Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/Y4eE0yS-7NhYoItVeHdI1bspvH8.roa
File: Y4eE0yS-7NhYoItVeHdI1bspvH8.roa (raw, json)
Hash identifier: TIpLaU3zWTVvR4dNoO/vxbdCEb16sH/z0xFLMnGFaoU=
Subject key identifier: 63:87:84:D3:24:BE:EC:D8:58:A0:8B:55:78:77:48:D5:BB:29:BC:7F
Certificate issuer: /CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Certificate serial: 0193917C1B70B034AD221FFF0FF963560188
Authority key identifier: DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/Y4eE0yS-7NhYoItVeHdI1bspvH8.roa
Signing time: Wed 04 Dec 2024 11:44:09 +0000
ROA not before: Wed 04 Dec 2024 11:44:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201031
IP address blocks: 185.217.90.0/24 maxlen: 24
194.113.196.0/22 maxlen: 22
194.113.196.0/23 maxlen: 23
194.113.196.0/24 maxlen: 24
194.113.197.0/24 maxlen: 24
194.113.198.0/23 maxlen: 23
194.113.198.0/24 maxlen: 24
194.113.199.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:91:7c:1b:70:b0:34:ad:22:1f:ff:0f:f9:63:56:01:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Validity
Not Before: Dec 4 11:44:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=638784d324beecd858a08b55787748d5bb29bc7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:77:7d:12:fd:b0:f4:30:8b:d9:47:d6:e5:d3:
c6:8d:5e:1b:5e:df:e2:f6:3d:7c:95:f4:a4:7d:7a:
90:62:cd:1f:bc:70:8f:f1:46:f4:9d:83:30:78:ed:
0e:7a:76:e1:3c:01:64:9b:5f:35:52:ad:24:7d:ea:
aa:36:b2:9e:f7:a0:ac:44:2c:9e:16:a3:18:11:95:
26:b1:33:e9:1b:56:f6:73:e7:dd:fa:5e:ad:46:66:
68:a3:2c:da:a9:6b:e2:6a:d1:c4:80:d4:e7:ae:60:
e8:dc:18:d5:e6:38:fb:99:8c:4d:dc:59:1c:fe:bf:
b1:95:c8:e6:b9:81:20:3c:cc:bd:26:56:59:71:ee:
e3:c1:f6:ab:26:55:43:b5:ee:85:23:8c:5a:e6:ff:
40:e8:bb:97:86:24:d1:af:6f:71:be:40:3b:2a:14:
7b:5e:9e:d7:0b:5e:be:b6:93:b8:dc:32:e2:25:33:
0b:d1:3b:54:c5:dd:60:ac:9b:67:71:de:3c:84:71:
f8:12:3c:ec:e6:8e:1e:99:03:a3:31:a5:dc:a5:96:
28:ad:80:f3:81:95:ea:f4:ab:4b:01:4b:f6:8a:d3:
e3:34:e8:33:60:5f:d8:74:06:8e:51:f6:69:2f:4a:
c9:27:68:8d:b8:0a:5d:ee:89:4e:6c:61:a3:39:98:
e2:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:87:84:D3:24:BE:EC:D8:58:A0:8B:55:78:77:48:D5:BB:29:BC:7F
X509v3 Authority Key Identifier:
keyid:DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/Y4eE0yS-7NhYoItVeHdI1bspvH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.90.0/24
194.113.196.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:c1:d6:2b:64:ad:fe:ca:da:aa:32:00:1e:e8:90:90:27:72:
9d:96:ae:b1:05:c9:27:99:96:fd:c3:7a:23:3e:94:ef:78:32:
35:f6:2a:38:bb:2b:17:4c:21:82:a2:29:28:aa:55:3e:2e:8e:
86:28:bf:13:63:d3:26:e7:51:9b:cc:52:dd:00:41:db:70:0b:
c2:38:84:b0:89:f7:54:60:81:97:cc:77:da:d5:81:ef:b2:64:
70:8b:80:a2:1d:82:bd:f3:44:43:c4:85:87:a6:94:a6:ad:02:
d7:1e:13:c4:66:9f:d3:9a:d0:7d:c2:bb:4b:93:54:8a:9b:67:
15:40:a2:6f:1e:36:25:93:e6:2e:0b:43:ac:41:e2:88:6d:49:
3f:6a:c6:a7:5f:38:67:68:74:da:0a:c8:36:1b:7c:c7:f9:91:
9b:db:4f:c3:94:8a:44:31:b5:84:a3:0b:b0:c7:0f:65:3e:df:
14:16:bb:21:15:a2:e3:a4:2a:c6:66:ba:05:56:1d:d5:49:e3:
0b:32:1e:a5:de:d2:0f:aa:15:ba:3c:89:3e:12:aa:5e:14:34:
e6:50:b4:e1:4c:94:08:ec:0a:eb:29:70:e8:16:97:b0:b9:bd:
37:ad:be:36:b5:79:78:91:40:41:3c:3e:ce:b8:84:53:1a:88:
dc:cd:58:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:25 2024 by rpki-client on console.sobornost.net