Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/d665e6-f95d-4347-8565-d4f5317c5830/1/LHzzJrr3DcmECPGG_fqqsM_7_rY.roa
File: LHzzJrr3DcmECPGG_fqqsM_7_rY.roa (raw, json)
Hash identifier: xbGUWep3R4m20EBS1pvUmZEZgzlrmc0F2TOJfUqepzA=
Subject key identifier: 2C:7C:F3:26:BA:F7:0D:C9:84:08:F1:86:FD:FA:AA:B0:CF:FB:FE:B6
Certificate issuer: /CN=96b8121d556df453456553dcb45c4143f4cdd213
Certificate serial: 0192D72B11D098AC4E01878D5A8F4D9DD283
Authority key identifier: 96:B8:12:1D:55:6D:F4:53:45:65:53:DC:B4:5C:41:43:F4:CD:D2:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lrgSHVVt9FNFZVPctFxBQ_TN0hM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/d665e6-f95d-4347-8565-d4f5317c5830/1/LHzzJrr3DcmECPGG_fqqsM_7_rY.roa
Signing time: Tue 29 Oct 2024 07:26:16 +0000
ROA not before: Tue 29 Oct 2024 07:26:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41465
IP address blocks: 89.19.192.0/24 maxlen: 24
89.19.193.0/24 maxlen: 24
89.19.194.0/24 maxlen: 24
89.19.195.0/24 maxlen: 24
89.19.196.0/24 maxlen: 24
89.19.197.0/24 maxlen: 24
89.19.198.0/24 maxlen: 24
89.19.199.0/24 maxlen: 24
89.19.200.0/24 maxlen: 24
89.19.201.0/24 maxlen: 24
89.19.202.0/24 maxlen: 24
89.19.203.0/24 maxlen: 24
89.19.204.0/24 maxlen: 24
89.19.205.0/24 maxlen: 24
89.19.206.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d7:2b:11:d0:98:ac:4e:01:87:8d:5a:8f:4d:9d:d2:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96b8121d556df453456553dcb45c4143f4cdd213
Validity
Not Before: Oct 29 07:26:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2c7cf326baf70dc98408f186fdfaaab0cffbfeb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e8:cf:89:87:12:61:37:0e:d1:9a:48:1a:34:
bb:ff:42:cd:d3:a1:9c:9a:b3:77:fe:57:47:fa:96:
a6:f2:09:f9:95:f7:29:6e:b4:2b:a0:cd:40:26:ae:
68:8f:f2:3a:6a:03:a6:12:cb:c9:49:63:64:c3:bb:
47:ae:c4:2e:c8:26:a1:8d:74:81:15:b8:b3:dd:ff:
5e:6a:cb:b2:f9:98:7d:5f:d6:7e:e9:b4:e0:2e:08:
ab:0a:54:a3:e6:07:d4:5b:91:47:e3:10:f2:7a:55:
67:71:1b:1d:5f:c7:a6:6c:8c:92:1f:ab:8f:db:16:
3a:1c:f3:75:00:a0:0f:6a:43:c6:84:c2:32:3d:83:
4f:99:0c:37:6c:42:96:12:d9:5a:e1:24:33:0a:2e:
34:95:31:cc:23:df:0b:2c:43:3e:9e:17:3d:de:af:
13:15:bb:5c:c2:0e:e3:08:7a:a9:5e:3a:6e:8a:77:
15:63:0d:32:96:56:19:18:11:ee:9f:41:d9:2c:dd:
5a:80:a8:7c:6c:80:01:31:58:c8:f8:7e:92:a3:1c:
16:ba:33:a9:cd:92:0e:08:c4:f9:49:32:14:00:e8:
3f:04:87:91:b8:66:df:cf:8a:e6:47:5b:54:df:8a:
c7:e4:00:4c:f4:a3:2e:e1:a8:00:be:7e:d2:49:d2:
9d:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:7C:F3:26:BA:F7:0D:C9:84:08:F1:86:FD:FA:AA:B0:CF:FB:FE:B6
X509v3 Authority Key Identifier:
keyid:96:B8:12:1D:55:6D:F4:53:45:65:53:DC:B4:5C:41:43:F4:CD:D2:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lrgSHVVt9FNFZVPctFxBQ_TN0hM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d665e6-f95d-4347-8565-d4f5317c5830/1/LHzzJrr3DcmECPGG_fqqsM_7_rY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d665e6-f95d-4347-8565-d4f5317c5830/1/lrgSHVVt9FNFZVPctFxBQ_TN0hM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.19.192.0-89.19.206.255
Signature Algorithm: sha256WithRSAEncryption
0a:db:50:80:a1:72:6a:78:33:05:0f:14:f6:2c:0e:f9:1f:44:
2c:4d:82:ec:42:88:3c:91:1f:2b:17:9c:0e:cc:a6:8f:57:d7:
e4:bd:79:ee:60:b0:b5:c7:22:d5:fd:97:76:4c:3d:bd:74:f4:
4b:bf:ad:11:3a:52:99:30:93:5b:b8:42:2e:5d:0a:9c:3c:9c:
bd:ff:0f:e0:c5:0a:05:cb:cb:91:1d:86:18:ae:45:38:d7:b9:
4a:ca:f9:3d:68:00:05:c2:3e:fa:42:c6:1c:de:93:80:b0:cf:
98:ec:82:68:5d:b2:c3:15:e1:35:a5:9d:8b:cd:af:97:18:ad:
fa:69:71:f1:a8:09:60:27:ca:5d:9e:44:d0:4d:25:09:75:e7:
95:15:f8:0a:bd:45:99:d3:d6:77:48:ca:15:fd:97:b7:77:56:
93:ec:a6:38:6a:32:e0:05:84:41:65:b4:01:0a:13:cd:52:9a:
67:87:4f:4f:27:90:d4:08:59:c0:c3:2d:d8:96:9f:cd:df:a7:
14:cb:f0:80:1e:7d:5f:21:b9:64:07:49:75:68:e3:2c:43:ea:
62:ad:1b:fd:b0:63:a8:54:61:81:60:77:df:ec:2b:4e:a8:10:
f6:26:48:df:72:cc:64:34:fc:b5:7c:9d:15:9e:19:65:8a:f1:
d9:05:ec:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:02 2024 by rpki-client on console.sobornost.net