Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/2e6613-4332-4c19-addf-dedaf79356ce/1/0XdEV_WRxFLApXZnb5S3TSFja5M.roa
File: 0XdEV_WRxFLApXZnb5S3TSFja5M.roa (raw, json)
Hash identifier: CvlqMYHiXa8cNoByMhbH72NLXUNtyKN2cTzVP+5L3UQ=
Subject key identifier: D1:77:44:57:F5:91:C4:52:C0:A5:76:67:6F:94:B7:4D:21:63:6B:93
Certificate issuer: /CN=b78380b41e37b5757d3d4e2eecdf06d930a70b9d
Certificate serial: 0193DE80CF132F849D524085DBE2E5BC92EC
Authority key identifier: B7:83:80:B4:1E:37:B5:75:7D:3D:4E:2E:EC:DF:06:D9:30:A7:0B:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t4OAtB43tXV9PU4u7N8G2TCnC50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/2e6613-4332-4c19-addf-dedaf79356ce/1/0XdEV_WRxFLApXZnb5S3TSFja5M.roa
Signing time: Thu 19 Dec 2024 10:40:03 +0000
ROA not before: Thu 19 Dec 2024 10:40:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61213
IP address blocks: 94.140.17.0/24 maxlen: 24
185.206.4.0/22 maxlen: 23
2a02:d60::/32 maxlen: 32
2a02:d60::/48 maxlen: 48
2a02:d60:1::/48 maxlen: 48
2a02:d60:2::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:de:80:cf:13:2f:84:9d:52:40:85:db:e2:e5:bc:92:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b78380b41e37b5757d3d4e2eecdf06d930a70b9d
Validity
Not Before: Dec 19 10:40:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d1774457f591c452c0a576676f94b74d21636b93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b3:17:2b:4a:f1:dc:5d:b9:80:8b:6a:67:40:
42:0d:a2:cd:c5:6a:33:84:a5:8b:8d:87:1f:91:a8:
b4:0d:d1:e8:d8:e4:0f:da:a6:d1:be:04:15:0c:5d:
17:cf:58:c2:c0:d2:8f:9b:e8:f1:fc:53:a0:19:80:
9e:03:7d:31:3e:95:90:36:d1:87:5a:4a:4c:b7:8e:
66:36:ac:aa:5a:57:75:1d:52:f9:ef:56:af:75:28:
66:49:d6:bf:d6:aa:69:cf:f7:c6:eb:7c:23:76:f3:
57:63:9c:9c:9d:47:5e:83:77:6d:f6:f9:c3:d6:b0:
0c:c7:95:1e:99:6c:08:a7:f3:22:7b:3f:fd:f3:af:
63:7b:70:55:84:72:87:09:88:96:b8:0c:bb:8c:ba:
91:42:b0:9c:e4:c2:91:ab:2f:f0:4a:c0:aa:da:3d:
ed:09:b4:38:15:2e:88:4e:ed:ff:07:81:e3:60:dd:
0e:e7:5f:68:f7:19:61:5e:b3:26:0f:d0:66:61:c7:
9b:f8:da:0e:06:c6:ed:59:3e:fa:4a:6c:ed:f8:30:
65:c2:74:d0:f8:da:f6:af:93:2e:47:d5:ed:04:65:
ab:b0:90:6a:04:28:a3:15:d7:be:d1:39:54:7c:1f:
50:9e:87:56:c2:f8:f3:0e:30:ff:cc:15:83:e7:4c:
75:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:77:44:57:F5:91:C4:52:C0:A5:76:67:6F:94:B7:4D:21:63:6B:93
X509v3 Authority Key Identifier:
keyid:B7:83:80:B4:1E:37:B5:75:7D:3D:4E:2E:EC:DF:06:D9:30:A7:0B:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t4OAtB43tXV9PU4u7N8G2TCnC50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/2e6613-4332-4c19-addf-dedaf79356ce/1/0XdEV_WRxFLApXZnb5S3TSFja5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/2e6613-4332-4c19-addf-dedaf79356ce/1/t4OAtB43tXV9PU4u7N8G2TCnC50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.140.17.0/24
185.206.4.0/22
IPv6:
2a02:d60::/32
Signature Algorithm: sha256WithRSAEncryption
48:b8:30:23:ec:30:a1:36:3f:67:e9:88:9c:19:ae:df:9d:4b:
0f:c4:98:2a:c8:8f:57:b1:fa:cc:ee:1c:77:bd:50:f2:18:b8:
52:eb:5c:3a:78:80:e0:38:67:f0:32:42:7a:ba:3f:8c:3c:eb:
d7:ad:1b:51:b4:97:6a:a9:78:46:dd:41:25:11:da:84:53:20:
0d:6d:34:64:ad:c4:8e:7e:2f:21:6f:81:51:a9:56:2b:05:0a:
07:2c:8d:32:ca:9f:ae:38:0b:6e:b5:b0:90:ec:b3:02:b5:04:
85:dd:19:a2:28:d0:92:91:0b:c0:bb:30:af:db:13:49:07:06:
dc:7b:da:06:c9:3a:b8:05:29:f2:8f:3b:2f:11:27:79:c6:8d:
2c:fc:d8:e9:38:6b:7f:94:2b:89:91:dd:25:d8:1b:4f:ee:7a:
ab:cc:b3:7a:06:ad:1e:8a:3c:8a:a9:8f:39:0a:5f:7a:80:b1:
84:2b:2c:99:37:ce:58:ec:8b:f5:ab:19:01:77:8e:ee:fa:d3:
93:2b:62:da:e1:42:ce:fe:d8:84:cb:b9:61:83:95:53:1d:9e:
3e:90:f6:68:c8:01:e8:1b:95:16:53:ea:db:c8:23:38:b4:48:
31:b1:88:a2:17:98:94:3b:8d:25:33:8e:af:4a:dc:39:08:33:
cc:e6:e8:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:07 2024 by rpki-client on console.sobornost.net