Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/6341da-2b34-4d45-9c17-958112a489a4/1/o1eSACUGqj4cNSCPo6mtbMOzIDM.roa
File: o1eSACUGqj4cNSCPo6mtbMOzIDM.roa (raw, json)
Hash identifier: AFnT7sJHYDI0LLM9hFSWSwxXZrKMm8aia8C7ulG+NVE=
Subject key identifier: A3:57:92:00:25:06:AA:3E:1C:35:20:8F:A3:A9:AD:6C:C3:B3:20:33
Certificate issuer: /CN=0a1d72ac0826e09bc0d17ddee8ba87d9731dd413
Certificate serial: 01939717A81BE403D37FC23EFC3A7EA797DF
Authority key identifier: 0A:1D:72:AC:08:26:E0:9B:C0:D1:7D:DE:E8:BA:87:D9:73:1D:D4:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ch1yrAgm4JvA0X3e6LqH2XMd1BM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/6341da-2b34-4d45-9c17-958112a489a4/1/o1eSACUGqj4cNSCPo6mtbMOzIDM.roa
Signing time: Thu 05 Dec 2024 13:52:10 +0000
ROA not before: Thu 05 Dec 2024 13:52:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1299
IP address blocks: 62.26.0.0/15 maxlen: 24
62.144.0.0/16 maxlen: 24
62.246.0.0/16 maxlen: 24
79.140.176.0/20 maxlen: 24
80.83.96.0/20 maxlen: 24
185.210.52.0/23 maxlen: 24
194.112.16.0/20 maxlen: 24
195.52.0.0/16 maxlen: 24
195.63.0.0/16 maxlen: 24
195.78.160.0/19 maxlen: 24
195.185.0.0/16 maxlen: 24
212.172.0.0/16 maxlen: 24
2001:4090::/32 maxlen: 48
2001:4091::/32 maxlen: 48
2a01:5c8::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:97:17:a8:1b:e4:03:d3:7f:c2:3e:fc:3a:7e:a7:97:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a1d72ac0826e09bc0d17ddee8ba87d9731dd413
Validity
Not Before: Dec 5 13:52:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a35792002506aa3e1c35208fa3a9ad6cc3b32033
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:7f:78:cc:29:c5:fd:0b:d5:db:d1:5f:1f:1e:
22:5c:ba:34:87:9c:a5:94:9f:be:9c:15:40:a0:ee:
c5:c7:6f:d4:21:fa:b4:21:33:6e:eb:b5:24:6c:5e:
79:88:7e:d3:4a:97:1e:69:73:95:a3:22:1b:66:a2:
5a:29:fc:2d:9a:5b:62:77:49:54:69:83:5b:32:11:
a3:47:27:59:1e:a6:12:68:d4:9e:6e:ba:6d:64:f2:
1b:40:89:6c:26:f5:86:3e:a2:d3:65:91:f4:3e:b6:
ee:ce:1f:33:55:1f:9a:11:47:88:c3:e4:c6:6d:0a:
1f:32:06:9c:69:7b:a1:10:dd:18:1c:07:84:c8:25:
ca:35:4a:da:f6:33:8c:e2:7e:4a:cb:ca:25:03:0c:
d7:a4:c7:45:e2:42:3e:c9:7f:5b:b3:07:f9:88:f0:
1b:8c:d8:24:6f:f0:08:4f:78:79:13:1e:8e:8f:3b:
f2:b3:99:4b:3d:45:07:f0:33:e2:c5:8c:3c:bb:c2:
ce:ca:8c:b2:9e:1c:07:f2:1f:41:34:3d:90:5a:fc:
3a:11:bb:94:4d:05:77:48:13:58:e2:46:6e:e6:67:
f7:1b:6a:ac:05:52:a3:c2:fa:ef:d8:b2:5a:6d:92:
23:b6:c2:15:35:8b:ce:47:47:c4:5a:3d:76:74:bb:
7d:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:57:92:00:25:06:AA:3E:1C:35:20:8F:A3:A9:AD:6C:C3:B3:20:33
X509v3 Authority Key Identifier:
keyid:0A:1D:72:AC:08:26:E0:9B:C0:D1:7D:DE:E8:BA:87:D9:73:1D:D4:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ch1yrAgm4JvA0X3e6LqH2XMd1BM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/6341da-2b34-4d45-9c17-958112a489a4/1/o1eSACUGqj4cNSCPo6mtbMOzIDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/6341da-2b34-4d45-9c17-958112a489a4/1/Ch1yrAgm4JvA0X3e6LqH2XMd1BM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.26.0.0/15
62.144.0.0/16
62.246.0.0/16
79.140.176.0/20
80.83.96.0/20
185.210.52.0/23
194.112.16.0/20
195.52.0.0/16
195.63.0.0/16
195.78.160.0/19
195.185.0.0/16
212.172.0.0/16
IPv6:
2001:4090::/31
2a01:5c8::/32
Signature Algorithm: sha256WithRSAEncryption
67:2c:75:36:87:f5:30:b9:b9:c5:da:a3:96:b9:35:72:07:88:
de:67:c7:21:39:ae:6a:97:09:36:84:fc:49:de:52:df:71:ae:
29:9a:e0:e9:16:c7:48:bd:36:53:56:1a:25:d1:51:c5:1e:56:
dd:2a:8d:71:af:b8:65:ad:68:5b:89:29:be:f6:bf:6c:a4:4b:
73:eb:36:d8:fc:1c:61:2d:d0:ee:cb:d5:64:d3:6b:6d:b8:0e:
bf:f7:38:ba:3a:8e:f1:cd:da:c9:f6:46:7a:a5:dc:0b:39:66:
73:d9:aa:52:4f:e7:1b:fe:55:9a:25:68:7b:2a:d5:a8:8d:91:
be:45:81:44:c7:f2:80:ea:dd:f4:2b:f1:16:c2:7e:12:0d:07:
38:73:16:6c:64:0b:8d:4a:3a:9c:a3:ce:43:30:95:50:d1:dc:
d9:30:50:14:01:53:31:d9:67:c0:4b:5d:11:70:c3:e5:2c:88:
d4:83:74:96:50:a0:3e:b5:1a:dd:0b:05:62:e8:3e:09:6c:fe:
28:52:bf:9f:7e:5c:66:97:c6:ce:dc:17:17:2b:b4:26:12:99:
9c:a5:6c:37:66:52:33:74:02:ec:1c:b9:2b:3b:a3:6c:44:dd:
a3:c9:b6:56:84:92:f6:d2:15:f2:a7:4a:a2:c8:ec:df:03:c5:
44:19:10:15
-----BEGIN CERTIFICATE-----
MIIFTjCCBDagAwIBAgISAZOXF6gb5APTf8I+/Dp+p5ffMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBhMWQ3MmFjMDgyNmUwOWJjMGQxN2RkZWU4YmE4N2Q5NzMx
ZGQ0MTMwHhcNMjQxMjA1MTM1MjEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMzU3OTIwMDI1MDZhYTNlMWMzNTIwOGZhM2E5YWQ2Y2MzYjMyMDMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnX94zCnF/QvV29FfHx4iXLo0h5yl
lJ++nBVAoO7Fx2/UIfq0ITNu67UkbF55iH7TSpceaXOVoyIbZqJaKfwtmltid0lU
aYNbMhGjRydZHqYSaNSebrptZPIbQIlsJvWGPqLTZZH0Prbuzh8zVR+aEUeIw+TG
bQofMgacaXuhEN0YHAeEyCXKNUra9jOM4n5Ky8olAwzXpMdF4kI+yX9bswf5iPAb
jNgkb/AIT3h5Ex6Ojzvys5lLPUUH8DPixYw8u8LOyoyynhwH8h9BND2QWvw6EbuU
TQV3SBNY4kZu5mf3G2qsBVKjwvrv2LJabZIjtsIVNYvOR0fEWj12dLt9EQIDAQAB
o4ICWjCCAlYwHQYDVR0OBBYEFKNXkgAlBqo+HDUgj6OprWzDsyAzMB8GA1UdIwQY
MBaAFAodcqwIJuCbwNF93ui6h9lzHdQTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2gxeXJBZ200SnZBMFgzZTZMcUgyWE1kMUJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC82MzQxZGEtMmIzNC00ZDQ1LTljMTct
OTU4MTEyYTQ4OWE0LzEvbzFlU0FDVUdxajRjTlNDUG82bXRiTU96SURNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC82MzQxZGEtMmIzNC00ZDQ1LTljMTctOTU4MTEyYTQ4OWE0
LzEvQ2gxeXJBZ200SnZBMFgzZTZMcUgyWE1kMUJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHAGCCsGAQUFBwEHAQH/BGEwXzBHBAIAATBBAwMBPhoDAwA+
kAMDAD72AwQET4ywAwQEUFNgAwQBudI0AwQEwnAQAwMAwzQDAwDDPwMEBcNOoAMD
AMO5AwMA1KwwFAQCAAIwDgMFASABQJADBQAqAQXIMA0GCSqGSIb3DQEBCwUAA4IB
AQBnLHU2h/UwubnF2qOWuTVyB4jeZ8chOa5qlwk2hPxJ3lLfca4pmuDpFsdIvTZT
Vhol0VHFHlbdKo1xr7hlrWhbiSm+9r9spEtz6zbY/BxhLdDuy9Vk02ttuA6/9zi6
Oo7xzdrJ9kZ6pdwLOWZz2apST+cb/lWaJWh7KtWojZG+RYFEx/KA6t30K/EWwn4S
DQc4cxZsZAuNSjqco85DMJVQ0dzZMFAUAVMx2WfAS10RcMPlLIjUg3SWUKA+tRrd
CwVi6D4JbP4oUr+fflxml8bO3BcXK7QmEpmcpWw3ZlIzdALsHLkrO6NsRN2jybZW
hJL20hXyp0qiyOzfA8VEGRAV
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:29 2024 by rpki-client on console.sobornost.net