Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/568e21-53a4-4e55-9c57-98282c89f516/1/_cMHC4wShsvOfpHMvCAnpyDecZk.roa
File: _cMHC4wShsvOfpHMvCAnpyDecZk.roa (raw, json)
Hash identifier: o0wmlNjdhG8qpwRZNg5HrxLx6Q9fkj/EwjdySXrfVno=
Subject key identifier: FD:C3:07:0B:8C:12:86:CB:CE:7E:91:CC:BC:20:27:A7:20:DE:71:99
Certificate issuer: /CN=262341b433e1f8fcb796322d2fd926409396e7ad
Certificate serial: 01938C026F10ABF1976F6CAA74509EC2CE95
Authority key identifier: 26:23:41:B4:33:E1:F8:FC:B7:96:32:2D:2F:D9:26:40:93:96:E7:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JiNBtDPh-Py3ljItL9kmQJOW560.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/568e21-53a4-4e55-9c57-98282c89f516/1/_cMHC4wShsvOfpHMvCAnpyDecZk.roa
Signing time: Tue 03 Dec 2024 10:13:09 +0000
ROA not before: Tue 03 Dec 2024 10:13:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57030
IP address blocks: 45.12.36.0/22 maxlen: 24
176.62.200.0/21 maxlen: 21
185.66.0.0/22 maxlen: 22
185.177.120.0/22 maxlen: 22
195.42.150.0/24 maxlen: 24
195.42.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:8c:02:6f:10:ab:f1:97:6f:6c:aa:74:50:9e:c2:ce:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=262341b433e1f8fcb796322d2fd926409396e7ad
Validity
Not Before: Dec 3 10:13:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fdc3070b8c1286cbce7e91ccbc2027a720de7199
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:1e:da:f9:68:fa:84:02:dd:c5:d9:e5:46:b3:
65:8f:2e:2e:95:5f:77:29:ce:3d:94:cb:5b:68:62:
22:fc:19:65:8f:c1:32:fe:0c:fd:c2:7f:f1:51:48:
37:e9:55:0b:d2:9f:29:55:01:7a:5f:ca:8c:6d:64:
bc:0f:6d:ff:61:6e:39:8b:77:b3:c5:63:29:27:1d:
05:16:bb:cc:e5:99:d0:5c:87:ec:ea:45:e5:40:cd:
23:c6:0b:1d:60:e1:2d:78:b2:69:80:fe:3e:80:57:
c3:ae:db:5b:2a:76:07:09:61:83:b7:20:91:cf:cc:
14:5e:73:79:7c:8e:67:b1:0f:15:5a:db:d1:4f:64:
9c:ba:69:9d:22:50:11:fa:d1:83:75:54:d7:80:c6:
e1:ba:56:45:64:5e:73:93:35:18:b4:c0:e8:c3:6f:
13:cf:ba:9b:5c:7b:02:24:55:05:b6:8e:8c:b7:2e:
d6:38:34:93:a4:f7:4f:de:a5:04:19:d6:8c:cf:3c:
f3:c0:f4:e1:e5:49:fd:e6:0e:f9:e4:10:35:00:56:
5f:c5:94:c1:0e:bb:33:e6:37:38:46:d6:b5:18:0d:
11:3e:1d:a4:39:bd:a1:46:0f:53:f6:0c:e1:43:46:
54:06:48:12:f4:66:b2:67:7c:45:b4:23:b8:f9:44:
21:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:C3:07:0B:8C:12:86:CB:CE:7E:91:CC:BC:20:27:A7:20:DE:71:99
X509v3 Authority Key Identifier:
keyid:26:23:41:B4:33:E1:F8:FC:B7:96:32:2D:2F:D9:26:40:93:96:E7:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JiNBtDPh-Py3ljItL9kmQJOW560.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/568e21-53a4-4e55-9c57-98282c89f516/1/_cMHC4wShsvOfpHMvCAnpyDecZk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/568e21-53a4-4e55-9c57-98282c89f516/1/JiNBtDPh-Py3ljItL9kmQJOW560.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.36.0/22
176.62.200.0/21
185.66.0.0/22
185.177.120.0/22
195.42.150.0/23
Signature Algorithm: sha256WithRSAEncryption
85:3d:db:8f:26:f1:f4:a1:41:2e:f5:dc:23:fc:ac:ef:36:b1:
29:34:f8:11:9d:48:2d:43:84:49:0c:15:61:4b:34:f9:21:6b:
11:7a:e1:70:8e:2d:81:80:72:0f:0d:d7:c7:ba:86:8a:d5:84:
1e:4b:3b:8f:da:e3:a8:9a:67:df:5a:f6:c4:30:c7:20:1a:dc:
63:87:a9:ac:e4:48:88:0a:68:3f:0a:c8:8a:25:46:7c:cb:b3:
72:45:48:3e:91:a5:54:ab:df:93:d0:e2:df:5b:20:d2:d5:4b:
f5:fa:d3:bb:07:21:80:4a:66:d9:21:13:c7:a3:50:7b:0b:4d:
f8:8e:c0:8d:fb:c6:57:ca:6b:dd:e8:cf:70:dc:08:8c:7e:92:
ca:86:36:3b:09:04:65:f2:2c:13:ad:32:56:66:ac:f9:31:81:
0a:df:8b:9f:08:01:cb:79:1c:3c:25:77:c4:aa:f4:e8:ae:58:
d6:8e:5f:32:a3:9a:8b:76:1a:d9:54:b4:17:eb:17:ce:0c:21:
6a:c4:ac:60:73:36:ff:58:06:ae:77:02:a7:ab:9d:f3:8d:d9:
b5:ea:df:a1:5e:ae:31:ab:83:02:68:e7:e4:44:2c:04:54:e0:
70:2f:ff:58:a3:1b:10:63:17:e6:60:b8:91:5f:4c:24:ec:fb:
b6:82:f1:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:21 2024 by rpki-client on console.sobornost.net