Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/7RfeAL0lwYa4uOjiIdlJKbOUV9w.roa
File: 7RfeAL0lwYa4uOjiIdlJKbOUV9w.roa (raw, json)
Hash identifier: p1U6OL2+7lgI+ENMHXxz0jJJtbtRifHrlVRo/OIBNIY=
Subject key identifier: ED:17:DE:00:BD:25:C1:86:B8:B8:E8:E2:21:D9:49:29:B3:94:57:DC
Certificate issuer: /CN=411dea53467b6c7143eb23d284569a8183b2e82f
Certificate serial: 01920A2D87C25D7DC39260958D24700A074A
Authority key identifier: 41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/7RfeAL0lwYa4uOjiIdlJKbOUV9w.roa
Signing time: Thu 19 Sep 2024 12:06:48 +0000
ROA not before: Thu 19 Sep 2024 12:06:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44679
IP address blocks: 84.239.4.0/24 maxlen: 24
84.239.8.0/24 maxlen: 24
84.239.9.0/24 maxlen: 24
84.239.11.0/24 maxlen: 24
84.239.13.0/24 maxlen: 24
84.239.14.0/24 maxlen: 24
84.239.15.0/24 maxlen: 24
84.239.32.0/24 maxlen: 24
84.239.34.0/24 maxlen: 24
84.239.35.0/24 maxlen: 24
84.239.36.0/24 maxlen: 24
84.239.38.0/24 maxlen: 24
84.239.39.0/24 maxlen: 24
84.239.40.0/24 maxlen: 24
84.239.44.0/24 maxlen: 24
84.239.46.0/24 maxlen: 24
84.239.49.0/24 maxlen: 24
84.239.51.0/24 maxlen: 24
84.239.55.0/24 maxlen: 24
84.239.56.0/24 maxlen: 24
84.239.57.0/24 maxlen: 24
84.239.58.0/24 maxlen: 24
84.239.59.0/24 maxlen: 24
185.193.52.0/24 maxlen: 24
185.193.53.0/24 maxlen: 24
185.193.54.0/24 maxlen: 24
185.193.55.0/24 maxlen: 24
2a02:2160:8000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:0a:2d:87:c2:5d:7d:c3:92:60:95:8d:24:70:0a:07:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=411dea53467b6c7143eb23d284569a8183b2e82f
Validity
Not Before: Sep 19 12:06:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ed17de00bd25c186b8b8e8e221d94929b39457dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:53:76:a2:f7:2c:12:31:25:be:35:72:de:8a:
c4:48:48:21:93:0e:65:1c:68:e7:69:90:82:c9:b7:
a4:6b:c1:a0:c6:70:dc:dd:46:d6:31:a4:a1:dd:ec:
f8:2e:59:8f:01:5e:0f:f0:e4:8a:d9:b7:ff:7c:db:
a3:56:eb:c7:a6:c2:e0:35:2f:42:36:c7:71:9a:75:
3f:9b:08:da:75:11:8e:90:9f:de:d7:89:0e:68:96:
80:eb:ed:ec:b0:e1:a1:8a:8f:87:96:d0:ec:eb:b3:
d0:89:e7:8d:3f:ca:dd:66:d3:8f:14:1f:a5:c0:ae:
cb:a3:3e:2d:23:bd:6d:25:e2:da:15:03:ea:a2:12:
a1:c2:16:1f:70:0c:20:2a:94:9d:22:42:38:c0:0d:
bb:46:b5:7b:98:03:a9:5c:01:e3:45:72:1e:50:5a:
46:e4:7d:75:d2:9a:a4:ae:aa:e0:d9:b8:ff:a1:25:
2d:54:7b:3b:b7:78:5b:27:a9:ca:d5:29:52:50:19:
93:3b:8d:aa:59:96:d2:2d:0b:63:4c:62:19:32:cd:
03:b4:79:bc:07:38:bd:a9:7f:0b:9b:69:0d:f8:cb:
f6:14:b6:85:04:c6:f9:d5:16:ce:82:be:fd:90:58:
f5:6c:9a:1f:01:5e:42:d3:21:ac:bf:93:d0:91:04:
98:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:17:DE:00:BD:25:C1:86:B8:B8:E8:E2:21:D9:49:29:B3:94:57:DC
X509v3 Authority Key Identifier:
keyid:41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/7RfeAL0lwYa4uOjiIdlJKbOUV9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/QR3qU0Z7bHFD6yPShFaagYOy6C8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.239.4.0/24
84.239.8.0/23
84.239.11.0/24
84.239.13.0-84.239.15.255
84.239.32.0/24
84.239.34.0-84.239.36.255
84.239.38.0-84.239.40.255
84.239.44.0/24
84.239.46.0/24
84.239.49.0/24
84.239.51.0/24
84.239.55.0-84.239.59.255
185.193.52.0/22
IPv6:
2a02:2160:8000::/36
Signature Algorithm: sha256WithRSAEncryption
0c:bf:6c:cf:0b:d0:f0:af:c5:89:66:e2:ee:f9:c0:2c:b4:d2:
22:04:4a:5e:b7:36:92:99:7a:43:0f:fe:d0:94:dd:1c:93:2a:
a0:bf:c0:c1:d8:70:8b:6b:09:f1:59:9f:b8:f8:ac:6e:d4:93:
43:e0:99:d6:3d:fb:d7:23:f2:ff:ac:34:7f:f1:b8:1b:74:7e:
cb:bf:a6:d9:26:9b:c4:1f:44:de:67:87:3b:d0:25:3d:95:9a:
6f:12:78:f8:e1:85:03:73:28:f5:09:fc:70:49:9d:3c:cb:bb:
8f:60:ea:f7:df:b1:ea:87:4c:ca:8b:85:a9:db:41:de:72:be:
b0:45:4a:ba:0f:5e:c5:87:f9:b5:4b:c8:9f:98:99:d0:19:b8:
05:4e:f1:50:bc:72:13:4b:84:a1:f6:3c:67:b5:c2:49:64:dd:
ef:9a:0d:55:55:b5:6d:8d:83:60:e8:d0:e2:e7:0d:8d:1c:33:
d4:01:8e:73:a3:3a:d7:75:72:9f:7f:7d:54:70:43:1c:63:15:
94:bb:44:c7:52:f8:60:32:6f:94:cc:b6:e6:c5:b5:76:9d:2b:
4a:5d:0b:79:32:68:09:5b:56:4e:a5:bd:59:ad:e2:0a:a9:4a:
79:84:3a:93:65:17:82:7d:fe:3b:49:45:1c:c2:05:c6:05:d3:
76:b5:07:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:12 2024 by rpki-client on console.sobornost.net