Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/INXaSaWJYoYCwcnXubjE5R50sdw.roa
File: INXaSaWJYoYCwcnXubjE5R50sdw.roa (raw, json)
Hash identifier: NBnhZnaFuebxUQlhx9RHTAqqeKqnbIp63z1KIrKvO8E=
Subject key identifier: 20:D5:DA:49:A5:89:62:86:02:C1:C9:D7:B9:B8:C4:E5:1E:74:B1:DC
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 018CC9BCBE13D5887F724E6E895AE288A7FA
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/INXaSaWJYoYCwcnXubjE5R50sdw.roa
Signing time: Tue 02 Jan 2024 10:33:58 +0000
ROA not before: Tue 02 Jan 2024 10:33:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204654
IP address blocks: 195.235.42.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:be:13:d5:88:7f:72:4e:6e:89:5a:e2:88:a7:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Jan 2 10:33:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=20d5da49a589628602c1c9d7b9b8c4e51e74b1dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:b6:63:a9:49:a2:5b:54:e9:15:62:bb:36:b5:
35:2b:ef:7d:1c:d7:05:46:13:55:60:6a:e4:19:39:
e3:44:93:90:31:42:0f:5c:61:5a:82:1a:1b:af:ce:
a4:1f:e6:6f:1e:ed:f5:53:2d:b7:7b:1b:0a:ca:11:
7d:d5:2e:44:27:98:04:1d:5e:cf:1a:7a:73:e4:b5:
a0:82:ad:8e:11:0e:84:f4:f0:47:8f:1c:62:62:82:
16:13:37:94:07:f0:fe:c0:65:a1:50:a5:c0:76:5c:
d6:9c:08:de:67:13:d7:4a:a9:c4:ac:52:e1:12:7e:
8f:1f:46:cc:36:a3:70:33:6a:61:a1:ce:33:6d:a0:
c1:07:2c:f8:92:5c:4f:17:dc:a1:90:f9:18:f7:e2:
f8:e0:ab:02:f1:4e:92:f5:ae:de:95:72:10:bd:17:
83:be:69:6a:43:0e:32:8b:de:30:21:45:21:03:dc:
f7:93:ff:91:64:62:08:1b:f0:68:be:12:80:0d:93:
3c:b4:12:da:45:0d:42:5c:e9:90:4e:6a:ae:c0:c7:
df:b2:39:b0:02:f4:0a:f3:0d:f8:79:6e:bc:c1:f3:
f8:5d:7c:91:13:73:ce:48:72:ee:a6:9b:34:ad:03:
0c:0d:e3:62:73:4c:65:cb:fb:38:86:aa:21:74:e7:
23:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:D5:DA:49:A5:89:62:86:02:C1:C9:D7:B9:B8:C4:E5:1E:74:B1:DC
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/INXaSaWJYoYCwcnXubjE5R50sdw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.235.42.0/24
Signature Algorithm: sha256WithRSAEncryption
83:c5:fc:d9:27:3c:ef:5c:63:65:c8:25:e9:6c:58:01:24:69:
d5:d6:a9:93:1e:dc:ab:eb:01:30:69:bf:8d:f0:13:d0:4d:8a:
fd:d7:d8:ad:19:2d:84:b2:47:12:a1:22:bc:9f:bd:7c:5d:d4:
56:61:10:91:fe:b1:14:b1:a6:d8:32:e2:ed:ce:ba:4d:24:0b:
68:8d:b2:d6:33:69:a2:8a:41:c7:85:63:f3:fd:5b:22:10:e9:
e1:b2:a3:d7:9f:ba:48:1f:f6:bd:f1:3f:b4:79:8f:d6:61:16:
7e:fd:17:2e:34:68:87:39:3c:ac:ea:1b:0d:80:b9:10:09:5c:
3a:a6:51:9d:73:cf:c5:2f:e8:cb:34:ad:b3:23:41:41:60:c1:
68:7d:4a:8d:05:00:f9:63:11:56:62:c0:e1:24:57:19:b6:f9:
46:dc:b8:fc:47:1d:5f:d1:c7:45:67:1e:3f:23:9c:1b:3b:19:
11:68:a9:6e:e1:75:1f:78:f0:5e:ba:4d:6a:ad:88:3f:d4:63:
ec:48:52:8c:d6:d5:94:fe:01:eb:c1:a7:49:d3:7a:b0:20:8d:
49:1d:a7:1d:6e:9b:2d:0a:15:26:ba:df:11:8e:93:d4:c6:f7:
dd:ac:a1:71:30:89:7d:27:06:2d:26:56:d5:dc:37:90:82:64:
ac:48:38:96
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzJvL4T1Yh/ck5uiVriiKf6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwN2Y1ZmUyNzQwYTJiNmRlNGMzNzA5ZDI5NjQxMTViM2M5
NjdkYTEwHhcNMjQwMTAyMTAzMzU4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMGQ1ZGE0OWE1ODk2Mjg2MDJjMWM5ZDdiOWI4YzRlNTFlNzRiMWRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnLZjqUmiW1TpFWK7NrU1K+99HNcF
RhNVYGrkGTnjRJOQMUIPXGFaghobr86kH+ZvHu31Uy23exsKyhF91S5EJ5gEHV7P
Gnpz5LWggq2OEQ6E9PBHjxxiYoIWEzeUB/D+wGWhUKXAdlzWnAjeZxPXSqnErFLh
En6PH0bMNqNwM2phoc4zbaDBByz4klxPF9yhkPkY9+L44KsC8U6S9a7elXIQvReD
vmlqQw4yi94wIUUhA9z3k/+RZGIIG/BovhKADZM8tBLaRQ1CXOmQTmquwMffsjmw
AvQK8w34eW68wfP4XXyRE3POSHLupps0rQMMDeNic0xly/s4hqohdOcjdQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCDV2kmliWKGAsHJ17m4xOUedLHcMB8GA1UdIwQY
MBaAFDB/X+J0Citt5MNwnSlkEVs8ln2hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUg5ZjRuUUtLMjNrdzNDZEtXUVJXenlXZmFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9kY2ZkNDgtYzU0YS00Yzc4LWE0ZWQt
NGJhMmY4ZjFmODNiLzEvSU5YYVNhV0pZb1lDd2NuWHViakU1UjUwc2R3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy9kY2ZkNDgtYzU0YS00Yzc4LWE0ZWQtNGJhMmY4ZjFmODNi
LzEvTUg5ZjRuUUtLMjNrdzNDZEtXUVJXenlXZmFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw+sqMA0G
CSqGSIb3DQEBCwUAA4IBAQCDxfzZJzzvXGNlyCXpbFgBJGnV1qmTHtyr6wEwab+N
8BPQTYr919itGS2EskcSoSK8n718XdRWYRCR/rEUsabYMuLtzrpNJAtojbLWM2mi
ikHHhWPz/VsiEOnhsqPXn7pIH/a98T+0eY/WYRZ+/RcuNGiHOTys6hsNgLkQCVw6
plGdc8/FL+jLNK2zI0FBYMFofUqNBQD5YxFWYsDhJFcZtvlG3Lj8Rx1f0cdFZx4/
I5wbOxkRaKlu4XUfePBeuk1qrYg/1GPsSFKM1tWU/gHrwadJ03qwII1JHacdbpst
ChUmut8RjpPUxvfdrKFxMIl9JwYtJlbV3DeQgmSsSDiW
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:31 2024 by rpki-client on console.sobornost.net