Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/MRx3u2U6tGkA4XLtwzRQdXfwvl0.roa
File: MRx3u2U6tGkA4XLtwzRQdXfwvl0.roa (raw, json)
Hash identifier: IbeTEpzDKEz5FUvQ6BajZrbkW3DFMNhjaK61Kc2bl/E=
Subject key identifier: 31:1C:77:BB:65:3A:B4:69:00:E1:72:ED:C3:34:50:75:77:F0:BE:5D
Certificate issuer: /CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Certificate serial: 01935442475113C61BE63AC904CB70B6DBDF
Authority key identifier: 50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/MRx3u2U6tGkA4XLtwzRQdXfwvl0.roa
Signing time: Fri 22 Nov 2024 14:24:09 +0000
ROA not before: Fri 22 Nov 2024 14:24:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201086
IP address blocks: 185.86.80.0/24 maxlen: 24
185.205.19.0/24 maxlen: 24
185.254.95.0/24 maxlen: 24
193.36.63.0/24 maxlen: 24
194.145.138.0/24 maxlen: 24
2a0a:fa40::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:42:47:51:13:c6:1b:e6:3a:c9:04:cb:70:b6:db:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Validity
Not Before: Nov 22 14:24:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=311c77bb653ab46900e172edc334507577f0be5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:0a:2f:db:3d:a6:ed:6a:bb:aa:66:d7:30:eb:
64:0b:79:6d:35:5f:f9:ad:2f:91:e5:42:a6:9b:3a:
36:81:b7:97:55:76:e0:c9:41:06:98:0c:f2:7f:cc:
3d:8d:f6:4c:5a:30:b3:a3:7e:e7:2c:30:39:a6:48:
a2:ca:8f:7e:26:88:72:66:c3:a0:bb:4c:27:8a:a9:
09:3d:e4:39:d7:66:2e:96:f4:07:59:1e:fb:be:09:
34:4f:92:01:bf:86:fe:fa:bd:40:1a:8b:ca:16:90:
df:97:33:41:0e:e7:39:d3:69:99:5e:72:35:09:9a:
8d:f6:90:85:09:6f:a5:a0:20:98:13:6a:b8:35:9c:
c1:8c:49:3c:69:9c:96:0b:00:92:b8:e9:cd:7f:3c:
05:f0:5a:45:5e:8e:27:dd:56:55:6a:21:ec:99:ca:
61:be:fd:55:f8:75:65:12:94:e3:3a:0f:2a:02:44:
1b:2d:f2:33:80:90:f0:0e:81:bf:ac:64:76:5b:67:
83:4f:82:c4:d3:37:94:40:87:0c:dd:b2:f5:fd:55:
f5:11:4d:af:09:c3:87:37:62:b2:fd:a5:88:21:53:
cd:7f:0a:40:b5:ed:a5:a9:8a:ba:47:0d:ab:c0:6f:
56:55:4f:c5:0e:79:aa:d4:84:e3:d2:5e:89:d0:c9:
75:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:1C:77:BB:65:3A:B4:69:00:E1:72:ED:C3:34:50:75:77:F0:BE:5D
X509v3 Authority Key Identifier:
keyid:50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/MRx3u2U6tGkA4XLtwzRQdXfwvl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/UFkuaIlccGi0ZVUIkXrVu929Cl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.80.0/24
185.205.19.0/24
185.254.95.0/24
193.36.63.0/24
194.145.138.0/24
IPv6:
2a0a:fa40::/32
Signature Algorithm: sha256WithRSAEncryption
2d:72:17:ac:80:dd:45:96:90:fd:1c:86:6c:25:9d:8f:2a:6b:
10:d2:6b:1e:e9:cb:5a:a8:5c:2c:da:5b:4c:1a:a7:a5:8e:a0:
79:c2:34:45:14:9b:7c:e9:10:98:46:40:b0:a8:cc:05:2e:38:
37:c6:1e:f3:67:ee:3b:38:5c:83:ce:1b:9f:07:10:5c:16:40:
c8:8f:cd:fe:f0:16:2f:a4:b8:1b:af:d0:56:6b:7c:a7:9b:44:
69:67:55:ad:f7:3c:0c:87:a8:90:12:a4:e9:ef:4e:dd:71:9f:
a0:e0:24:3e:bf:38:25:54:95:70:20:80:dd:92:aa:b1:81:89:
c0:91:4b:a6:57:f6:60:26:a4:0f:d6:9f:64:0e:03:c4:1b:12:
b3:6c:37:33:06:98:e1:c1:91:ca:4e:80:9a:2c:83:d4:51:e3:
63:84:20:27:ac:cc:e1:14:3d:cd:ba:50:35:7e:06:47:d6:fa:
31:2c:8f:8d:90:f1:93:6b:7c:28:da:d8:bc:c0:b6:d6:4f:6d:
66:bf:f0:99:49:d5:17:34:d1:8b:d1:25:af:7d:dc:0b:c8:df:
19:6e:d2:b5:23:a3:88:c9:02:0d:4c:96:fb:a1:b2:3b:de:52:
ae:4e:6d:65:9b:d6:93:72:61:5e:5c:5f:a4:39:28:55:39:36:
c3:e3:6b:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:56 2024 by rpki-client on console.sobornost.net