Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/tCNb7v6irOxBPbBmIZ7AQDPdOUY.roa
File: tCNb7v6irOxBPbBmIZ7AQDPdOUY.roa (raw, json)
Hash identifier: LlRXi/8U0po4e7dWpmsk7huhFHwsRtcasq3ksBfKTis=
Subject key identifier: B4:23:5B:EE:FE:A2:AC:EC:41:3D:B0:66:21:9E:C0:40:33:DD:39:46
Certificate issuer: /CN=abbad3de831da94222c1add104caf4c3247689ac
Certificate serial: 019252D820F4117BA76797ADA718B74F0924
Authority key identifier: AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/tCNb7v6irOxBPbBmIZ7AQDPdOUY.roa
Signing time: Thu 03 Oct 2024 14:45:48 +0000
ROA not before: Thu 03 Oct 2024 14:45:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12548
IP address blocks: 212.68.160.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:52:d8:20:f4:11:7b:a7:67:97:ad:a7:18:b7:4f:09:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abbad3de831da94222c1add104caf4c3247689ac
Validity
Not Before: Oct 3 14:45:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b4235beefea2acec413db066219ec04033dd3946
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:34:47:cc:78:de:f2:c0:07:1c:58:6a:5f:61:
d0:4d:31:f2:6e:58:ca:a9:bc:19:d4:1f:38:50:b9:
c7:7a:c3:d5:34:a2:f0:58:61:4c:12:1e:82:0a:45:
ed:84:f7:06:05:9b:b1:1f:c0:e8:a2:cc:a1:3c:b1:
0b:9e:6f:fa:7c:18:c9:46:97:09:db:2b:dc:91:28:
e3:51:8c:d5:49:12:ca:cd:25:f7:16:fc:bd:91:9c:
a7:b7:cf:e2:a9:49:12:47:80:ca:c9:b5:76:8b:57:
ba:ac:eb:a1:72:2e:dc:10:08:41:39:4d:5f:bf:d6:
d7:65:6a:db:62:dd:a1:a8:17:52:d5:b6:1d:a1:72:
ce:73:30:e2:2d:38:a4:03:b4:1a:66:56:b4:ea:8b:
43:00:86:85:86:5d:65:71:36:6e:f2:33:c0:18:05:
46:9e:ce:ad:b6:c6:e8:ef:03:bc:48:47:5e:53:5d:
c0:58:0d:52:2c:22:cd:37:e1:b4:7c:2c:60:20:bb:
06:3d:6b:d9:9b:24:e1:9b:b1:28:1e:dd:be:42:d1:
7d:95:e0:51:93:21:35:01:bc:dd:85:69:85:da:4b:
77:09:92:36:42:eb:4b:82:d3:91:65:d7:50:2e:ad:
78:5b:3f:23:08:0c:0d:3d:5c:4a:6d:f1:51:f6:69:
62:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:23:5B:EE:FE:A2:AC:EC:41:3D:B0:66:21:9E:C0:40:33:DD:39:46
X509v3 Authority Key Identifier:
keyid:AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/tCNb7v6irOxBPbBmIZ7AQDPdOUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.68.160.0/22
Signature Algorithm: sha256WithRSAEncryption
40:49:bb:47:17:38:a0:b5:7c:fd:5b:13:1a:0e:01:58:01:cd:
13:5c:7f:e7:e5:73:c2:50:8b:db:75:1b:be:8a:69:6a:c7:80:
13:06:0e:9c:f7:50:8f:50:a7:19:4b:1f:18:34:12:ed:12:6d:
10:38:32:24:a8:9c:2a:67:77:c4:f6:a7:e4:0c:d1:e2:9a:6f:
f9:b2:38:ff:02:a2:6f:77:25:55:5d:30:d2:77:3a:d7:3a:13:
e0:ab:75:22:be:bd:1b:0e:46:81:0a:31:83:1c:6e:7a:a8:8f:
29:cb:16:e5:36:0d:e4:22:81:6c:25:1a:11:ad:2b:13:4a:00:
88:18:75:8b:7e:e5:a1:71:01:ce:5b:d6:11:c7:3a:68:75:5e:
50:8c:e8:1e:5f:f5:40:58:65:cb:e7:d8:25:10:75:b6:74:e6:
e2:10:0c:fd:5c:aa:b8:a8:1a:d1:96:3b:36:34:a2:12:7b:4f:
2a:56:80:a0:65:bb:01:c5:a6:d4:eb:6d:2c:1b:1a:f1:98:b3:
0f:6a:4c:e5:48:c7:92:e2:ca:76:46:22:03:d3:71:4a:cb:d2:
32:94:de:29:c8:7e:c5:7a:7c:e1:79:1f:0b:0e:0a:c0:5e:97:
9a:49:bd:d4:56:58:d7:7e:95:5b:13:27:5e:f2:18:d1:aa:fd:
5d:5e:f1:e1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZJS2CD0EXunZ5etpxi3TwkkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiYmFkM2RlODMxZGE5NDIyMmMxYWRkMTA0Y2FmNGMzMjQ3
Njg5YWMwHhcNMjQxMDAzMTQ0NTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNDIzNWJlZWZlYTJhY2VjNDEzZGIwNjYyMTllYzA0MDMzZGQzOTQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvDRHzHje8sAHHFhqX2HQTTHybljK
qbwZ1B84ULnHesPVNKLwWGFMEh6CCkXthPcGBZuxH8DoosyhPLELnm/6fBjJRpcJ
2yvckSjjUYzVSRLKzSX3Fvy9kZynt8/iqUkSR4DKybV2i1e6rOuhci7cEAhBOU1f
v9bXZWrbYt2hqBdS1bYdoXLOczDiLTikA7QaZla06otDAIaFhl1lcTZu8jPAGAVG
ns6ttsbo7wO8SEdeU13AWA1SLCLNN+G0fCxgILsGPWvZmyThm7EoHt2+QtF9leBR
kyE1AbzdhWmF2kt3CZI2QutLgtORZddQLq14Wz8jCAwNPVxKbfFR9mli+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLQjW+7+oqzsQT2wZiGewEAz3TlGMB8GA1UdIwQY
MBaAFKu6096DHalCIsGt0QTK9MMkdomsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTdyVDNvTWRxVUlpd2EzUkJNcjB3eVIyaWF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84ZTgxNDktZDUzYy00OTkyLWJkMDct
NTVjNDM0ZWVjOTZjLzEvdENOYjd2NmlyT3hCUGJCbUlaN0FRRFBkT1VZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy84ZTgxNDktZDUzYy00OTkyLWJkMDctNTVjNDM0ZWVjOTZj
LzEvcTdyVDNvTWRxVUlpd2EzUkJNcjB3eVIyaWF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC1ESgMA0G
CSqGSIb3DQEBCwUAA4IBAQBASbtHFzigtXz9WxMaDgFYAc0TXH/n5XPCUIvbdRu+
imlqx4ATBg6c91CPUKcZSx8YNBLtEm0QODIkqJwqZ3fE9qfkDNHimm/5sjj/AqJv
dyVVXTDSdzrXOhPgq3Uivr0bDkaBCjGDHG56qI8pyxblNg3kIoFsJRoRrSsTSgCI
GHWLfuWhcQHOW9YRxzpodV5QjOgeX/VAWGXL59glEHW2dObiEAz9XKq4qBrRljs2
NKISe08qVoCgZbsBxabU620sGxrxmLMPakzlSMeS4sp2RiID03FKy9IylN4pyH7F
enzheR8LDgrAXpeaSb3UVljXfpVbEyde8hjRqv1dXvHh
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:39 2024 by rpki-client on console.sobornost.net