQzMTMtNzc3Yi00MDQ0LWEyMzgt
OGI4ZjNmOGQ3MzAzLzEvZEd3VXNoRFIyZ19CR0g1LUpWbGpyaVUwTGNBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC8xOWQzMTMtNzc3Yi00MDQ0LWEyMzgtOGI4ZjNmOGQ3MzAz
LzEvVDVuazZ1U0tBY2VCLXEwUjl0Z2FrZW96dmY4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHgGCCsGAQUFBwEHAQH/BGkwZzBWBAIAATBQMAwDBAAtCi0D
BAQtCiADBAItWEQDBAItWZgDBAItW5ADBAItguwDBAJTiJQDBANtzUADBAKwdqwD
BAK5ETgDBAK5NiQDBAK5p9wDBAK56jAwDQQCAAIwBwMFACoD3AAwDQYJKoZIhvcN
AQELBQADggEBAMLaGQSb590M4g4s+eu33ntacf44JuMbYzPSouvB3ZUiTEZ64zSf
FRWrE+eZEp0Fb74PDQ9vvvLkCQgfB5bjrKjfzxJniPA3pmThK21USnNi5x9DwIiN
ZTTIKEZyJxKVBEuNTSaiOUh7l5hYWH1WoFXK60iT2sfgKYzEP9tnjCNMyIfoIwDA
3eEMq7/ytSCPy/PxDvnBU1sXkeO13sgeerPpq5xyJRe3qkrQI8KoAG3YikxtZD1s
EZDEYvH+KohGmCsDxmtrE1Oh0s8TAFz0CqZbaozSrf9Jqfr+YWDaK7OCK6l3OD7q
vRBwO8cGbV22cpjlTGFZDQ72JPku9JPBP1o=
-----END CERTIFICATE-----
Generated at Wed Sep 11 06:09:29 2024 by rpki-client on console.sobornost.net