Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/887620-f385-43f4-9be2-a99c39090db4/1/vP8eO8oVl5sU-ProaG5lmHsWe7E.roa
File: vP8eO8oVl5sU-ProaG5lmHsWe7E.roa (raw, json)
Hash identifier: 3UYDKjIHhavyiiti5RLDE9XvRgYDbdcEA42EqgmHTTc=
Subject key identifier: BC:FF:1E:3B:CA:15:97:9B:14:F8:FA:E8:68:6E:65:98:7B:16:7B:B1
Certificate issuer: /CN=1d28b18df244db89f2b97a6c72629733b388602f
Certificate serial: 018CC7949A339E6ED516DCAA98F42C1C03CF
Authority key identifier: 1D:28:B1:8D:F2:44:DB:89:F2:B9:7A:6C:72:62:97:33:B3:88:60:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HSixjfJE24nyuXpscmKXM7OIYC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/887620-f385-43f4-9be2-a99c39090db4/1/vP8eO8oVl5sU-ProaG5lmHsWe7E.roa
Signing time: Tue 02 Jan 2024 00:30:53 +0000
ROA not before: Tue 02 Jan 2024 00:30:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 33856
IP address blocks: 185.98.252.0/22 maxlen: 24
2a04:6600::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:9a:33:9e:6e:d5:16:dc:aa:98:f4:2c:1c:03:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d28b18df244db89f2b97a6c72629733b388602f
Validity
Not Before: Jan 2 00:30:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bcff1e3bca15979b14f8fae8686e65987b167bb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:b8:f3:67:a2:8e:e2:3d:6f:b6:ff:da:f1:00:
9f:56:ce:d1:9e:8a:12:78:06:79:be:5e:80:5e:fe:
43:7a:25:f3:78:1b:95:f8:a3:96:e8:cd:31:3b:7d:
03:e7:ca:c8:b6:13:bd:38:2a:79:98:a6:33:e6:1b:
f0:a2:53:6b:7e:3d:4b:00:d7:8e:9b:97:79:de:70:
8f:82:7f:bb:fd:bf:66:85:0b:1b:d3:55:18:72:3a:
cc:bd:a8:3d:5e:22:bc:db:d5:39:57:5f:5e:45:b1:
62:63:37:30:e8:38:6e:60:d7:a2:f9:6d:88:13:88:
9e:13:c1:c0:16:7f:6b:52:1a:4f:09:3d:47:57:20:
9e:c3:db:2a:22:e2:b4:89:36:bd:dc:0a:17:bb:a3:
e6:9e:f9:a8:c3:68:48:57:b1:35:31:74:f8:bb:31:
e0:f3:26:53:8b:de:28:26:33:e0:22:19:81:cf:8c:
e3:c6:51:41:47:a4:0d:fc:cb:d6:91:c6:92:89:d6:
8c:f6:8e:ed:fa:dc:0f:d9:e4:ce:13:c6:51:54:aa:
ae:c6:09:05:66:ac:19:4c:58:69:9c:0d:f1:58:8a:
99:19:80:73:27:48:b4:b2:ed:38:c1:4b:67:4a:3b:
a2:ff:78:58:21:42:21:57:f1:37:3f:69:dd:c8:b1:
77:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:FF:1E:3B:CA:15:97:9B:14:F8:FA:E8:68:6E:65:98:7B:16:7B:B1
X509v3 Authority Key Identifier:
keyid:1D:28:B1:8D:F2:44:DB:89:F2:B9:7A:6C:72:62:97:33:B3:88:60:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HSixjfJE24nyuXpscmKXM7OIYC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/887620-f385-43f4-9be2-a99c39090db4/1/vP8eO8oVl5sU-ProaG5lmHsWe7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/887620-f385-43f4-9be2-a99c39090db4/1/HSixjfJE24nyuXpscmKXM7OIYC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.98.252.0/22
IPv6:
2a04:6600::/29
Signature Algorithm: sha256WithRSAEncryption
43:fd:c2:08:ac:99:e1:05:86:1e:53:12:47:15:43:bb:d3:e5:
e3:56:87:0f:e8:33:3a:f0:18:eb:7e:4d:c8:e9:a1:3b:77:40:
cb:99:1e:a1:40:05:35:77:21:d8:da:f6:56:2a:dd:7d:68:bd:
51:0c:ed:cb:57:f7:f0:a3:99:03:75:68:26:e4:d2:74:eb:e1:
cb:cb:67:eb:d0:cd:5b:59:ab:82:e0:ec:b2:d9:d8:a3:04:b3:
0a:c1:2a:0a:88:15:21:a2:d5:9b:ed:e9:7d:63:0e:51:89:bb:
57:dd:24:36:5e:cf:47:d2:88:ba:9d:e6:48:81:25:cd:20:52:
22:91:c9:10:04:92:a4:1d:8e:c1:c0:db:43:c8:e9:ee:70:7e:
17:19:13:bc:17:e1:10:16:ba:ee:8c:31:dd:e9:18:07:d9:fc:
a6:80:ad:e2:6c:3e:77:c2:d5:50:4e:83:13:dd:86:88:60:b4:
4e:00:81:fb:b3:35:94:65:f2:f7:bc:55:e8:09:9c:8d:c0:2c:
5f:b0:5f:2d:81:7c:9a:81:2b:51:d6:79:30:6d:0e:f1:3a:c0:
24:51:b2:96:17:f7:62:01:29:4f:5a:f8:bb:68:fa:55:f5:77:
75:d1:cb:d9:cf:fa:4e:0b:bc:b4:d7:a9:f3:a1:7d:b7:eb:96:
cf:30:4e:27
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYzHlJoznm7VFtyqmPQsHAPPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkMjhiMThkZjI0NGRiODlmMmI5N2E2YzcyNjI5NzMzYjM4
ODYwMmYwHhcNMjQwMTAyMDAzMDUzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiY2ZmMWUzYmNhMTU5NzliMTRmOGZhZTg2ODZlNjU5ODdiMTY3YmIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnbjzZ6KO4j1vtv/a8QCfVs7RnooS
eAZ5vl6AXv5DeiXzeBuV+KOW6M0xO30D58rIthO9OCp5mKYz5hvwolNrfj1LANeO
m5d53nCPgn+7/b9mhQsb01UYcjrMvag9XiK829U5V19eRbFiYzcw6DhuYNei+W2I
E4ieE8HAFn9rUhpPCT1HVyCew9sqIuK0iTa93AoXu6Pmnvmow2hIV7E1MXT4uzHg
8yZTi94oJjPgIhmBz4zjxlFBR6QN/MvWkcaSidaM9o7t+twP2eTOE8ZRVKquxgkF
ZqwZTFhpnA3xWIqZGYBzJ0i0su04wUtnSjui/3hYIUIhV/E3P2ndyLF3ewIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFLz/HjvKFZebFPj66GhuZZh7FnuxMB8GA1UdIwQY
MBaAFB0osY3yRNuJ8rl6bHJilzOziGAvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFNpeGpmSkUyNG55dVhwc2NtS1hNN09JWUM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS84ODc2MjAtZjM4NS00M2Y0LTliZTIt
YTk5YzM5MDkwZGI0LzEvdlA4ZU84b1ZsNXNVLVByb2FHNWxtSHNXZTdFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS84ODc2MjAtZjM4NS00M2Y0LTliZTItYTk5YzM5MDkwZGI0
LzEvSFNpeGpmSkUyNG55dVhwc2NtS1hNN09JWUM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuWL8MA0E
AgACMAcDBQMqBGYAMA0GCSqGSIb3DQEBCwUAA4IBAQBD/cIIrJnhBYYeUxJHFUO7
0+XjVocP6DM68Bjrfk3I6aE7d0DLmR6hQAU1dyHY2vZWKt19aL1RDO3LV/fwo5kD
dWgm5NJ06+HLy2fr0M1bWauC4Oyy2dijBLMKwSoKiBUhotWb7el9Yw5RibtX3SQ2
Xs9H0oi6neZIgSXNIFIikckQBJKkHY7BwNtDyOnucH4XGRO8F+EQFrrujDHd6RgH
2fymgK3ibD53wtVQToMT3YaIYLROAIH7szWUZfL3vFXoCZyNwCxfsF8tgXyagStR
1nkwbQ7xOsAkUbKWF/diASlPWvi7aPpV9Xd10cvZz/pOC7y016nzoX2365bPME4n
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:04 2024 by rpki-client on console.sobornost.net