Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/SKF6a7UGpR0TzXvcfOtIp9s12dE.roa
File: SKF6a7UGpR0TzXvcfOtIp9s12dE.roa (raw, json)
Hash identifier: Iyn1WQwy3PN90vzI1ktM04XbXvNBB5h8vv/QfefKGBg=
Subject key identifier: 48:A1:7A:6B:B5:06:A5:1D:13:CD:7B:DC:7C:EB:48:A7:DB:35:D9:D1
Certificate issuer: /CN=f5c371f3a34abf1957d1895df8063f4d6207ec02
Certificate serial: 0193A02CAB8055BA0D1ABF84CFCEC84F68CE
Authority key identifier: F5:C3:71:F3:A3:4A:BF:19:57:D1:89:5D:F8:06:3F:4D:62:07:EC:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9cNx86NKvxlX0Yld-AY_TWIH7AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/SKF6a7UGpR0TzXvcfOtIp9s12dE.roa
Signing time: Sat 07 Dec 2024 08:11:42 +0000
ROA not before: Sat 07 Dec 2024 08:11:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208006
IP address blocks: 37.32.3.0/24 maxlen: 24
185.97.116.0/22 maxlen: 22
185.143.232.0/22 maxlen: 24
193.176.240.0/22 maxlen: 24
2a0c:a7c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:a0:2c:ab:80:55:ba:0d:1a:bf:84:cf:ce:c8:4f:68:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5c371f3a34abf1957d1895df8063f4d6207ec02
Validity
Not Before: Dec 7 08:11:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=48a17a6bb506a51d13cd7bdc7ceb48a7db35d9d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:09:2d:d6:c3:30:f7:26:8f:25:62:c5:43:48:
09:12:f9:a6:66:fc:67:67:61:89:47:53:fb:b7:41:
36:ad:9e:f7:86:5e:7d:d6:cb:b1:7c:9e:98:16:a0:
88:a5:3a:d1:bc:38:a4:9d:98:af:4a:df:4d:8e:ee:
e8:49:49:cb:74:34:27:c9:1d:49:cb:35:8e:44:c1:
d6:bd:cb:68:ca:14:c3:3d:39:d8:c9:55:fb:a3:82:
9d:b2:4d:34:17:b2:9c:bc:fe:3b:ad:31:31:f4:c1:
6b:e9:26:76:b4:19:26:fe:6d:52:61:b6:3c:fe:30:
eb:0c:7f:65:56:e0:e5:93:a5:59:22:3e:1e:67:6e:
6f:89:2d:46:9e:4c:a6:bb:b9:b3:0b:ab:9a:02:85:
b1:2f:13:98:d3:66:ef:63:54:d3:3f:af:3d:45:5a:
ad:0e:77:71:4b:4b:d7:64:6e:b8:c1:a0:9e:31:f1:
3a:23:34:1b:c8:12:fd:25:9f:cb:33:5c:0a:25:5f:
12:65:51:0a:87:7e:a6:25:52:4f:33:6e:71:55:b5:
75:c6:c0:2e:8d:8d:33:c4:14:5d:5f:e3:eb:ec:ff:
98:7c:20:98:8d:d5:0d:88:59:27:f9:99:6f:12:be:
e6:83:f0:67:54:c2:6d:09:a8:d4:c4:4d:53:8c:4f:
e5:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:A1:7A:6B:B5:06:A5:1D:13:CD:7B:DC:7C:EB:48:A7:DB:35:D9:D1
X509v3 Authority Key Identifier:
keyid:F5:C3:71:F3:A3:4A:BF:19:57:D1:89:5D:F8:06:3F:4D:62:07:EC:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9cNx86NKvxlX0Yld-AY_TWIH7AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/SKF6a7UGpR0TzXvcfOtIp9s12dE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/9cNx86NKvxlX0Yld-AY_TWIH7AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.3.0/24
185.97.116.0/22
185.143.232.0/22
193.176.240.0/22
IPv6:
2a0c:a7c0::/29
Signature Algorithm: sha256WithRSAEncryption
91:01:c0:ec:91:10:7b:42:8e:bd:6c:08:b1:8e:df:d0:85:d6:
39:4f:0f:ef:e8:9c:76:99:68:ac:f7:0d:ee:22:7e:b1:e7:7f:
a8:b0:c5:ff:06:17:d2:ec:ab:49:f5:87:7f:46:fe:d1:ac:eb:
59:33:d1:47:3e:d0:21:9f:89:1f:70:15:81:e0:81:77:09:fb:
ef:8c:9d:8b:f1:4c:ba:37:29:5b:76:6c:21:1e:d0:e3:8b:50:
2b:78:23:57:ca:44:ff:22:50:7d:8a:cc:df:7a:54:02:14:37:
5d:f8:40:0e:bf:e0:d9:eb:bc:73:1f:d0:47:c6:b8:f5:6d:02:
cd:14:91:02:10:9a:74:22:7d:1d:1e:75:7d:6b:5d:33:5b:e8:
da:5b:59:cb:a1:34:f1:96:be:30:ba:38:7c:09:af:9f:cd:b3:
fa:8c:34:9d:51:2e:f6:94:3c:c3:e8:75:0e:32:67:5e:83:fe:
61:c2:d2:e8:55:79:41:45:bc:63:c7:6b:84:e2:c4:08:ee:b9:
ec:cc:27:e0:71:1a:4d:11:94:0d:bd:c7:67:4b:a7:c0:b5:50:
b8:50:9b:2a:9d:ce:b1:64:74:1f:0c:24:b0:6f:5a:93:22:20:
c7:30:31:e7:7a:93:81:58:58:dd:bc:44:2c:d5:0e:17:4c:83:
a9:18:3e:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:17 2024 by rpki-client on console.sobornost.net