Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/4193ea-c83f-4beb-a21e-a1c78a0a6bfd/1/rZnQ9TKYgB7kd4IXYZHvrKrLQPE.roa
File: rZnQ9TKYgB7kd4IXYZHvrKrLQPE.roa (raw, json)
Hash identifier: 5U5nehqKf6XD7uHa5MU6ywy7TY08lgf2oPG7i3D0E2s=
Subject key identifier: AD:99:D0:F5:32:98:80:1E:E4:77:82:17:61:91:EF:AC:AA:CB:40:F1
Certificate issuer: /CN=3ae505bfc7fd917686b1c8b3a218f5508f5a370a
Certificate serial: 0193D5C78B9BA09883E04A8D40E9D1FFD0FA
Authority key identifier: 3A:E5:05:BF:C7:FD:91:76:86:B1:C8:B3:A2:18:F5:50:8F:5A:37:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OuUFv8f9kXaGscizohj1UI9aNwo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/4193ea-c83f-4beb-a21e-a1c78a0a6bfd/1/rZnQ9TKYgB7kd4IXYZHvrKrLQPE.roa
Signing time: Tue 17 Dec 2024 18:00:44 +0000
ROA not before: Tue 17 Dec 2024 18:00:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8368
IP address blocks: 185.43.0.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d5:c7:8b:9b:a0:98:83:e0:4a:8d:40:e9:d1:ff:d0:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ae505bfc7fd917686b1c8b3a218f5508f5a370a
Validity
Not Before: Dec 17 18:00:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ad99d0f53298801ee47782176191efacaacb40f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:9b:39:74:0b:bd:6d:cb:af:75:95:50:a7:87:
4e:91:d0:13:13:06:72:ea:c6:39:38:e6:3f:d3:f2:
63:d0:95:0f:2a:12:57:8d:34:5b:aa:b9:e2:78:90:
fd:66:26:74:55:ea:c8:2d:c4:ad:b8:61:db:3f:be:
9f:45:16:2d:b4:dc:c8:4e:d5:89:fe:15:7f:65:6f:
e1:98:32:a0:eb:bf:bf:90:13:dd:34:67:1b:94:30:
03:09:34:7b:84:86:cc:41:cd:14:4f:d0:54:95:d7:
76:e9:0b:dd:f5:8b:69:9f:09:d1:7f:24:5a:d2:1a:
f2:9d:bc:e0:6a:27:39:ad:88:53:e2:43:42:eb:54:
e1:44:a4:d2:60:3b:85:ce:d3:ef:02:48:bd:8f:87:
c0:bd:28:40:28:b4:8b:5f:a7:f0:44:65:0e:dd:a1:
c1:eb:09:7a:d3:b4:4d:39:2f:92:16:22:8c:76:97:
51:9f:52:fa:bc:5f:22:10:1f:b8:75:fc:10:b7:55:
d4:b6:8b:64:b4:c8:8e:c5:10:5c:87:2d:e5:4e:f3:
db:a5:19:d7:f8:f9:b1:62:c3:0c:78:58:3a:f3:2f:
cd:a0:34:1c:c8:ff:a9:a5:74:29:81:14:8e:17:af:
1b:12:c4:87:b8:c3:70:70:7c:fd:f1:0b:dc:ee:88:
bb:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:99:D0:F5:32:98:80:1E:E4:77:82:17:61:91:EF:AC:AA:CB:40:F1
X509v3 Authority Key Identifier:
keyid:3A:E5:05:BF:C7:FD:91:76:86:B1:C8:B3:A2:18:F5:50:8F:5A:37:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OuUFv8f9kXaGscizohj1UI9aNwo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/4193ea-c83f-4beb-a21e-a1c78a0a6bfd/1/rZnQ9TKYgB7kd4IXYZHvrKrLQPE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/4193ea-c83f-4beb-a21e-a1c78a0a6bfd/1/OuUFv8f9kXaGscizohj1UI9aNwo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.43.0.0/23
Signature Algorithm: sha256WithRSAEncryption
0a:d4:18:3b:53:78:c3:d3:1c:20:8b:e3:d3:56:40:b1:dc:eb:
a3:f7:1f:3b:d6:ea:98:69:0f:6c:f0:b7:51:57:32:3c:d4:da:
5f:3c:25:62:76:d6:56:06:d8:cc:24:d3:f8:2c:6d:98:9a:94:
45:53:2c:fd:be:30:4d:a5:7c:8c:ee:55:8c:71:54:70:65:ac:
07:e2:e9:40:79:fb:79:88:6e:19:1d:46:0f:7c:12:0a:b8:aa:
27:d3:c1:3a:e9:d4:04:7a:98:62:0c:33:6e:02:8c:3b:6c:c2:
66:c5:e5:a6:d5:52:48:45:e0:98:9f:1b:27:3b:65:b3:2b:ff:
ef:a8:58:33:a8:96:c0:cf:bc:0a:5e:ea:84:32:88:5d:38:a9:
bf:d3:94:b2:3c:f2:56:7c:91:78:f3:3f:55:7a:aa:30:f9:6e:
6b:f8:18:74:4f:8b:37:73:4f:45:6c:f6:75:06:90:62:65:0a:
50:86:ed:93:7a:07:02:2c:94:6c:c0:b3:cc:16:fe:bc:91:83:
74:2e:6f:70:b7:c6:33:28:33:59:f8:a6:87:af:dc:d5:13:c2:
45:0c:39:28:5b:21:a0:4f:cd:69:0f:53:2f:c3:0a:35:8c:ed:
cd:ad:43:28:3a:c6:b9:98:0b:12:9c:63:ac:61:5d:4c:41:fb:
12:90:e6:d0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZPVx4uboJiD4EqNQOnR/9D6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhZTUwNWJmYzdmZDkxNzY4NmIxYzhiM2EyMThmNTUwOGY1
YTM3MGEwHhcNMjQxMjE3MTgwMDQ0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZDk5ZDBmNTMyOTg4MDFlZTQ3NzgyMTc2MTkxZWZhY2FhY2I0MGYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmps5dAu9bcuvdZVQp4dOkdATEwZy
6sY5OOY/0/Jj0JUPKhJXjTRbqrnieJD9ZiZ0VerILcStuGHbP76fRRYttNzITtWJ
/hV/ZW/hmDKg67+/kBPdNGcblDADCTR7hIbMQc0UT9BUldd26Qvd9YtpnwnRfyRa
0hrynbzgaic5rYhT4kNC61ThRKTSYDuFztPvAki9j4fAvShAKLSLX6fwRGUO3aHB
6wl607RNOS+SFiKMdpdRn1L6vF8iEB+4dfwQt1XUtotktMiOxRBchy3lTvPbpRnX
+PmxYsMMeFg68y/NoDQcyP+ppXQpgRSOF68bEsSHuMNwcHz98Qvc7oi7jwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK2Z0PUymIAe5HeCF2GR76yqy0DxMB8GA1UdIwQY
MBaAFDrlBb/H/ZF2hrHIs6IY9VCPWjcKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3VVRnY4ZjlrWGFHc2Npem9oajFVSTlhTndvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS80MTkzZWEtYzgzZi00YmViLWEyMWUt
YTFjNzhhMGE2YmZkLzEvclpuUTlUS1lnQjdrZDRJWFlaSHZyS3JMUVBFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS80MTkzZWEtYzgzZi00YmViLWEyMWUtYTFjNzhhMGE2YmZk
LzEvT3VVRnY4ZjlrWGFHc2Npem9oajFVSTlhTndvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuSsAMA0G
CSqGSIb3DQEBCwUAA4IBAQAK1Bg7U3jD0xwgi+PTVkCx3Ouj9x871uqYaQ9s8LdR
VzI81NpfPCVidtZWBtjMJNP4LG2YmpRFUyz9vjBNpXyM7lWMcVRwZawH4ulAeft5
iG4ZHUYPfBIKuKon08E66dQEephiDDNuAow7bMJmxeWm1VJIReCYnxsnO2WzK//v
qFgzqJbAz7wKXuqEMohdOKm/05SyPPJWfJF48z9Veqow+W5r+Bh0T4s3c09FbPZ1
BpBiZQpQhu2TegcCLJRswLPMFv68kYN0Lm9wt8YzKDNZ+KaHr9zVE8JFDDkoWyGg
T81pD1Mvwwo1jO3NrUMoOsa5mAsSnGOsYV1MQfsSkObQ
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:40 2024 by rpki-client on console.sobornost.net