Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/618d33-dd92-4d91-b821-e850677cffb3/1/Toxhl2g6utj2SPfpaA1WaZuAQrc.roa
File: Toxhl2g6utj2SPfpaA1WaZuAQrc.roa (raw, json)
Hash identifier: KPFG7i9G1yM+IKu3i8MhlSmOt9iRJCfW0gkqRguK6G8=
Subject key identifier: 4E:8C:61:97:68:3A:BA:D8:F6:48:F7:E9:68:0D:56:69:9B:80:42:B7
Certificate issuer: /CN=6883f347e3891f573df8015ad6cc331cceb04768
Certificate serial: 0193AED4339449032EC2BBE61ABB79C387B8
Authority key identifier: 68:83:F3:47:E3:89:1F:57:3D:F8:01:5A:D6:CC:33:1C:CE:B0:47:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aIPzR-OJH1c9-AFa1swzHM6wR2g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/618d33-dd92-4d91-b821-e850677cffb3/1/Toxhl2g6utj2SPfpaA1WaZuAQrc.roa
Signing time: Tue 10 Dec 2024 04:29:22 +0000
ROA not before: Tue 10 Dec 2024 04:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48955
IP address blocks: 193.176.99.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:ae:d4:33:94:49:03:2e:c2:bb:e6:1a:bb:79:c3:87:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6883f347e3891f573df8015ad6cc331cceb04768
Validity
Not Before: Dec 10 04:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4e8c6197683abad8f648f7e9680d56699b8042b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d6:ec:c9:3d:2b:d9:28:45:71:e5:59:52:71:
42:93:f3:71:7d:d4:4c:85:1e:10:79:95:25:56:69:
48:2c:ed:2e:4e:fc:8d:6e:75:69:12:b4:94:e4:78:
8d:45:be:a6:c0:c0:42:d7:60:bd:72:ab:ec:ee:9d:
67:30:e6:1d:64:9b:7a:13:de:22:f6:be:a2:c0:5b:
53:a9:2b:fd:91:f4:48:35:ac:4b:00:76:e7:24:92:
28:86:2a:c4:fc:c0:54:ed:74:99:60:e8:4b:62:63:
89:68:76:d7:4b:ac:f8:b7:34:34:c6:bc:33:70:09:
98:dc:48:94:bd:72:04:fc:aa:c9:96:d6:1b:e5:ae:
c7:1f:4b:e0:e4:09:a4:03:7b:3b:3a:fc:e7:3f:34:
9d:9a:28:4a:5c:42:55:ac:13:bf:e9:26:83:cb:22:
83:ce:2d:90:d4:d8:77:e7:36:47:eb:d9:ca:54:79:
af:7e:1a:8e:8a:9d:78:00:94:40:58:01:f1:21:b7:
52:07:20:04:c5:26:65:52:f0:c8:9b:23:f3:34:32:
d3:19:06:9d:58:8c:e1:69:64:58:06:09:22:aa:63:
23:e2:7d:08:45:bc:53:25:d2:8e:d5:fd:f3:06:d3:
43:a1:99:db:cd:67:d8:02:0e:45:8f:31:bf:2d:8a:
24:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:8C:61:97:68:3A:BA:D8:F6:48:F7:E9:68:0D:56:69:9B:80:42:B7
X509v3 Authority Key Identifier:
keyid:68:83:F3:47:E3:89:1F:57:3D:F8:01:5A:D6:CC:33:1C:CE:B0:47:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aIPzR-OJH1c9-AFa1swzHM6wR2g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/618d33-dd92-4d91-b821-e850677cffb3/1/Toxhl2g6utj2SPfpaA1WaZuAQrc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/618d33-dd92-4d91-b821-e850677cffb3/1/aIPzR-OJH1c9-AFa1swzHM6wR2g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.176.99.0/24
Signature Algorithm: sha256WithRSAEncryption
99:90:ea:0d:3d:f6:01:e5:5b:5e:1d:ab:2f:4f:1c:e8:bb:00:
cf:fd:4b:77:37:a2:4e:69:ed:c1:51:4d:a0:55:33:90:28:fa:
27:12:5f:76:c9:83:d8:a7:9c:c5:a4:88:75:02:6b:35:b0:cb:
4b:10:c9:45:9f:21:67:8e:33:03:f7:00:80:86:42:45:5f:da:
30:94:1f:aa:e2:b1:ba:54:ac:42:a3:65:dc:b4:87:28:91:08:
4e:2a:2d:2b:2c:f6:97:31:43:83:d1:24:c6:36:61:67:98:dc:
be:90:f3:8d:93:f5:6d:89:95:52:32:d7:81:f1:d5:45:f5:e8:
83:da:b6:b1:fc:b4:20:0c:83:2a:64:16:02:ee:47:00:67:86:
15:8f:33:59:85:6a:66:e2:74:49:a1:f8:ff:c6:60:98:bb:fc:
57:93:25:40:7f:b1:04:0d:30:b9:da:c8:85:8d:d9:f5:e1:72:
65:5b:7a:d4:1d:f6:bd:2a:04:c0:a8:1a:30:ba:67:30:98:92:
31:62:dd:17:66:eb:5d:ab:13:a3:6c:31:ef:85:6b:7e:bb:95:
b1:95:c2:b5:00:1a:50:ef:c3:77:95:d1:8f:1a:2e:f8:a9:a8:
c8:b3:c2:9d:96:61:ee:3d:5b:06:1e:41:60:d9:dd:a1:f5:28:
b6:8a:60:9b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZOu1DOUSQMuwrvmGrt5w4e4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4ODNmMzQ3ZTM4OTFmNTczZGY4MDE1YWQ2Y2MzMzFjY2Vi
MDQ3NjgwHhcNMjQxMjEwMDQyOTIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZThjNjE5NzY4M2FiYWQ4ZjY0OGY3ZTk2ODBkNTY2OTliODA0MmI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvtbsyT0r2ShFceVZUnFCk/NxfdRM
hR4QeZUlVmlILO0uTvyNbnVpErSU5HiNRb6mwMBC12C9cqvs7p1nMOYdZJt6E94i
9r6iwFtTqSv9kfRINaxLAHbnJJIohirE/MBU7XSZYOhLYmOJaHbXS6z4tzQ0xrwz
cAmY3EiUvXIE/KrJltYb5a7HH0vg5AmkA3s7OvznPzSdmihKXEJVrBO/6SaDyyKD
zi2Q1Nh35zZH69nKVHmvfhqOip14AJRAWAHxIbdSByAExSZlUvDImyPzNDLTGQad
WIzhaWRYBgkiqmMj4n0IRbxTJdKO1f3zBtNDoZnbzWfYAg5FjzG/LYoknwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE6MYZdoOrrY9kj36WgNVmmbgEK3MB8GA1UdIwQY
MBaAFGiD80fjiR9XPfgBWtbMMxzOsEdoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUlQelItT0pIMWM5LUFGYTFzd3pITTZ3UjJnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS82MThkMzMtZGQ5Mi00ZDkxLWI4MjEt
ZTg1MDY3N2NmZmIzLzEvVG94aGwyZzZ1dGoyU1BmcGFBMVdhWnVBUXJjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOS82MThkMzMtZGQ5Mi00ZDkxLWI4MjEtZTg1MDY3N2NmZmIz
LzEvYUlQelItT0pIMWM5LUFGYTFzd3pITTZ3UjJnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwbBjMA0G
CSqGSIb3DQEBCwUAA4IBAQCZkOoNPfYB5VteHasvTxzouwDP/Ut3N6JOae3BUU2g
VTOQKPonEl92yYPYp5zFpIh1Ams1sMtLEMlFnyFnjjMD9wCAhkJFX9owlB+q4rG6
VKxCo2XctIcokQhOKi0rLPaXMUOD0STGNmFnmNy+kPONk/VtiZVSMteB8dVF9eiD
2rax/LQgDIMqZBYC7kcAZ4YVjzNZhWpm4nRJofj/xmCYu/xXkyVAf7EEDTC52siF
jdn14XJlW3rUHfa9KgTAqBowumcwmJIxYt0XZutdqxOjbDHvhWt+u5WxlcK1ABpQ
78N3ldGPGi74qajIs8KdlmHuPVsGHkFg2d2h9Si2imCb
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:19 2024 by rpki-client on console.sobornost.net