Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/00df29-5022-405e-895d-77ca89cf436a/1/Q8JHwKbtBLcw3gXwHp276WLXiwE.roa
File: Q8JHwKbtBLcw3gXwHp276WLXiwE.roa (raw, json)
Hash identifier: 7Gdyb8RQncRF27uPSfdK6WvvL4InUHAqcL4PM7Q/VxM=
Subject key identifier: 43:C2:47:C0:A6:ED:04:B7:30:DE:05:F0:1E:9D:BB:E9:62:D7:8B:01
Certificate issuer: /CN=bab5e5e601cbf5d19d10d4db476a923b3b36f827
Certificate serial: 019333D187F196BB8EDBDB73FDFCE13C3D0C
Authority key identifier: BA:B5:E5:E6:01:CB:F5:D1:9D:10:D4:DB:47:6A:92:3B:3B:36:F8:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/urXl5gHL9dGdENTbR2qSOzs2-Cc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/00df29-5022-405e-895d-77ca89cf436a/1/Q8JHwKbtBLcw3gXwHp276WLXiwE.roa
Signing time: Sat 16 Nov 2024 07:13:10 +0000
ROA not before: Sat 16 Nov 2024 07:13:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24904
IP address blocks: 2.59.236.0/22 maxlen: 24
45.15.60.0/22 maxlen: 24
45.83.228.0/22 maxlen: 24
81.28.192.0/20 maxlen: 24
83.243.124.0/22 maxlen: 24
92.118.96.0/22 maxlen: 24
171.22.0.0/22 maxlen: 24
178.250.208.0/21 maxlen: 24
178.250.208.64/27 maxlen: 27
178.250.208.128/28 maxlen: 28
185.4.76.0/22 maxlen: 24
185.45.32.0/22 maxlen: 24
185.66.100.0/22 maxlen: 24
185.73.232.0/22 maxlen: 24
185.109.200.0/22 maxlen: 24
185.144.44.0/22 maxlen: 24
185.164.232.0/22 maxlen: 24
185.172.232.0/22 maxlen: 22
185.172.233.0/24 maxlen: 24
185.172.234.0/24 maxlen: 24
185.202.60.0/22 maxlen: 24
185.207.80.0/22 maxlen: 24
185.215.12.0/22 maxlen: 24
185.216.240.0/22 maxlen: 24
185.219.204.0/22 maxlen: 24
185.229.160.0/22 maxlen: 24
185.238.4.0/22 maxlen: 24
185.251.160.0/22 maxlen: 24
194.26.150.0/23 maxlen: 24
194.29.74.0/23 maxlen: 24
194.38.32.0/22 maxlen: 24
194.147.0.0/22 maxlen: 24
2a03:4980::/32 maxlen: 32
2a03:4980::/40 maxlen: 40
2a03:4980:100::/40 maxlen: 40
2a03:4980:200::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:33:d1:87:f1:96:bb:8e:db:db:73:fd:fc:e1:3c:3d:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bab5e5e601cbf5d19d10d4db476a923b3b36f827
Validity
Not Before: Nov 16 07:13:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=43c247c0a6ed04b730de05f01e9dbbe962d78b01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:0c:13:fa:07:a5:ff:c3:80:66:0c:8b:85:22:
10:94:41:29:b7:73:34:97:54:53:f0:a9:37:cd:2f:
2b:13:d0:b7:db:01:ad:47:0e:69:c6:f6:8d:3b:b0:
7a:ec:7f:ed:f5:a8:9b:84:84:e0:67:0e:a3:5b:f1:
63:b7:9a:de:12:13:80:c6:b3:ab:06:63:35:92:85:
73:ff:ea:a3:6e:6d:1d:ca:02:2e:02:30:ee:63:59:
b3:45:6a:d8:db:7d:00:8a:f7:be:88:5c:60:87:14:
13:17:f4:f8:fe:28:75:04:46:d2:61:0f:83:dd:07:
c6:df:0a:fe:e5:3a:93:90:f4:3f:45:0a:c5:48:99:
35:37:44:ee:9e:89:e7:c4:43:29:e5:77:4f:bb:49:
7b:5e:c4:fb:31:bf:41:e0:a7:f9:f2:e4:b4:8e:bd:
74:ed:c9:ac:3c:c9:8c:2a:74:b6:0a:ab:12:36:75:
fd:12:dc:a1:64:77:c0:73:68:81:ba:53:e5:e9:75:
86:16:de:cd:aa:1b:3e:72:2b:3b:91:2f:b0:7e:11:
6a:cb:09:4c:9a:ef:03:9d:a5:ff:6d:26:38:df:ad:
ca:56:6e:06:55:ec:02:2e:f8:55:dc:06:ce:75:9d:
f1:ac:1f:63:a0:93:a3:b3:67:8c:ff:f9:5e:a2:c0:
b5:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:C2:47:C0:A6:ED:04:B7:30:DE:05:F0:1E:9D:BB:E9:62:D7:8B:01
X509v3 Authority Key Identifier:
keyid:BA:B5:E5:E6:01:CB:F5:D1:9D:10:D4:DB:47:6A:92:3B:3B:36:F8:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/urXl5gHL9dGdENTbR2qSOzs2-Cc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/00df29-5022-405e-895d-77ca89cf436a/1/Q8JHwKbtBLcw3gXwHp276WLXiwE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/00df29-5022-405e-895d-77ca89cf436a/1/urXl5gHL9dGdENTbR2qSOzs2-Cc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.236.0/22
45.15.60.0/22
45.83.228.0/22
81.28.192.0/20
83.243.124.0/22
92.118.96.0/22
171.22.0.0/22
178.250.208.0/21
185.4.76.0/22
185.45.32.0/22
185.66.100.0/22
185.73.232.0/22
185.109.200.0/22
185.144.44.0/22
185.164.232.0/22
185.172.232.0/22
185.202.60.0/22
185.207.80.0/22
185.215.12.0/22
185.216.240.0/22
185.219.204.0/22
185.229.160.0/22
185.238.4.0/22
185.251.160.0/22
194.26.150.0/23
194.29.74.0/23
194.38.32.0/22
194.147.0.0/22
IPv6:
2a03:4980::/32
Signature Algorithm: sha256WithRSAEncryption
67:e2:fc:b4:3e:fd:71:a7:88:cb:e0:f9:2d:a2:9c:80:c0:ed:
59:7c:35:05:a3:b6:c0:0e:f2:af:63:39:99:dc:d5:ea:93:79:
2c:b8:cd:33:8e:75:6c:2f:24:c2:47:ca:12:c7:72:8f:cd:91:
1a:a4:c7:f9:d4:09:c2:3e:bd:37:54:d0:e2:5c:36:a5:9a:01:
af:a1:b0:0d:d9:d3:45:29:a7:f9:ad:51:dc:bc:0d:01:58:59:
65:d7:f4:61:36:25:e6:3d:df:c7:df:54:3e:e2:f4:aa:ba:73:
b2:3d:31:4e:76:89:df:97:5a:57:62:0b:0c:90:86:82:d8:15:
45:0c:5a:9e:0e:15:7c:5a:51:ba:5a:fc:b6:5b:39:1b:af:b4:
80:cb:fe:7b:c2:ff:1c:f5:0b:3a:32:0c:fd:ad:f2:03:76:15:
fb:ce:e0:4d:e5:e7:92:54:0e:bd:5d:ae:72:8c:f2:a0:91:51:
e4:31:47:6b:67:ee:87:ff:1e:c3:8b:73:32:ca:35:78:0d:88:
32:d7:c5:54:5a:dc:10:9d:a6:21:a4:d4:74:39:e2:07:5f:f8:
4c:6b:ae:2d:8b:e4:10:e1:02:c9:16:d0:16:dc:ca:63:08:17:
8e:ee:64:5e:df:18:8d:c0:bf:21:64:ab:0b:1b:70:53:bb:c1:
56:5f:87:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 02:20:33 2024 by rpki-client on console.sobornost.net