Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/pxoPIcC83YPwgnqporda6TjIYjI.roa
File: pxoPIcC83YPwgnqporda6TjIYjI.roa (raw, json)
Hash identifier: xuuhJ49CpL/gvl7f4J9mdtcyGgVexWGLS96yNZfx0L8=
Subject key identifier: A7:1A:0F:21:C0:BC:DD:83:F0:82:7A:A9:A2:B7:5A:E9:38:C8:62:32
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 0193E88573C32EDAA28FE4995E0EB5F86B14
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/pxoPIcC83YPwgnqporda6TjIYjI.roa
Signing time: Sat 21 Dec 2024 09:21:20 +0000
ROA not before: Sat 21 Dec 2024 09:21:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214088
IP address blocks: 85.133.221.0/24 maxlen: 24
85.133.233.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:e8:85:73:c3:2e:da:a2:8f:e4:99:5e:0e:b5:f8:6b:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Dec 21 09:21:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a71a0f21c0bcdd83f0827aa9a2b75ae938c86232
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:be:4e:b4:86:87:94:6d:40:e7:62:8e:33:15:
cd:b0:8b:0b:fd:76:b9:05:0f:01:c8:9c:9c:6c:91:
23:71:0b:39:ae:45:3c:36:ec:ee:fc:03:58:00:6e:
0b:5e:ec:5c:25:e1:03:0e:cc:32:b5:20:11:15:ff:
ae:9b:0d:78:32:41:7c:b3:7f:8e:97:af:c8:53:f9:
3d:4b:d5:4b:04:45:f4:00:68:49:e9:5c:9d:32:53:
57:e7:e4:0e:62:24:11:04:60:5c:ad:f7:1c:05:65:
89:23:be:ca:ef:2b:1a:43:ee:5c:5d:39:c1:d1:c0:
e8:8e:72:1f:f1:af:5e:9f:3d:91:d4:6d:84:0b:aa:
db:d1:9d:a2:a3:75:9c:a9:5f:0d:f9:e7:af:75:2e:
0e:81:6a:1d:a8:95:15:fd:5a:7d:e5:7c:ad:3c:a1:
c2:91:08:7c:be:33:ff:f7:ec:65:5a:5f:80:c0:13:
4c:38:f5:49:7c:5c:eb:f0:f9:83:b4:60:ba:fa:61:
83:fa:24:8a:d8:6c:69:88:c2:7c:41:23:37:22:4e:
ac:8a:2b:e3:4f:1d:86:72:ab:f3:4e:55:bb:9c:66:
0a:51:17:70:fc:c9:69:4e:04:58:d6:eb:c8:8c:93:
12:f2:9b:1f:c9:23:19:bd:61:59:12:20:1a:d3:95:
bc:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:1A:0F:21:C0:BC:DD:83:F0:82:7A:A9:A2:B7:5A:E9:38:C8:62:32
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/pxoPIcC83YPwgnqporda6TjIYjI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.221.0/24
85.133.233.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:eb:99:3b:fd:5d:0b:bb:7b:09:da:4f:61:7b:e6:9d:d4:07:
bd:d4:f1:6a:09:be:22:c5:bb:42:96:c7:80:31:c0:38:82:22:
ad:9c:57:8b:1b:82:cd:d0:4e:0a:eb:1f:f5:da:91:a5:33:05:
0e:81:63:96:8c:95:f6:62:7a:ce:51:c1:cd:85:b4:12:96:03:
a4:6f:97:c0:65:4b:94:4f:16:9c:c2:c0:b2:79:21:07:42:10:
95:07:68:a1:aa:9e:b4:ad:3f:7d:8c:82:c8:eb:ba:ba:c3:ed:
86:52:0b:f5:b1:5f:7c:4e:2d:e3:b2:df:ae:19:b1:20:4a:d5:
75:e6:ca:52:5b:39:82:44:b8:75:a2:5d:03:53:c7:0f:b1:44:
4a:8a:ad:9b:c7:80:05:eb:a6:a6:73:b3:e8:d7:98:32:69:ae:
42:47:0d:91:c8:8f:92:a7:fb:54:c6:dc:f4:fd:a8:7d:c9:66:
cc:26:d9:5d:0b:e9:ce:bd:e6:1d:2c:bf:d4:ef:14:40:4c:ab:
c4:19:5c:ff:40:b9:69:8b:11:11:85:02:76:38:6b:51:91:5b:
3f:53:47:df:8f:53:eb:2e:2e:6a:fb:5d:74:be:0a:af:18:3b:
62:be:e2:8c:3e:3c:a7:d0:45:c2:0f:a0:c5:8b:a5:98:0b:91:
03:2f:e9:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:24 2024 by rpki-client on console.sobornost.net