Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/6341da-2b34-4d45-9c17-958112a489a4/1/AW_Zq34MNvtoRIuGnqff9Liwnb0.roa
File: AW_Zq34MNvtoRIuGnqff9Liwnb0.roa (raw, json)
Hash identifier: Oj6M9wlbus3vv5vpr8svim33/86zEF58k5Jk91Q+I/8=
Subject key identifier: 01:6F:D9:AB:7E:0C:36:FB:68:44:8B:86:9E:A7:DF:F4:B8:B0:9D:BD
Certificate issuer: /CN=0a1d72ac0826e09bc0d17ddee8ba87d9731dd413
Certificate serial: 01939717A8F1E4A5E3AC501A21A759267DEC
Authority key identifier: 0A:1D:72:AC:08:26:E0:9B:C0:D1:7D:DE:E8:BA:87:D9:73:1D:D4:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ch1yrAgm4JvA0X3e6LqH2XMd1BM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/6341da-2b34-4d45-9c17-958112a489a4/1/AW_Zq34MNvtoRIuGnqff9Liwnb0.roa
Signing time: Thu 05 Dec 2024 13:52:10 +0000
ROA not before: Thu 05 Dec 2024 13:52:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12312
IP address blocks: 62.26.0.0/15 maxlen: 23
62.144.0.0/16 maxlen: 16
62.246.0.0/16 maxlen: 16
79.140.176.0/20 maxlen: 20
80.83.96.0/20 maxlen: 20
185.210.52.0/23 maxlen: 23
194.112.16.0/20 maxlen: 20
195.52.0.0/16 maxlen: 23
195.63.0.0/16 maxlen: 16
195.78.160.0/19 maxlen: 19
195.185.0.0/16 maxlen: 16
212.172.0.0/16 maxlen: 16
2001:4090::/32 maxlen: 32
2001:4091::/32 maxlen: 32
2a01:5c8::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:97:17:a8:f1:e4:a5:e3:ac:50:1a:21:a7:59:26:7d:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a1d72ac0826e09bc0d17ddee8ba87d9731dd413
Validity
Not Before: Dec 5 13:52:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=016fd9ab7e0c36fb68448b869ea7dff4b8b09dbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f8:9e:08:92:9b:70:3a:02:10:05:27:83:83:
bd:25:16:6f:7c:b9:e2:03:62:85:f8:50:1b:c4:7d:
9d:ef:23:26:9c:5f:43:74:36:f4:07:11:bf:a5:6d:
08:1a:05:4d:9a:68:98:e4:4b:a5:32:90:9f:59:e8:
c5:ab:85:f3:10:6b:1e:5e:df:71:19:68:02:75:a3:
9c:32:65:a6:f4:b3:aa:91:a6:f3:89:06:43:22:5f:
78:f0:71:3b:3c:a6:c2:d3:a7:b0:8d:eb:a7:d4:4b:
bd:c5:72:25:23:ce:b3:e9:c0:a2:0b:da:d0:2f:f5:
0e:07:8b:18:27:8c:08:f8:51:8f:26:99:22:d1:52:
c4:f3:24:f7:72:f2:fc:75:3e:73:c4:33:fb:00:26:
ff:fb:cd:c8:65:70:7d:11:a9:17:21:b9:17:a3:e9:
4b:51:75:c7:66:cb:e4:71:07:b8:dc:fe:99:c4:e8:
bf:28:47:6d:da:26:f1:e9:cf:03:52:18:94:7c:84:
bc:a9:89:0d:94:29:e9:ef:58:47:06:75:b2:c6:b6:
04:57:17:7a:66:04:38:22:1d:bc:f5:e3:73:0b:d4:
86:bb:44:2b:53:1d:b1:fb:4a:a0:8c:ba:0b:31:8f:
8c:d7:45:7a:c3:dd:f6:80:17:90:47:40:2a:bd:03:
ff:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:6F:D9:AB:7E:0C:36:FB:68:44:8B:86:9E:A7:DF:F4:B8:B0:9D:BD
X509v3 Authority Key Identifier:
keyid:0A:1D:72:AC:08:26:E0:9B:C0:D1:7D:DE:E8:BA:87:D9:73:1D:D4:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ch1yrAgm4JvA0X3e6LqH2XMd1BM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/6341da-2b34-4d45-9c17-958112a489a4/1/AW_Zq34MNvtoRIuGnqff9Liwnb0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/6341da-2b34-4d45-9c17-958112a489a4/1/Ch1yrAgm4JvA0X3e6LqH2XMd1BM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.26.0.0/15
62.144.0.0/16
62.246.0.0/16
79.140.176.0/20
80.83.96.0/20
185.210.52.0/23
194.112.16.0/20
195.52.0.0/16
195.63.0.0/16
195.78.160.0/19
195.185.0.0/16
212.172.0.0/16
IPv6:
2001:4090::/31
2a01:5c8::/32
Signature Algorithm: sha256WithRSAEncryption
b2:35:34:29:b5:06:42:1d:68:0f:01:c9:d6:92:a4:ad:8e:3b:
50:28:4e:df:f0:f1:9e:c0:a3:7b:f2:36:f4:fd:f1:da:2c:21:
33:45:37:2d:ce:e1:4c:44:76:2a:fa:4e:fb:83:0f:a5:00:26:
d7:ab:eb:89:8b:9a:55:27:a6:2e:8c:ba:49:0d:95:41:08:fb:
0a:72:8d:df:70:22:c5:e3:02:30:de:3a:0f:72:79:99:a6:8c:
59:7d:d7:79:49:82:67:80:2e:86:82:b6:15:c7:14:02:e0:90:
0a:95:ab:a6:45:7b:71:0a:7f:8a:80:6b:3c:a2:bb:8b:21:cd:
f7:6c:1b:f9:e0:52:17:f9:c3:01:e4:76:bf:a0:ab:94:ae:b7:
6b:b2:31:96:ee:44:fc:9e:ea:2c:94:d1:b4:7f:53:80:95:02:
cd:2d:4e:68:f7:f5:22:03:02:32:af:a1:9b:66:fb:3e:3c:91:
bd:0d:40:bc:33:6f:33:3d:67:40:89:6c:2d:6f:cd:b3:18:90:
96:5d:2b:3c:6f:71:2f:0f:ba:61:d8:77:ac:19:fd:73:f0:c0:
c9:93:5e:34:a8:b0:34:2a:86:58:e5:43:eb:26:f1:0a:80:37:
9d:f9:b7:fa:b9:b2:89:46:a1:06:24:2f:3e:da:28:af:ff:01:
a3:68:95:e2
-----BEGIN CERTIFICATE-----
MIIFTjCCBDagAwIBAgISAZOXF6jx5KXjrFAaIadZJn3sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBhMWQ3MmFjMDgyNmUwOWJjMGQxN2RkZWU4YmE4N2Q5NzMx
ZGQ0MTMwHhcNMjQxMjA1MTM1MjEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMTZmZDlhYjdlMGMzNmZiNjg0NDhiODY5ZWE3ZGZmNGI4YjA5ZGJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw/ieCJKbcDoCEAUng4O9JRZvfLni
A2KF+FAbxH2d7yMmnF9DdDb0BxG/pW0IGgVNmmiY5EulMpCfWejFq4XzEGseXt9x
GWgCdaOcMmWm9LOqkabziQZDIl948HE7PKbC06ewjeun1Eu9xXIlI86z6cCiC9rQ
L/UOB4sYJ4wI+FGPJpki0VLE8yT3cvL8dT5zxDP7ACb/+83IZXB9EakXIbkXo+lL
UXXHZsvkcQe43P6ZxOi/KEdt2ibx6c8DUhiUfIS8qYkNlCnp71hHBnWyxrYEVxd6
ZgQ4Ih289eNzC9SGu0QrUx2x+0qgjLoLMY+M10V6w932gBeQR0AqvQP/6QIDAQAB
o4ICWjCCAlYwHQYDVR0OBBYEFAFv2at+DDb7aESLhp6n3/S4sJ29MB8GA1UdIwQY
MBaAFAodcqwIJuCbwNF93ui6h9lzHdQTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2gxeXJBZ200SnZBMFgzZTZMcUgyWE1kMUJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC82MzQxZGEtMmIzNC00ZDQ1LTljMTct
OTU4MTEyYTQ4OWE0LzEvQVdfWnEzNE1OdnRvUkl1R25xZmY5TGl3bmIwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC82MzQxZGEtMmIzNC00ZDQ1LTljMTctOTU4MTEyYTQ4OWE0
LzEvQ2gxeXJBZ200SnZBMFgzZTZMcUgyWE1kMUJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHAGCCsGAQUFBwEHAQH/BGEwXzBHBAIAATBBAwMBPhoDAwA+
kAMDAD72AwQET4ywAwQEUFNgAwQBudI0AwQEwnAQAwMAwzQDAwDDPwMEBcNOoAMD
AMO5AwMA1KwwFAQCAAIwDgMFASABQJADBQAqAQXIMA0GCSqGSIb3DQEBCwUAA4IB
AQCyNTQptQZCHWgPAcnWkqStjjtQKE7f8PGewKN78jb0/fHaLCEzRTctzuFMRHYq
+k77gw+lACbXq+uJi5pVJ6YujLpJDZVBCPsKco3fcCLF4wIw3joPcnmZpoxZfdd5
SYJngC6GgrYVxxQC4JAKlaumRXtxCn+KgGs8oruLIc33bBv54FIX+cMB5Ha/oKuU
rrdrsjGW7kT8nuoslNG0f1OAlQLNLU5o9/UiAwIyr6GbZvs+PJG9DUC8M28zPWdA
iWwtb82zGJCWXSs8b3EvD7ph2HesGf1z8MDJk140qLA0KoZY5UPrJvEKgDed+bf6
ubKJRqEGJC8+2iiv/wGjaJXi
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:29 2024 by rpki-client on console.sobornost.net