Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/aEUlXvd2TY24G3FPOhngsA6Vkug.roa
File: aEUlXvd2TY24G3FPOhngsA6Vkug.roa (raw, json)
Hash identifier: we0VblfqN13ZJGOkvzVa2HVevXdK5o9t+5pjHf1SE2c=
Subject key identifier: 68:45:25:5E:F7:76:4D:8D:B8:1B:71:4F:3A:19:E0:B0:0E:95:92:E8
Certificate issuer: /CN=4d0ade54c27e6fcddace262c4fdf790f320fed9c
Certificate serial: 01931D90365B7687EDCB2DE12EB3BB39ADF1
Authority key identifier: 4D:0A:DE:54:C2:7E:6F:CD:DA:CE:26:2C:4F:DF:79:0F:32:0F:ED:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TQreVMJ-b83aziYsT995DzIP7Zw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/aEUlXvd2TY24G3FPOhngsA6Vkug.roa
Signing time: Mon 11 Nov 2024 23:30:10 +0000
ROA not before: Mon 11 Nov 2024 23:30:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207031
IP address blocks: 185.168.72.0/22 maxlen: 22
2a0b:f200::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:1d:90:36:5b:76:87:ed:cb:2d:e1:2e:b3:bb:39:ad:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d0ade54c27e6fcddace262c4fdf790f320fed9c
Validity
Not Before: Nov 11 23:30:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6845255ef7764d8db81b714f3a19e0b00e9592e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a5:4d:d9:8a:4a:ac:ea:57:dc:b8:c8:e5:a6:
7b:52:98:38:89:ab:50:cf:16:2d:99:d6:7f:88:86:
02:ae:62:b1:07:81:50:b5:62:71:30:3a:fa:92:b8:
81:3c:f2:54:a9:39:ff:8e:a3:31:f9:a4:03:c8:42:
9c:68:cf:32:76:50:fe:b6:cf:9f:49:20:34:ee:9a:
46:cf:45:a7:42:c0:16:23:a5:b7:66:bd:6e:1c:ff:
fe:ae:86:57:79:c1:d5:64:55:46:76:39:2c:3a:e5:
8d:0f:c6:c4:7b:6f:d2:96:e7:b7:dd:6c:d4:6e:ea:
da:cb:2e:6b:69:c3:6c:87:b0:5e:8e:fb:1f:e9:b0:
3b:93:fd:f0:fd:bf:29:f9:85:85:6d:98:2c:b4:04:
4b:3b:ef:6d:c0:90:76:6a:35:ac:18:75:d4:59:2f:
37:a7:f9:96:c2:4e:f5:1e:b3:fb:61:46:10:b7:43:
3a:d4:37:b3:59:48:f6:be:e3:ef:10:f7:d6:43:3e:
c7:98:ae:3a:f0:cb:b9:55:c3:3d:aa:1d:d8:8a:b5:
a2:10:fc:a7:16:52:be:04:ff:d4:0a:50:a7:cf:11:
e2:e4:6e:34:0d:1b:49:41:24:02:4c:6a:2b:49:ae:
69:b7:d3:95:95:74:6f:b0:17:95:c3:a1:9b:5c:30:
ca:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:45:25:5E:F7:76:4D:8D:B8:1B:71:4F:3A:19:E0:B0:0E:95:92:E8
X509v3 Authority Key Identifier:
keyid:4D:0A:DE:54:C2:7E:6F:CD:DA:CE:26:2C:4F:DF:79:0F:32:0F:ED:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TQreVMJ-b83aziYsT995DzIP7Zw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/aEUlXvd2TY24G3FPOhngsA6Vkug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/TQreVMJ-b83aziYsT995DzIP7Zw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.72.0/22
IPv6:
2a0b:f200::/32
Signature Algorithm: sha256WithRSAEncryption
97:75:46:87:51:98:63:aa:ef:bd:e3:d3:ae:e4:0e:99:fa:cd:
d1:27:b8:bf:ea:0e:47:bd:10:b7:ea:a5:ed:8e:9a:fc:bf:ee:
e5:e5:c3:4f:11:18:16:77:66:a9:20:90:63:d7:8d:cb:b0:dc:
be:6e:8b:0b:45:9c:45:aa:d0:ca:ce:1d:1b:93:f7:20:6b:bf:
1d:3c:75:6b:e1:4a:15:83:f1:0f:f8:8e:97:06:d4:5d:07:3c:
c2:e3:4a:3f:83:3f:60:7d:13:38:a7:73:52:cf:a6:6a:db:4b:
6e:be:58:6d:0a:1f:51:76:00:d7:f5:ae:49:34:d1:41:af:90:
7d:5d:32:7a:ab:df:ce:ae:b3:82:c1:db:b9:52:9d:be:bc:23:
b0:11:90:e9:a9:fb:b7:f6:ca:ec:ba:c4:ee:92:a5:97:2a:57:
0f:2d:81:77:92:20:3a:22:7d:43:7b:68:1b:23:63:59:7d:28:
48:fb:e6:4b:73:ad:85:b1:e4:8e:72:5d:5c:4f:a8:ab:45:46:
48:bb:4c:f5:99:2c:d5:eb:89:80:e1:c8:80:57:f7:a9:a7:17:
b5:c2:74:7d:47:ce:9d:8e:9b:a5:aa:3e:84:14:7a:38:1b:a4:
3c:34:7f:2d:cb:95:7c:03:a9:76:28:3d:ae:e5:d7:29:1d:ed:
73:28:08:db
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZMdkDZbdoftyy3hLrO7Oa3xMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkMGFkZTU0YzI3ZTZmY2RkYWNlMjYyYzRmZGY3OTBmMzIw
ZmVkOWMwHhcNMjQxMTExMjMzMDEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ODQ1MjU1ZWY3NzY0ZDhkYjgxYjcxNGYzYTE5ZTBiMDBlOTU5MmU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv6VN2YpKrOpX3LjI5aZ7Upg4iatQ
zxYtmdZ/iIYCrmKxB4FQtWJxMDr6kriBPPJUqTn/jqMx+aQDyEKcaM8ydlD+ts+f
SSA07ppGz0WnQsAWI6W3Zr1uHP/+roZXecHVZFVGdjksOuWND8bEe2/Slue33WzU
burayy5racNsh7Bejvsf6bA7k/3w/b8p+YWFbZgstARLO+9twJB2ajWsGHXUWS83
p/mWwk71HrP7YUYQt0M61DezWUj2vuPvEPfWQz7HmK468Mu5VcM9qh3YirWiEPyn
FlK+BP/UClCnzxHi5G40DRtJQSQCTGorSa5pt9OVlXRvsBeVw6GbXDDKRwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFGhFJV73dk2NuBtxTzoZ4LAOlZLoMB8GA1UdIwQY
MBaAFE0K3lTCfm/N2s4mLE/feQ8yD+2cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVFFyZVZNSi1iODNhemlZc1Q5OTVEeklQN1p3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC84ZWZkOGItZTUxNi00YzQ5LTkyY2It
ODkyOTZjY2IzNWY1LzEvYUVVbFh2ZDJUWTI0RzNGUE9obmdzQTZWa3VnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC84ZWZkOGItZTUxNi00YzQ5LTkyY2ItODkyOTZjY2IzNWY1
LzEvVFFyZVZNSi1iODNhemlZc1Q5OTVEeklQN1p3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuahIMA0E
AgACMAcDBQAqC/IAMA0GCSqGSIb3DQEBCwUAA4IBAQCXdUaHUZhjqu+949Ou5A6Z
+s3RJ7i/6g5HvRC36qXtjpr8v+7l5cNPERgWd2apIJBj143LsNy+bosLRZxFqtDK
zh0bk/cga78dPHVr4UoVg/EP+I6XBtRdBzzC40o/gz9gfRM4p3NSz6Zq20tuvlht
Ch9RdgDX9a5JNNFBr5B9XTJ6q9/OrrOCwdu5Up2+vCOwEZDpqfu39srsusTukqWX
KlcPLYF3kiA6In1De2gbI2NZfShI++ZLc62FseSOcl1cT6irRUZIu0z1mSzV64mA
4ciAV/eppxe1wnR9R86djpulqj6EFHo4G6Q8NH8ty5V8A6l2KD2u5dcpHe1zKAjb
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:08 2024 by rpki-client on console.sobornost.net