Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/ri1B2WNCxxjYxzL-OIlagx8J9AU.roa
File: ri1B2WNCxxjYxzL-OIlagx8J9AU.roa (raw, json)
Hash identifier: NtK5vY4pFRGn81xpPGleAdp+KliJH9TlrOvOoFMbZE0=
Subject key identifier: AE:2D:41:D9:63:42:C7:18:D8:C7:32:FE:38:89:5A:83:1F:09:F4:05
Certificate issuer: /CN=c04db7623241d7e6678fc25751fa4e0b6665186b
Certificate serial: 0193CCF1DA62872CAA8B983D1403F950F791
Authority key identifier: C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/ri1B2WNCxxjYxzL-OIlagx8J9AU.roa
Signing time: Mon 16 Dec 2024 00:50:22 +0000
ROA not before: Mon 16 Dec 2024 00:50:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58074
IP address blocks: 193.138.99.0/24 maxlen: 24
193.169.142.0/24 maxlen: 24
194.6.201.0/24 maxlen: 24
195.78.124.0/23 maxlen: 24
195.88.38.0/23 maxlen: 24
195.245.82.0/24 maxlen: 24
195.245.83.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:cc:f1:da:62:87:2c:aa:8b:98:3d:14:03:f9:50:f7:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c04db7623241d7e6678fc25751fa4e0b6665186b
Validity
Not Before: Dec 16 00:50:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ae2d41d96342c718d8c732fe38895a831f09f405
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ad:5b:f8:c7:ee:52:47:ed:1c:ff:34:8a:87:
53:60:ec:f1:17:84:86:51:7e:a4:65:4c:e3:2b:fe:
89:b2:25:21:75:3d:a3:56:04:f8:0c:62:93:dd:35:
a0:5d:78:60:3e:fd:c2:ff:be:30:8f:09:a7:8b:ec:
9e:37:83:eb:1a:7e:0f:eb:d2:ac:42:91:4e:a1:cd:
22:33:02:3f:8a:89:80:0b:1b:60:d6:78:9f:94:a5:
6d:91:9b:b8:69:79:b0:bc:5b:22:81:04:f5:98:10:
da:e5:71:99:cc:57:41:8d:37:8b:8e:9d:92:f4:94:
e9:7e:7d:77:25:c2:89:ad:53:bb:09:84:b3:92:75:
2a:ff:b9:a6:89:77:8f:aa:5d:25:a4:30:fb:b4:a2:
33:a3:fc:6c:23:e8:3f:ae:f0:8f:ea:a5:d4:da:9f:
c4:79:88:45:6b:94:73:1d:d8:a1:0a:4c:76:a3:32:
ba:03:d6:fb:72:12:8a:d6:e1:39:73:aa:76:01:0f:
ca:b2:41:e3:43:8e:28:fa:a8:7d:9a:a5:6d:da:31:
d5:39:9c:2b:6f:20:a3:f4:2e:8f:bd:ba:c0:a6:a4:
83:f4:85:25:22:07:16:f0:fa:79:3c:4c:ea:20:0c:
06:f6:1d:cb:36:fa:ed:d7:9b:9c:aa:a1:89:00:bc:
15:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:2D:41:D9:63:42:C7:18:D8:C7:32:FE:38:89:5A:83:1F:09:F4:05
X509v3 Authority Key Identifier:
keyid:C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/ri1B2WNCxxjYxzL-OIlagx8J9AU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/wE23YjJB1-Znj8JXUfpOC2ZlGGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.138.99.0/24
193.169.142.0/24
194.6.201.0/24
195.78.124.0/23
195.88.38.0/23
195.245.82.0/23
Signature Algorithm: sha256WithRSAEncryption
a1:ed:c6:0d:e3:4e:6d:ea:29:cc:f0:f5:09:d8:6d:02:6e:c6:
e5:12:55:d1:f7:4f:07:31:e1:24:c4:3c:7b:e0:ea:b8:05:b9:
ed:4a:c1:f8:9f:e1:58:53:30:14:e6:e7:7c:f2:f4:fa:6a:5b:
3c:1f:7e:b5:5b:84:13:11:ed:46:70:b0:0a:8d:c6:30:42:38:
08:21:05:a6:dc:26:c0:8f:63:31:35:43:eb:a5:a7:75:61:6c:
96:c1:e0:36:d6:49:7c:7e:41:03:03:30:8d:ad:7f:21:30:e1:
34:99:58:d6:8c:ea:fd:77:ca:e4:74:e8:08:93:03:1e:84:d0:
3b:cd:35:2c:12:ca:2b:b4:c2:ef:d8:dd:14:23:6c:a0:f9:d4:
32:cb:ba:fe:e2:24:33:45:bc:9f:73:21:4d:5b:2d:7f:bb:41:
56:40:e0:ce:7b:b3:28:ac:d3:7c:a3:00:1f:81:f7:7c:67:5e:
67:f8:b9:19:e9:b4:4f:6d:72:2e:ca:5b:d7:de:73:00:0d:4a:
4b:df:fa:17:49:a5:9e:bf:72:c3:ba:a8:29:52:fb:de:41:2a:
a2:a4:0a:d8:2e:ff:78:2e:7b:d9:6b:93:1d:8a:32:92:be:7f:
c7:8e:c7:d1:ea:01:8d:7a:9d:72:d7:e9:84:eb:32:76:e7:79:
05:b3:60:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:02 2024 by rpki-client on console.sobornost.net