Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/18e882-97d7-41dd-9efb-7d4fa4cdc7a2/1/D131nchA3Bd4TZ903ILKK90oktE.roa
File: D131nchA3Bd4TZ903ILKK90oktE.roa (raw, json)
Hash identifier: DAcoR65ToHxCOyGJGy/b0qY3/V+KWrsi16yYWVu3Kpw=
Subject key identifier: 0F:5D:F5:9D:C8:40:DC:17:78:4D:9F:74:DC:82:CA:2B:DD:28:92:D1
Certificate issuer: /CN=785ef4bd2976bf292ab73304907f510cd00cc8a2
Certificate serial: 018CC56E019288AD785A0F5408D0C3FD99A0
Authority key identifier: 78:5E:F4:BD:29:76:BF:29:2A:B7:33:04:90:7F:51:0C:D0:0C:C8:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eF70vSl2vykqtzMEkH9RDNAMyKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/18e882-97d7-41dd-9efb-7d4fa4cdc7a2/1/D131nchA3Bd4TZ903ILKK90oktE.roa
Signing time: Mon 01 Jan 2024 14:29:30 +0000
ROA not before: Mon 01 Jan 2024 14:29:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29500
IP address blocks: 193.135.102.0/23 maxlen: 23
193.134.164.0/24 maxlen: 24
193.134.165.0/24 maxlen: 24
193.134.161.0/24 maxlen: 24
193.26.4.0/24 maxlen: 24
193.134.160.0/20 maxlen: 20
193.134.170.0/24 maxlen: 24
193.31.252.0/23 maxlen: 23
193.246.224.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:01:92:88:ad:78:5a:0f:54:08:d0:c3:fd:99:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=785ef4bd2976bf292ab73304907f510cd00cc8a2
Validity
Not Before: Jan 1 14:29:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0f5df59dc840dc17784d9f74dc82ca2bdd2892d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:0c:44:c0:9c:b7:c0:c1:70:2b:e3:85:82:fe:
7e:7b:41:e9:a4:d2:de:72:05:50:95:d0:4b:64:11:
26:1d:34:60:df:d6:e9:36:d0:2e:70:2e:19:57:5e:
6c:5c:b7:ff:4e:67:c8:f8:bc:03:86:dd:0c:76:b0:
d8:ac:8a:d9:1c:68:d0:46:1e:c9:69:07:80:ad:be:
bc:84:ec:b5:f7:c4:e4:5d:c2:ca:97:0a:aa:6e:ef:
1f:0f:05:81:71:f9:d9:43:45:1e:84:a3:35:a2:3a:
2c:1e:53:47:0b:d4:2e:28:f4:30:b2:76:e9:57:9c:
51:61:68:2b:07:25:98:6a:55:b9:0b:54:4e:bf:cd:
97:0b:e9:33:5e:e0:7d:d3:3e:01:22:68:38:fb:89:
41:cd:d8:e3:40:e6:46:0b:ef:9d:3a:8d:bf:cc:80:
17:9f:2a:f6:4f:b6:3b:f2:f1:1f:6a:de:18:23:ef:
12:56:43:5c:20:13:02:82:b3:cb:d6:6f:c8:54:bd:
87:dc:96:9d:88:ba:a8:0e:a3:24:a5:2f:47:d3:30:
d5:da:57:2f:95:56:cb:6b:bc:f3:b2:a1:50:c6:c5:
2a:df:db:e6:6e:da:f4:43:e0:2a:56:0d:b6:b2:d1:
95:cd:7b:09:fe:08:8f:a1:65:b7:cb:fd:2f:c8:b8:
25:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:5D:F5:9D:C8:40:DC:17:78:4D:9F:74:DC:82:CA:2B:DD:28:92:D1
X509v3 Authority Key Identifier:
keyid:78:5E:F4:BD:29:76:BF:29:2A:B7:33:04:90:7F:51:0C:D0:0C:C8:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eF70vSl2vykqtzMEkH9RDNAMyKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/18e882-97d7-41dd-9efb-7d4fa4cdc7a2/1/D131nchA3Bd4TZ903ILKK90oktE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/18e882-97d7-41dd-9efb-7d4fa4cdc7a2/1/eF70vSl2vykqtzMEkH9RDNAMyKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.26.4.0/24
193.31.252.0/23
193.134.160.0/20
193.135.102.0/23
193.246.224.0/20
Signature Algorithm: sha256WithRSAEncryption
4a:eb:49:81:7d:4f:80:cb:ca:da:35:59:6d:b1:cf:9c:b7:e8:
05:4a:72:2c:e1:c5:d5:c5:3b:c8:01:ff:1a:9d:d3:aa:89:14:
8c:ee:8b:a0:46:b9:70:bc:b7:c0:71:de:00:7e:ca:87:77:eb:
bf:84:99:39:a3:d8:18:64:84:c8:3b:43:2c:9f:db:f4:ee:52:
b6:a9:b7:07:29:60:28:ab:45:37:ba:fb:62:5a:ee:e5:11:e0:
77:09:95:6a:5d:a5:fb:d5:0f:b8:6f:2f:10:41:bd:fc:68:22:
3f:1e:bd:1c:14:0f:29:45:e8:9f:13:af:09:5b:88:bb:6d:05:
19:0c:90:07:33:aa:ea:54:75:4a:e2:34:28:a8:cb:97:62:9b:
3d:93:ab:e2:d6:c0:c9:07:44:60:3b:24:64:f8:4f:c0:cd:c7:
a6:05:b2:54:a3:da:41:e7:22:a3:6f:2e:48:3e:96:dd:43:66:
78:c1:fc:6a:f4:29:6d:a7:f6:0f:09:d7:17:aa:cc:ec:92:7d:
3d:85:be:a0:1f:8a:e6:6a:29:46:d3:f9:2a:ca:4c:4a:26:f5:
89:5c:77:5f:62:fa:98:5a:cb:8e:19:68:2d:40:00:ff:e0:bd:
75:21:bb:b2:a6:82:41:ee:45:3c:20:45:c5:5e:37:03:37:02:
ca:e3:1a:db
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAYzFbgGSiK14Wg9UCNDD/ZmgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc4NWVmNGJkMjk3NmJmMjkyYWI3MzMwNDkwN2Y1MTBjZDAw
Y2M4YTIwHhcNMjQwMTAxMTQyOTMwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZjVkZjU5ZGM4NDBkYzE3Nzg0ZDlmNzRkYzgyY2EyYmRkMjg5MmQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkQxEwJy3wMFwK+OFgv5+e0HppNLe
cgVQldBLZBEmHTRg39bpNtAucC4ZV15sXLf/TmfI+LwDht0MdrDYrIrZHGjQRh7J
aQeArb68hOy198TkXcLKlwqqbu8fDwWBcfnZQ0UehKM1ojosHlNHC9QuKPQwsnbp
V5xRYWgrByWYalW5C1ROv82XC+kzXuB90z4BImg4+4lBzdjjQOZGC++dOo2/zIAX
nyr2T7Y78vEfat4YI+8SVkNcIBMCgrPL1m/IVL2H3JadiLqoDqMkpS9H0zDV2lcv
lVbLa7zzsqFQxsUq39vmbtr0Q+AqVg22stGVzXsJ/giPoWW3y/0vyLgloQIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFA9d9Z3IQNwXeE2fdNyCyivdKJLRMB8GA1UdIwQY
MBaAFHhe9L0pdr8pKrczBJB/UQzQDMiiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZUY3MHZTbDJ2eWtxdHpNRWtIOVJETkFNeUtJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC8xOGU4ODItOTdkNy00MWRkLTllZmIt
N2Q0ZmE0Y2RjN2EyLzEvRDEzMW5jaEEzQmQ0VFo5MDNJTEtLOTBva3RFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC8xOGU4ODItOTdkNy00MWRkLTllZmItN2Q0ZmE0Y2RjN2Ey
LzEvZUY3MHZTbDJ2eWtxdHpNRWtIOVJETkFNeUtJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAwRoEAwQB
wR/8AwQEwYagAwQBwYdmAwQEwfbgMA0GCSqGSIb3DQEBCwUAA4IBAQBK60mBfU+A
y8raNVltsc+ct+gFSnIs4cXVxTvIAf8andOqiRSM7ougRrlwvLfAcd4AfsqHd+u/
hJk5o9gYZITIO0Msn9v07lK2qbcHKWAoq0U3uvtiWu7lEeB3CZVqXaX71Q+4by8Q
Qb38aCI/Hr0cFA8pReifE68JW4i7bQUZDJAHM6rqVHVK4jQoqMuXYps9k6vi1sDJ
B0RgOyRk+E/AzcemBbJUo9pB5yKjby5IPpbdQ2Z4wfxq9Cltp/YPCdcXqszskn09
hb6gH4rmailG0/kqykxKJvWJXHdfYvqYWsuOGWgtQAD/4L11IbuypoJB7kU8IEXF
XjcDNwLK4xrb
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:13 2024 by rpki-client on console.sobornost.net