Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/c68819-2f9e-44ce-8810-51dc2b096def/1/PmdFotL_O9vzSWdMP1vKPv-LTSo.roa
File: PmdFotL_O9vzSWdMP1vKPv-LTSo.roa (raw, json)
Hash identifier: uhXeshESzqBK/dHSp8qbZWTOekCn3K4G/n5zM43at5E=
Subject key identifier: 3E:67:45:A2:D2:FF:3B:DB:F3:49:67:4C:3F:5B:CA:3E:FF:8B:4D:2A
Certificate issuer: /CN=4200982284a050d941dbebbd04b5d0c914f635b7
Certificate serial: 0191BC49DBA6EC6D372D0CDBAFBB5823C025
Authority key identifier: 42:00:98:22:84:A0:50:D9:41:DB:EB:BD:04:B5:D0:C9:14:F6:35:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QgCYIoSgUNlB2-u9BLXQyRT2Nbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/c68819-2f9e-44ce-8810-51dc2b096def/1/PmdFotL_O9vzSWdMP1vKPv-LTSo.roa
Signing time: Wed 04 Sep 2024 09:07:22 +0000
ROA not before: Wed 04 Sep 2024 09:07:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200651
IP address blocks: 37.156.68.0/24 maxlen: 24
37.228.128.0/24 maxlen: 24
37.228.129.0/24 maxlen: 24
185.10.68.0/24 maxlen: 24
185.100.84.0/23 maxlen: 23
185.100.86.0/24 maxlen: 24
185.100.87.0/24 maxlen: 24
185.146.232.0/24 maxlen: 24
185.146.233.0/24 maxlen: 24
185.165.168.0/24 maxlen: 24
185.165.169.0/24 maxlen: 24
185.165.170.0/24 maxlen: 24
185.165.171.0/24 maxlen: 24
185.246.188.0/24 maxlen: 24
185.246.189.0/24 maxlen: 24
185.247.224.0/24 maxlen: 24
185.247.225.0/24 maxlen: 24
185.247.226.0/24 maxlen: 24
2a06:1700::/48 maxlen: 48
2a06:1700:1::/48 maxlen: 48
2a06:1700:2::/48 maxlen: 48
2a06:1700:3::/48 maxlen: 48
2a06:1700:4::/48 maxlen: 48
2a06:1700:100::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:bc:49:db:a6:ec:6d:37:2d:0c:db:af:bb:58:23:c0:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4200982284a050d941dbebbd04b5d0c914f635b7
Validity
Not Before: Sep 4 09:07:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3e6745a2d2ff3bdbf349674c3f5bca3eff8b4d2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:38:11:20:65:8e:15:17:23:eb:57:1c:6c:31:
ad:82:76:77:64:d3:ce:89:48:39:f9:67:9b:b9:09:
15:32:6e:0a:1a:90:ca:2f:d1:03:b4:5c:cb:0b:b5:
26:b5:9d:41:23:62:eb:7f:bc:ae:cf:c0:5a:3e:77:
8c:b1:b9:2a:15:b2:c0:94:63:db:e4:da:50:5e:7e:
3d:45:06:cd:d7:a0:f2:b9:20:40:ea:60:c5:9d:08:
f5:37:45:b4:fc:22:a1:6c:49:55:9a:37:34:cc:4b:
33:a3:2a:d3:c7:5c:3a:2d:9b:5b:64:5b:85:36:21:
81:a8:89:35:fe:9d:6a:fd:f5:01:ad:9b:70:62:7f:
53:08:e1:d2:cc:3e:f5:90:64:7b:9d:46:16:d4:55:
a1:15:23:c7:ea:e3:c4:61:3b:8f:93:68:85:d8:d2:
99:b0:6b:37:62:80:b2:81:ac:1f:c2:84:90:4f:2c:
d4:6f:d6:bc:77:da:2f:e2:41:b3:e1:ee:b4:9a:54:
2c:60:4b:63:37:5d:86:47:03:49:88:a1:a0:81:4d:
3b:58:d5:21:34:1a:15:77:b0:b3:61:84:95:b6:87:
eb:2c:6c:f5:e3:2c:af:da:d9:00:59:de:77:d1:ab:
45:86:f5:9e:ed:f6:72:df:bc:12:d7:4c:2f:9a:2d:
6e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:67:45:A2:D2:FF:3B:DB:F3:49:67:4C:3F:5B:CA:3E:FF:8B:4D:2A
X509v3 Authority Key Identifier:
keyid:42:00:98:22:84:A0:50:D9:41:DB:EB:BD:04:B5:D0:C9:14:F6:35:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QgCYIoSgUNlB2-u9BLXQyRT2Nbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/c68819-2f9e-44ce-8810-51dc2b096def/1/PmdFotL_O9vzSWdMP1vKPv-LTSo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/c68819-2f9e-44ce-8810-51dc2b096def/1/QgCYIoSgUNlB2-u9BLXQyRT2Nbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.156.68.0/24
37.228.128.0/23
185.10.68.0/24
185.100.84.0/22
185.146.232.0/23
185.165.168.0/22
185.246.188.0/23
185.247.224.0-185.247.226.255
IPv6:
2a06:1700::-2a06:1700:4:ffff:ffff:ffff:ffff:ffff
2a06:1700:100::/48
Signature Algorithm: sha256WithRSAEncryption
b5:ea:68:86:81:6f:62:7c:f4:0c:8b:ed:5c:6d:f7:9c:9f:ce:
18:11:1a:c3:10:6a:9c:d6:0b:99:0c:71:bd:da:6a:c9:41:2e:
68:6f:f6:3c:59:05:e4:79:f7:ea:7a:7c:ca:ec:c2:e7:54:df:
6c:7e:42:81:94:21:66:c4:4c:9c:1f:57:1f:cf:a0:34:22:af:
ba:82:f4:a9:91:4d:c1:56:b1:67:1e:8a:ba:70:3c:36:99:10:
d6:51:af:7e:ba:42:60:bb:ce:41:53:13:73:3c:fa:bb:63:8e:
eb:ab:e3:d6:ba:b3:a4:3d:7d:a9:97:5a:96:b3:4b:b8:b1:75:
2c:a7:1c:1e:74:3a:33:4c:9c:04:24:95:d2:5b:2c:d0:6a:6d:
54:9a:d1:19:40:fb:95:87:4f:40:f4:dd:c2:c6:af:f4:63:c2:
05:53:5b:16:43:3d:e3:b3:2b:d1:55:31:63:b1:54:52:cc:2e:
a0:f7:89:53:7c:35:f6:bb:39:89:19:3b:cb:8d:7c:a5:72:d5:
88:09:0c:37:64:7d:5d:4f:24:61:e7:d3:66:a6:98:11:f9:df:
12:79:c2:e3:61:98:80:55:75:68:71:56:42:b0:3b:f7:ab:ec:
d4:c3:4e:bb:73:10:c4:cd:ce:29:83:f3:42:8a:cd:29:9b:74:
d3:37:14:c2
-----BEGIN CERTIFICATE-----
MIIFUTCCBDmgAwIBAgISAZG8Sdum7G03LQzbr7tYI8AlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyMDA5ODIyODRhMDUwZDk0MWRiZWJiZDA0YjVkMGM5MTRm
NjM1YjcwHhcNMjQwOTA0MDkwNzIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZTY3NDVhMmQyZmYzYmRiZjM0OTY3NGMzZjViY2EzZWZmOGI0ZDJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsTgRIGWOFRcj61ccbDGtgnZ3ZNPO
iUg5+WebuQkVMm4KGpDKL9EDtFzLC7UmtZ1BI2Lrf7yuz8BaPneMsbkqFbLAlGPb
5NpQXn49RQbN16DyuSBA6mDFnQj1N0W0/CKhbElVmjc0zEszoyrTx1w6LZtbZFuF
NiGBqIk1/p1q/fUBrZtwYn9TCOHSzD71kGR7nUYW1FWhFSPH6uPEYTuPk2iF2NKZ
sGs3YoCygawfwoSQTyzUb9a8d9ov4kGz4e60mlQsYEtjN12GRwNJiKGggU07WNUh
NBoVd7CzYYSVtofrLGz14yyv2tkAWd530atFhvWe7fZy37wS10wvmi1uZwIDAQAB
o4ICXTCCAlkwHQYDVR0OBBYEFD5nRaLS/zvb80lnTD9byj7/i00qMB8GA1UdIwQY
MBaAFEIAmCKEoFDZQdvrvQS10MkU9jW3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWdDWUlvU2dVTmxCMi11OUJMWFF5UlQyTmJjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS9jNjg4MTktMmY5ZS00NGNlLTg4MTAt
NTFkYzJiMDk2ZGVmLzEvUG1kRm90TF9POXZ6U1dkTVAxdktQdi1MVFNvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS9jNjg4MTktMmY5ZS00NGNlLTg4MTAtNTFkYzJiMDk2ZGVm
LzEvUWdDWUlvU2dVTmxCMi11OUJMWFF5UlQyTmJjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHMGCCsGAQUFBwEHAQH/BGQwYjA+BAIAATA4AwQAJZxEAwQB
JeSAAwQAuQpEAwQCuWRUAwQBuZLoAwQCuaWoAwQBufa8MAwDBAW59+ADBAC59+Iw
IAQCAAIwGjAPAwQAKgYXAwcAKgYXAAAEAwcAKgYXAAEAMA0GCSqGSIb3DQEBCwUA
A4IBAQC16miGgW9ifPQMi+1cbfecn84YERrDEGqc1guZDHG92mrJQS5ob/Y8WQXk
effqenzK7MLnVN9sfkKBlCFmxEycH1cfz6A0Iq+6gvSpkU3BVrFnHoq6cDw2mRDW
Ua9+ukJgu85BUxNzPPq7Y47rq+PWurOkPX2pl1qWs0u4sXUspxwedDozTJwEJJXS
WyzQam1UmtEZQPuVh09A9N3Cxq/0Y8IFU1sWQz3jsyvRVTFjsVRSzC6g94lTfDX2
uzmJGTvLjXylctWICQw3ZH1dTyRh59NmppgR+d8SecLjYZiAVXVocVZCsDv3q+zU
w067cxDEzc4pg/NCis0pm3TTNxTC
-----END CERTIFICATE-----
Generated at Fri Sep 27 20:11:20 2024 by rpki-client on console.sobornost.net