Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/8e2067-283b-4e4e-b67e-69f33fe1b530/1/3YyLZ1OSMlSn98Ia5WC3SfqXVDA.roa
File: 3YyLZ1OSMlSn98Ia5WC3SfqXVDA.roa (raw, json)
Hash identifier: SsVGlH5+ausiPU16sTBDIkpjQpO0g3WJRJ5GmlTOQDk=
Subject key identifier: DD:8C:8B:67:53:92:32:54:A7:F7:C2:1A:E5:60:B7:49:FA:97:54:30
Certificate issuer: /CN=162e48329c8be8ef209e9958da66ab0240145e19
Certificate serial: 0190D94817A6832B7F3185CCAE4030787C49
Authority key identifier: 16:2E:48:32:9C:8B:E8:EF:20:9E:99:58:DA:66:AB:02:40:14:5E:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fi5IMpyL6O8gnplY2marAkAUXhk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/8e2067-283b-4e4e-b67e-69f33fe1b530/1/3YyLZ1OSMlSn98Ia5WC3SfqXVDA.roa
Signing time: Mon 22 Jul 2024 07:11:38 +0000
ROA not before: Mon 22 Jul 2024 07:11:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57795
IP address blocks: 23.249.232.0/21 maxlen: 24
37.114.88.0/21 maxlen: 24
83.174.128.0/20 maxlen: 24
93.92.24.0/21 maxlen: 24
149.143.0.0/19 maxlen: 24
185.6.204.0/22 maxlen: 24
185.34.176.0/22 maxlen: 24
185.37.64.0/22 maxlen: 24
185.37.64.0/23 maxlen: 24
185.43.212.0/22 maxlen: 24
185.144.20.0/22 maxlen: 24
185.221.156.0/22 maxlen: 24
185.254.41.0/24 maxlen: 24
185.254.42.0/23 maxlen: 24
2a00:9340::/29 maxlen: 29
2a00:f5e0::/32 maxlen: 32
2a07:36c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:d9:48:17:a6:83:2b:7f:31:85:cc:ae:40:30:78:7c:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=162e48329c8be8ef209e9958da66ab0240145e19
Validity
Not Before: Jul 22 07:11:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dd8c8b6753923254a7f7c21ae560b749fa975430
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:91:9b:70:95:76:57:ed:3f:bf:31:00:ea:a4:
55:3c:29:5d:c4:51:05:e7:9c:9f:c9:7b:94:59:e6:
29:9f:3f:19:da:85:c4:ad:4a:05:78:9c:39:24:ef:
ef:f0:c0:8c:44:a8:d2:18:68:8e:6d:e3:19:e7:9c:
87:e1:70:45:99:30:01:cb:27:3a:e2:5a:7e:85:77:
4e:7b:f6:47:7f:60:01:cd:b0:1d:7f:5c:7b:3c:ad:
ca:16:8c:d4:9a:fb:c3:c5:67:c8:f8:e0:52:af:3f:
b2:d7:66:dd:93:6b:23:4c:ac:5b:34:b5:a7:c4:ca:
26:86:cd:e5:56:88:45:4f:9b:4b:81:22:3b:03:cb:
17:5e:9c:ba:b8:26:8e:a4:d2:f7:f1:f2:a6:60:a2:
73:09:d2:1e:51:c8:c5:5c:72:d4:80:13:4f:0b:2a:
24:df:a6:81:91:9b:a7:63:3c:7b:01:bb:33:b5:d3:
cf:72:12:13:a8:7b:c6:49:64:8a:f7:2c:3b:80:57:
cf:e9:0c:52:f6:c3:b8:a8:a9:ac:07:42:92:77:03:
db:4f:47:2f:9e:f0:a7:81:a5:f7:35:c9:b9:2c:23:
d4:8c:85:6e:50:57:ee:5c:98:96:51:e0:2d:f5:0d:
36:37:d0:cb:a9:d2:d3:bc:4e:a3:2a:93:87:0c:75:
24:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:8C:8B:67:53:92:32:54:A7:F7:C2:1A:E5:60:B7:49:FA:97:54:30
X509v3 Authority Key Identifier:
keyid:16:2E:48:32:9C:8B:E8:EF:20:9E:99:58:DA:66:AB:02:40:14:5E:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fi5IMpyL6O8gnplY2marAkAUXhk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/8e2067-283b-4e4e-b67e-69f33fe1b530/1/3YyLZ1OSMlSn98Ia5WC3SfqXVDA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/8e2067-283b-4e4e-b67e-69f33fe1b530/1/Fi5IMpyL6O8gnplY2marAkAUXhk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
23.249.232.0/21
37.114.88.0/21
83.174.128.0/20
93.92.24.0/21
149.143.0.0/19
185.6.204.0/22
185.34.176.0/22
185.37.64.0/22
185.43.212.0/22
185.144.20.0/22
185.221.156.0/22
185.254.41.0-185.254.43.255
IPv6:
2a00:9340::/29
2a00:f5e0::/32
2a07:36c0::/29
Signature Algorithm: sha256WithRSAEncryption
38:99:b6:d2:a0:4f:4e:32:64:7e:c7:36:6b:ad:96:2f:81:61:
2c:b7:d1:80:85:17:1a:4a:8e:c2:fd:17:e5:15:5e:08:0f:a8:
ec:e0:2d:88:0e:84:cd:87:ee:d0:d1:59:69:33:e2:7b:6a:a1:
19:9a:01:e3:ca:25:b9:4b:28:b8:8c:98:7d:a0:9b:3e:52:3b:
db:ca:1b:ec:0d:20:ba:df:38:9f:35:e8:be:03:89:ba:d0:cc:
fb:e3:e6:65:56:99:df:a8:18:e1:5d:db:30:fc:76:46:70:d7:
be:2c:d7:8f:0c:52:c9:cc:46:e7:91:d3:5a:f2:58:34:7a:26:
26:1c:ca:cc:58:0a:ad:ec:ad:b2:6e:a2:97:ca:e7:c3:75:8d:
a8:e2:2e:59:7b:b4:a2:b7:eb:ec:00:c3:1b:5a:3a:aa:9e:13:
73:b5:fd:e1:2c:42:d1:1b:55:d2:e0:89:06:b2:84:b7:41:81:
a9:9f:45:92:7d:a8:3d:c1:45:98:7d:73:ff:ec:05:d4:bc:18:
5e:f9:d9:00:84:4c:47:d8:14:9a:33:86:33:88:bb:0f:a7:06:
41:7d:17:23:9a:a4:d4:61:12:9b:f1:61:57:b6:29:df:14:a2:
2a:31:12:e0:da:8d:25:e6:1a:48:af:1b:03:d4:6a:f3:a3:ce:
40:5b:ac:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 7 10:20:11 2024 by rpki-client on console.sobornost.net