Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/686d4b-f15b-4530-b91b-e0c406b64672/1/bz92LHZmEEyqpL8M7lxvI1V8xrY.roa
File: bz92LHZmEEyqpL8M7lxvI1V8xrY.roa (raw, json)
Hash identifier: Y/SHL6hWOamOr48ug77IbF1xr8Fzmhtk0bWdiyjwqiI=
Subject key identifier: 6F:3F:76:2C:76:66:10:4C:AA:A4:BF:0C:EE:5C:6F:23:55:7C:C6:B6
Certificate issuer: /CN=4ed4d36e633724a1b17949bc422476964e75f065
Certificate serial: 018CC34920563612E739C7B22708B6A33F90
Authority key identifier: 4E:D4:D3:6E:63:37:24:A1:B1:79:49:BC:42:24:76:96:4E:75:F0:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TtTTbmM3JKGxeUm8QiR2lk518GU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/686d4b-f15b-4530-b91b-e0c406b64672/1/bz92LHZmEEyqpL8M7lxvI1V8xrY.roa
Signing time: Mon 01 Jan 2024 04:29:58 +0000
ROA not before: Mon 01 Jan 2024 04:29:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60941
IP address blocks: 185.21.56.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:20:56:36:12:e7:39:c7:b2:27:08:b6:a3:3f:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ed4d36e633724a1b17949bc422476964e75f065
Validity
Not Before: Jan 1 04:29:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6f3f762c7666104caaa4bf0cee5c6f23557cc6b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:14:aa:12:2c:b2:be:04:9c:30:a2:6f:d6:aa:
1b:91:80:b9:20:4c:c3:15:fb:a8:09:f4:2b:0d:31:
96:d9:94:d7:41:5e:3f:80:11:3b:e7:f2:ca:95:a7:
c5:6f:aa:85:b0:a2:d3:e0:2e:b2:3a:4b:74:8d:f2:
ea:3c:06:7d:2c:45:fe:a9:dd:72:fe:79:4f:ee:99:
9a:f5:15:7b:b1:a3:bd:e8:1f:eb:a2:31:69:e2:5e:
d1:4a:43:2b:d4:4a:35:77:d9:b4:ed:f4:cc:f5:ae:
8c:bd:bf:44:97:6f:15:bd:a5:43:90:ec:46:2b:4d:
73:f2:be:dd:aa:f4:b8:6d:d5:5f:58:f4:8e:0f:63:
b5:74:4c:8f:66:0a:4a:2f:2b:00:ee:9a:ba:46:ae:
f0:5c:0c:49:00:75:89:ed:51:6d:a6:de:d3:fc:cd:
3a:f7:bb:9d:a3:f0:79:10:be:6f:2e:65:92:f5:a6:
67:49:1d:78:f7:b6:53:16:eb:e6:e9:11:69:26:00:
3d:3b:c5:89:3a:4b:44:1e:c5:85:8c:26:64:2e:a5:
3b:b8:70:86:f9:c0:96:74:b0:3c:ac:43:f0:be:de:
ba:91:8f:4f:41:02:b7:24:d2:34:c9:96:f0:37:e8:
2e:8d:e0:b1:07:8e:7b:4c:c7:cd:b8:fc:44:f5:2a:
ce:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:3F:76:2C:76:66:10:4C:AA:A4:BF:0C:EE:5C:6F:23:55:7C:C6:B6
X509v3 Authority Key Identifier:
keyid:4E:D4:D3:6E:63:37:24:A1:B1:79:49:BC:42:24:76:96:4E:75:F0:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TtTTbmM3JKGxeUm8QiR2lk518GU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/686d4b-f15b-4530-b91b-e0c406b64672/1/bz92LHZmEEyqpL8M7lxvI1V8xrY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/686d4b-f15b-4530-b91b-e0c406b64672/1/TtTTbmM3JKGxeUm8QiR2lk518GU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.21.56.0/22
Signature Algorithm: sha256WithRSAEncryption
90:d2:93:eb:11:a4:f5:1f:06:3f:22:95:de:e8:de:7d:a2:cd:
73:98:45:c1:71:16:00:cc:b9:2b:60:84:ec:30:a0:0a:e9:71:
69:5b:b0:8d:73:b3:d6:a6:27:bb:4c:58:b6:ea:73:08:39:4d:
4d:0e:c6:34:13:73:56:37:79:89:74:73:e8:75:a4:bf:cf:f9:
18:e2:c2:3f:a4:ce:8f:7c:a6:53:7d:3f:78:8a:c5:60:fa:f5:
08:b9:a2:5d:39:c8:00:3e:d6:2c:7f:a9:24:03:09:dc:24:21:
79:e8:4e:14:26:79:e9:aa:c9:b8:11:f8:2a:c2:33:da:34:8f:
27:b8:80:27:f1:16:b9:54:63:2e:c8:65:03:93:9c:56:de:66:
4a:20:14:15:6d:bd:22:92:c1:26:d0:22:93:4c:85:17:be:8e:
fb:8a:c9:52:6e:11:e3:d5:48:c8:05:64:bd:51:cb:ac:ef:ec:
d0:55:fd:e7:fd:82:77:da:43:4c:83:fa:9f:35:ef:76:5b:23:
45:8a:79:f4:07:46:dc:e1:42:2b:46:0e:62:38:83:e9:37:af:
95:9c:6e:9b:c6:37:bf:d8:a4:b5:76:30:05:3d:be:85:f8:0a:
61:1d:ec:86:9b:58:40:13:09:0e:16:5b:12:e6:65:58:dc:52:
b3:4e:31:3d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzDSSBWNhLnOceyJwi2oz+QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlZDRkMzZlNjMzNzI0YTFiMTc5NDliYzQyMjQ3Njk2NGU3
NWYwNjUwHhcNMjQwMTAxMDQyOTU4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZjNmNzYyYzc2NjYxMDRjYWFhNGJmMGNlZTVjNmYyMzU1N2NjNmI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvxSqEiyyvgScMKJv1qobkYC5IEzD
FfuoCfQrDTGW2ZTXQV4/gBE75/LKlafFb6qFsKLT4C6yOkt0jfLqPAZ9LEX+qd1y
/nlP7pma9RV7saO96B/rojFp4l7RSkMr1Eo1d9m07fTM9a6Mvb9El28VvaVDkOxG
K01z8r7dqvS4bdVfWPSOD2O1dEyPZgpKLysA7pq6Rq7wXAxJAHWJ7VFtpt7T/M06
97udo/B5EL5vLmWS9aZnSR1497ZTFuvm6RFpJgA9O8WJOktEHsWFjCZkLqU7uHCG
+cCWdLA8rEPwvt66kY9PQQK3JNI0yZbwN+gujeCxB457TMfNuPxE9SrOrQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG8/dix2ZhBMqqS/DO5cbyNVfMa2MB8GA1UdIwQY
MBaAFE7U025jNyShsXlJvEIkdpZOdfBlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHRUVGJtTTNKS0d4ZVVtOFFpUjJsazUxOEdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy82ODZkNGItZjE1Yi00NTMwLWI5MWIt
ZTBjNDA2YjY0NjcyLzEvYno5MkxIWm1FRXlxcEw4TTdseHZJMVY4eHJZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy82ODZkNGItZjE1Yi00NTMwLWI5MWItZTBjNDA2YjY0Njcy
LzEvVHRUVGJtTTNKS0d4ZVVtOFFpUjJsazUxOEdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuRU4MA0G
CSqGSIb3DQEBCwUAA4IBAQCQ0pPrEaT1HwY/IpXe6N59os1zmEXBcRYAzLkrYITs
MKAK6XFpW7CNc7PWpie7TFi26nMIOU1NDsY0E3NWN3mJdHPodaS/z/kY4sI/pM6P
fKZTfT94isVg+vUIuaJdOcgAPtYsf6kkAwncJCF56E4UJnnpqsm4EfgqwjPaNI8n
uIAn8Ra5VGMuyGUDk5xW3mZKIBQVbb0iksEm0CKTTIUXvo77islSbhHj1UjIBWS9
Ucus7+zQVf3n/YJ32kNMg/qfNe92WyNFinn0B0bc4UIrRg5iOIPpN6+VnG6bxje/
2KS1djAFPb6F+AphHeyGm1hAEwkOFlsS5mVY3FKzTjE9
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:57 2024 by rpki-client on console.sobornost.net