Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/It6oji0fVcDU3kXqxTLP7e6j5ms.roa
File: It6oji0fVcDU3kXqxTLP7e6j5ms.roa (raw, json)
Hash identifier: EAfromWOKrVdAtdUdeDjEC0qXO42lqiIn7lDl7o67sE=
Subject key identifier: 22:DE:A8:8E:2D:1F:55:C0:D4:DE:45:EA:C5:32:CF:ED:EE:A3:E6:6B
Certificate issuer: /CN=7299ce64a0f1624d7bb2d2969e5c11adbaa5485c
Certificate serial: 0190DE27F4D376CB0010843157B11E08C76D
Authority key identifier: 72:99:CE:64:A0:F1:62:4D:7B:B2:D2:96:9E:5C:11:AD:BA:A5:48:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cpnOZKDxYk17stKWnlwRrbqlSFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/It6oji0fVcDU3kXqxTLP7e6j5ms.roa
Signing time: Tue 23 Jul 2024 05:54:38 +0000
ROA not before: Tue 23 Jul 2024 05:54:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214499
IP address blocks: 212.232.20.0/23 maxlen: 23
2001:67c:21f4::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:de:27:f4:d3:76:cb:00:10:84:31:57:b1:1e:08:c7:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7299ce64a0f1624d7bb2d2969e5c11adbaa5485c
Validity
Not Before: Jul 23 05:54:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=22dea88e2d1f55c0d4de45eac532cfedeea3e66b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:b8:24:b9:02:19:5e:fa:8a:05:c1:92:be:23:
e5:80:43:4b:4f:37:44:a1:8c:61:87:08:84:18:b4:
6f:1c:a3:94:d8:6d:61:2f:26:18:fd:a1:50:bb:fd:
1a:64:75:cc:30:68:b3:bc:6a:57:b8:6e:67:ae:8c:
99:d9:02:f5:14:b9:32:71:26:0d:e6:54:58:8a:11:
21:5a:65:ee:6f:77:95:ff:26:af:27:dc:3e:b8:60:
7a:f8:bd:22:b1:c5:c1:4a:ee:35:0b:e4:4f:1f:f4:
53:d6:1c:41:79:0c:78:fd:ba:39:25:40:c1:f8:cf:
82:a4:7a:77:56:b4:7d:25:13:b7:bc:1d:af:67:30:
85:f2:19:2b:fe:c2:48:db:d3:c0:ca:c3:2f:14:8e:
a4:f7:b6:e1:b0:7c:6a:c4:86:cb:5b:3d:77:db:15:
25:b8:ce:35:c0:10:4a:f8:f6:65:5f:3d:75:a6:2a:
be:09:27:30:66:37:bb:02:ef:c0:4e:a2:3b:a8:31:
f4:d8:b3:f0:3c:76:18:44:29:0f:1c:f4:47:a1:72:
0f:25:f3:1a:dd:7c:e3:4a:b5:8e:6b:cc:c8:d1:c2:
98:a6:79:e3:68:74:37:6f:fc:7e:86:49:d1:31:a2:
46:a4:29:c7:2e:97:28:55:39:90:5c:46:94:01:e4:
7c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:DE:A8:8E:2D:1F:55:C0:D4:DE:45:EA:C5:32:CF:ED:EE:A3:E6:6B
X509v3 Authority Key Identifier:
keyid:72:99:CE:64:A0:F1:62:4D:7B:B2:D2:96:9E:5C:11:AD:BA:A5:48:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cpnOZKDxYk17stKWnlwRrbqlSFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/It6oji0fVcDU3kXqxTLP7e6j5ms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/cpnOZKDxYk17stKWnlwRrbqlSFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.232.20.0/23
IPv6:
2001:67c:21f4::/48
Signature Algorithm: sha256WithRSAEncryption
20:32:82:01:6b:3b:4d:31:a6:84:39:78:7a:54:13:80:2d:0a:
2d:fe:d8:65:ba:88:94:51:31:12:64:b1:19:b3:b2:73:62:48:
f2:8e:81:7d:88:b8:a9:a0:81:52:9c:de:ff:0c:c7:2a:7b:fe:
e8:2e:be:9c:4b:26:71:d8:4d:14:8f:21:97:cf:54:e7:4b:82:
ad:43:21:78:7e:5c:b0:ff:77:a1:76:b0:25:3d:6f:10:d0:d2:
b5:e5:09:70:ef:79:d6:53:50:ee:9d:46:2a:e5:82:b3:70:ff:
ee:38:ae:6f:d9:63:44:05:e6:92:aa:f5:50:11:89:ba:0b:28:
f9:59:8c:67:10:82:ea:48:84:f9:7b:c7:73:b3:36:c1:e5:0f:
9b:df:9c:91:7c:e1:36:f7:59:70:4b:bb:48:fd:8e:a4:51:d7:
b3:ac:29:04:2a:c5:ac:9a:71:05:10:4a:d6:d6:1c:39:4e:a7:
ad:1a:fc:ed:ad:24:b6:c3:3d:5c:9f:84:d3:5b:df:2f:2f:f0:
86:79:1d:59:51:e8:90:94:66:d5:01:3d:fa:41:a2:8f:18:a8:
cf:ce:8b:8b:5f:0b:f2:d2:7c:62:63:71:c3:55:ae:d6:2c:5b:
56:7a:dd:e3:42:6d:60:a9:6a:87:da:e6:d2:9a:97:b7:40:15:
9b:7c:e6:a5
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZDeJ/TTdssAEIQxV7EeCMdtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyOTljZTY0YTBmMTYyNGQ3YmIyZDI5NjllNWMxMWFkYmFh
NTQ4NWMwHhcNMjQwNzIzMDU1NDM4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMmRlYTg4ZTJkMWY1NWMwZDRkZTQ1ZWFjNTMyY2ZlZGVlYTNlNjZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjLgkuQIZXvqKBcGSviPlgENLTzdE
oYxhhwiEGLRvHKOU2G1hLyYY/aFQu/0aZHXMMGizvGpXuG5nroyZ2QL1FLkycSYN
5lRYihEhWmXub3eV/yavJ9w+uGB6+L0iscXBSu41C+RPH/RT1hxBeQx4/bo5JUDB
+M+CpHp3VrR9JRO3vB2vZzCF8hkr/sJI29PAysMvFI6k97bhsHxqxIbLWz132xUl
uM41wBBK+PZlXz11piq+CScwZje7Au/ATqI7qDH02LPwPHYYRCkPHPRHoXIPJfMa
3XzjSrWOa8zI0cKYpnnjaHQ3b/x+hknRMaJGpCnHLpcoVTmQXEaUAeR8KQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFCLeqI4tH1XA1N5F6sUyz+3uo+ZrMB8GA1UdIwQY
MBaAFHKZzmSg8WJNe7LSlp5cEa26pUhcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY3BuT1pLRHhZazE3c3RLV25sd1JyYnFsU0Z3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi9jMjBmYmEtNWI2Ny00MzhjLWFiMDAt
YzdlYjM0ZTJkY2E2LzEvSXQ2b2ppMGZWY0RVM2tYcXhUTFA3ZTZqNW1zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNi9jMjBmYmEtNWI2Ny00MzhjLWFiMDAtYzdlYjM0ZTJkY2E2
LzEvY3BuT1pLRHhZazE3c3RLV25sd1JyYnFsU0Z3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQB1OgUMA8E
AgACMAkDBwAgAQZ8IfQwDQYJKoZIhvcNAQELBQADggEBACAyggFrO00xpoQ5eHpU
E4AtCi3+2GW6iJRRMRJksRmzsnNiSPKOgX2IuKmggVKc3v8Mxyp7/uguvpxLJnHY
TRSPIZfPVOdLgq1DIXh+XLD/d6F2sCU9bxDQ0rXlCXDvedZTUO6dRirlgrNw/+44
rm/ZY0QF5pKq9VARiboLKPlZjGcQgupIhPl7x3OzNsHlD5vfnJF84Tb3WXBLu0j9
jqRR17OsKQQqxayacQUQStbWHDlOp60a/O2tJLbDPVyfhNNb3y8v8IZ5HVlR6JCU
ZtUBPfpBoo8YqM/Oi4tfC/LSfGJjccNVrtYsW1Z63eNCbWCpaofa5tKal7dAFZt8
5qU=
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:02 2024 by rpki-client on console.sobornost.net