Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f3ebce-9608-4180-a891-dce0d0ae6703/1/e27W2WgEBrj-NgRoP51mgAC3hhY.roa
File: e27W2WgEBrj-NgRoP51mgAC3hhY.roa (raw, json)
Hash identifier: Her+ixxXkYYtVaQRIQm1yApbJOr6mYbempk08xTrf60=
Subject key identifier: 7B:6E:D6:D9:68:04:06:B8:FE:36:04:68:3F:9D:66:80:00:B7:86:16
Certificate issuer: /CN=3b11583aca1e8059fd31e267e8302d0c2fe008d6
Certificate serial: 018C344410C02FC2287B1C5ADCBF48D3571B
Authority key identifier: 3B:11:58:3A:CA:1E:80:59:FD:31:E2:67:E8:30:2D:0C:2F:E0:08:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OxFYOsoegFn9MeJn6DAtDC_gCNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f3ebce-9608-4180-a891-dce0d0ae6703/1/e27W2WgEBrj-NgRoP51mgAC3hhY.roa
Signing time: Mon 04 Dec 2023 09:58:45 +0000
ROA not before: Mon 04 Dec 2023 09:58:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29684
IP address blocks: 46.235.88.0/21 maxlen: 24
212.12.160.0/19 maxlen: 24
212.12.162.0/23 maxlen: 23
212.12.162.0/24 maxlen: 24
212.12.163.0/24 maxlen: 24
212.12.164.0/23 maxlen: 23
212.12.169.0/24 maxlen: 24
212.12.170.0/23 maxlen: 23
176.241.184.0/21 maxlen: 24
212.12.172.0/23 maxlen: 23
212.12.166.0/23 maxlen: 23
212.12.168.0/24 maxlen: 24
212.12.168.0/23 maxlen: 23
212.12.174.0/24 maxlen: 24
212.12.174.0/23 maxlen: 23
212.12.176.0/20 maxlen: 20
212.12.175.0/24 maxlen: 24
212.12.176.0/23 maxlen: 23
212.12.176.0/24 maxlen: 24
212.12.177.0/24 maxlen: 24
212.12.178.0/23 maxlen: 23
212.12.183.0/24 maxlen: 24
212.12.184.0/23 maxlen: 23
212.12.185.0/24 maxlen: 24
212.12.186.0/23 maxlen: 23
212.12.180.0/23 maxlen: 23
212.12.182.0/23 maxlen: 23
212.12.182.0/24 maxlen: 24
212.12.187.0/24 maxlen: 24
212.12.188.0/23 maxlen: 23
212.12.189.0/24 maxlen: 24
212.12.190.0/23 maxlen: 23
212.12.191.0/24 maxlen: 24
88.85.224.0/19 maxlen: 24
185.10.112.0/22 maxlen: 24
178.20.144.0/21 maxlen: 24
2a00:1560::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:34:44:10:c0:2f:c2:28:7b:1c:5a:dc:bf:48:d3:57:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b11583aca1e8059fd31e267e8302d0c2fe008d6
Validity
Not Before: Dec 4 09:58:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7b6ed6d9680406b8fe3604683f9d668000b78616
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:84:a9:15:87:55:75:b7:b7:11:da:a2:e7:18:
b3:be:e4:a5:47:89:52:b7:46:ee:38:5b:16:b3:ee:
f0:35:44:26:94:6f:55:75:dd:a1:dc:22:c8:53:99:
ea:b1:75:30:1f:34:65:db:e7:b0:da:73:8b:e3:18:
09:cd:1b:a4:ef:64:da:b4:9a:bf:a4:ff:42:0a:13:
b8:2f:f9:08:57:a4:a9:08:b1:81:fc:7b:b4:52:e3:
cd:7a:19:d0:4d:1b:d9:32:fd:f3:cb:7a:e8:e8:35:
bc:d6:7e:3b:c1:d9:e6:1e:84:83:2c:11:35:16:84:
fe:44:a0:75:cf:05:88:73:8a:8a:49:15:e5:a6:94:
da:bd:fa:f2:8c:ac:43:7b:e1:f7:d5:17:b8:a3:8c:
c2:55:1c:cd:cb:63:29:be:fb:15:04:36:99:50:d1:
51:c2:c7:ae:26:97:40:23:a1:73:a1:26:cc:c6:89:
ba:0e:eb:b1:38:6c:49:d9:f3:85:7e:42:0e:29:12:
db:5b:60:5b:39:af:fc:91:a1:d6:e0:1b:17:02:20:
cf:f0:d9:ca:31:2c:19:5b:64:d0:dd:73:3a:21:ce:
58:b8:b2:70:ba:a4:c0:6a:6e:94:54:03:a2:75:6c:
c7:b5:6d:ca:eb:ff:6d:28:73:eb:6f:15:ef:a1:37:
70:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:6E:D6:D9:68:04:06:B8:FE:36:04:68:3F:9D:66:80:00:B7:86:16
X509v3 Authority Key Identifier:
keyid:3B:11:58:3A:CA:1E:80:59:FD:31:E2:67:E8:30:2D:0C:2F:E0:08:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OxFYOsoegFn9MeJn6DAtDC_gCNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f3ebce-9608-4180-a891-dce0d0ae6703/1/e27W2WgEBrj-NgRoP51mgAC3hhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f3ebce-9608-4180-a891-dce0d0ae6703/1/OxFYOsoegFn9MeJn6DAtDC_gCNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.235.88.0/21
88.85.224.0/19
176.241.184.0/21
178.20.144.0/21
185.10.112.0/22
212.12.160.0/19
IPv6:
2a00:1560::/32
Signature Algorithm: sha256WithRSAEncryption
9b:b1:f8:4a:c2:2b:4c:85:76:6e:f7:d3:a0:31:bf:d6:0d:30:
58:de:67:5b:b5:8b:c1:28:31:69:d5:5f:f6:f3:4e:d7:6d:11:
9c:0c:a6:da:c9:ed:d0:2c:e9:59:e9:de:bd:ff:f3:e1:c0:20:
f7:24:a3:d0:fc:93:b3:90:fa:d4:2d:68:89:19:d1:f8:c2:26:
8f:e0:bd:a7:2b:88:be:5d:e6:98:89:84:27:0b:00:e3:d7:41:
c6:f2:da:17:0d:a2:c0:af:0e:77:9c:78:90:d0:ba:e6:d6:9e:
8b:44:c9:64:a5:04:17:ef:06:9a:73:c5:e7:1c:40:bc:b2:c1:
26:7d:95:a7:a6:ac:fa:ce:ca:80:bc:b6:52:d8:46:7a:6f:29:
b5:0f:80:48:21:33:8c:57:c7:17:0f:47:d6:2b:e4:23:19:25:
ff:54:e2:e7:de:9e:78:36:c1:56:8f:34:e3:f9:74:a1:b0:14:
3e:4f:b7:de:0a:be:8c:48:f3:e5:3f:e0:24:bb:70:43:c8:9c:
10:cb:35:f5:d1:a5:16:b1:ad:95:e3:c4:dc:2a:8e:2d:5f:e0:
4c:fd:29:26:d1:ad:e7:c3:1b:03:63:a4:6c:16:48:9d:3c:64:
a0:02:46:9e:10:92:c6:54:fd:0c:6f:44:5f:1b:6f:d3:68:de:
2f:0d:65:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:36 2023 by rpki-client on console.sobornost.net