Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/44d59e-dc7b-4d2c-ba45-4a91fabd8a8e/1/2owDD7SgVUfxPrZgmgtnYUh14To.roa
File: 2owDD7SgVUfxPrZgmgtnYUh14To.roa (raw, json)
Hash identifier: utVRWtqLR738a6U6jz9f4VqwNV8zKcUzIpTSkifIG18=
Subject key identifier: DA:8C:03:0F:B4:A0:55:47:F1:3E:B6:60:9A:0B:67:61:48:75:E1:3A
Certificate issuer: /CN=e69e45a4481456148e2e00349d87aa57c56b24a0
Certificate serial: 01936711F52876E4AE57D266FDDE0B8C88E7
Authority key identifier: E6:9E:45:A4:48:14:56:14:8E:2E:00:34:9D:87:AA:57:C5:6B:24:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5p5FpEgUVhSOLgA0nYeqV8VrJKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/44d59e-dc7b-4d2c-ba45-4a91fabd8a8e/1/2owDD7SgVUfxPrZgmgtnYUh14To.roa
Signing time: Tue 26 Nov 2024 06:04:10 +0000
ROA not before: Tue 26 Nov 2024 06:04:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44894
IP address blocks: 89.21.76.0/24 maxlen: 24
91.193.128.0/22 maxlen: 22
91.193.128.0/23 maxlen: 23
91.193.128.0/24 maxlen: 24
91.193.129.0/24 maxlen: 24
91.193.130.0/23 maxlen: 23
91.193.130.0/24 maxlen: 24
91.193.131.0/24 maxlen: 24
91.203.60.0/22 maxlen: 22
91.203.60.0/23 maxlen: 23
91.203.60.0/24 maxlen: 24
91.203.61.0/24 maxlen: 24
91.203.62.0/23 maxlen: 23
91.203.62.0/24 maxlen: 24
91.203.63.0/24 maxlen: 24
193.150.49.0/24 maxlen: 24
194.107.230.0/23 maxlen: 23
194.107.230.0/24 maxlen: 24
194.107.231.0/24 maxlen: 24
194.110.2.0/23 maxlen: 23
194.110.2.0/24 maxlen: 24
194.110.3.0/24 maxlen: 24
194.150.104.0/23 maxlen: 23
194.150.104.0/24 maxlen: 24
194.150.105.0/24 maxlen: 24
194.150.106.0/24 maxlen: 24
2001:67c:2f2c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:67:11:f5:28:76:e4:ae:57:d2:66:fd:de:0b:8c:88:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e69e45a4481456148e2e00349d87aa57c56b24a0
Validity
Not Before: Nov 26 06:04:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=da8c030fb4a05547f13eb6609a0b67614875e13a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:44:54:58:63:fc:9b:3d:83:25:9e:d2:31:87:
2d:fc:4c:2d:ca:01:b8:1b:29:7f:24:ff:0c:2d:5e:
5a:7c:9c:5d:7c:fe:36:bf:1a:29:59:c5:ad:4e:c6:
e7:56:be:da:27:82:14:e1:d2:aa:d7:fa:36:be:67:
ce:4d:42:66:a0:46:fe:77:0d:bf:a4:1c:2f:cb:ce:
b6:dd:f2:1c:23:2e:5c:a3:3f:37:7a:10:cc:07:1e:
f6:e6:5b:ac:ae:82:b0:d3:9c:92:df:e7:18:93:0c:
17:dc:5b:54:3c:2c:6d:35:92:a2:67:05:38:30:cb:
68:8e:18:8f:02:dc:29:64:35:63:48:c7:f0:f6:9f:
13:01:a3:3c:e7:30:39:07:c4:d4:3c:e1:63:1d:bf:
c6:d0:5a:41:bc:57:8e:1e:a8:2e:54:c3:21:97:a7:
8e:09:a4:30:87:b4:16:b4:ef:21:1f:c0:1d:74:95:
63:35:67:90:6a:52:40:b3:da:2a:8c:9e:cd:2f:1d:
58:90:90:70:53:a0:e5:36:6f:ea:69:cd:ca:ba:27:
e0:70:96:49:47:bf:04:04:2d:62:3f:76:2b:49:9f:
77:23:c2:e0:7e:7c:95:54:78:15:fb:6e:b4:f6:d1:
6d:ca:a0:23:7c:bd:38:82:77:03:5a:0c:d3:1c:b7:
9f:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:8C:03:0F:B4:A0:55:47:F1:3E:B6:60:9A:0B:67:61:48:75:E1:3A
X509v3 Authority Key Identifier:
keyid:E6:9E:45:A4:48:14:56:14:8E:2E:00:34:9D:87:AA:57:C5:6B:24:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5p5FpEgUVhSOLgA0nYeqV8VrJKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/44d59e-dc7b-4d2c-ba45-4a91fabd8a8e/1/2owDD7SgVUfxPrZgmgtnYUh14To.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/44d59e-dc7b-4d2c-ba45-4a91fabd8a8e/1/5p5FpEgUVhSOLgA0nYeqV8VrJKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.21.76.0/24
91.193.128.0/22
91.203.60.0/22
193.150.49.0/24
194.107.230.0/23
194.110.2.0/23
194.150.104.0-194.150.106.255
IPv6:
2001:67c:2f2c::/48
Signature Algorithm: sha256WithRSAEncryption
97:fe:ae:36:c8:ae:82:94:31:bb:18:59:09:e9:d6:53:b9:f8:
87:19:30:f1:4e:76:c4:3d:a2:95:a4:3e:78:84:38:c9:07:25:
35:6a:af:05:75:71:4e:e5:26:78:2b:52:80:ec:d7:a1:b1:03:
3f:80:7f:fe:44:5d:1f:35:ac:94:f1:77:a9:77:43:0e:af:76:
41:03:cc:43:5f:d1:90:57:9f:8b:ae:ab:80:83:6d:80:7f:c3:
17:d4:f2:f8:5e:99:82:72:c9:c8:c6:c1:44:5a:8a:fd:03:bb:
e5:1f:57:95:a5:bf:d5:13:c6:a3:e9:49:d3:4f:9e:f5:83:65:
fa:83:f2:13:f2:e3:31:7c:e5:3a:db:5e:94:dc:7a:ad:b1:cd:
c8:4d:0d:8d:e7:73:a5:2a:54:b0:7a:d4:1b:a2:a0:3d:0a:57:
76:e6:a2:a8:9a:bc:4d:99:16:12:a0:fa:4a:86:13:c4:e8:9f:
2d:58:8d:d7:ad:90:d6:07:07:f7:9c:c7:17:fa:05:c7:80:97:
e7:de:61:29:94:fa:03:ab:06:88:90:1b:a8:c9:e8:f7:8c:68:
a2:68:20:ce:ba:e0:38:62:10:f8:f1:f2:d2:d9:9d:0f:f3:40:
c4:2e:df:78:78:b3:0b:1a:5c:1f:0d:c9:a4:c4:f5:b5:37:25:
c3:4d:a8:92
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:45 2024 by rpki-client on console.sobornost.net