Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/806532-54e9-4b49-b8a7-9e220f04a901/1/lJ6LLlGhVci7Ygh79snuaEPAbZI.roa
File: lJ6LLlGhVci7Ygh79snuaEPAbZI.roa (raw, json)
Hash identifier: DtaVz2sEfvOCIORQRh2Hg2Ym2QVhqPdmiFYBGFWCR6w=
Subject key identifier: 94:9E:8B:2E:51:A1:55:C8:BB:62:08:7B:F6:C9:EE:68:43:C0:6D:92
Certificate issuer: /CN=a3674d5884a50a84e07dbdf6798ddcbb9cc2032e
Certificate serial: 0194236A3D7337356939E0AB089BC843FB5B
Authority key identifier: A3:67:4D:58:84:A5:0A:84:E0:7D:BD:F6:79:8D:DC:BB:9C:C2:03:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2dNWISlCoTgfb32eY3cu5zCAy4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/806532-54e9-4b49-b8a7-9e220f04a901/1/lJ6LLlGhVci7Ygh79snuaEPAbZI.roa
Signing time: Wed 01 Jan 2025 19:49:12 +0000
ROA not before: Wed 01 Jan 2025 19:49:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48158
IP address blocks: 146.255.212.0/22 maxlen: 24
146.255.216.0/21 maxlen: 24
176.58.38.0/23 maxlen: 24
176.58.39.0/24 maxlen: 24
176.58.40.0/23 maxlen: 24
176.58.41.0/24 maxlen: 24
176.58.42.0/24 maxlen: 24
176.58.43.0/24 maxlen: 24
176.58.45.0/24 maxlen: 24
176.58.46.0/24 maxlen: 24
176.58.47.0/24 maxlen: 24
176.58.48.0/23 maxlen: 23
176.58.50.0/24 maxlen: 24
176.58.52.0/24 maxlen: 24
176.58.53.0/24 maxlen: 24
176.58.54.0/24 maxlen: 24
176.58.55.0/24 maxlen: 24
176.58.56.0/24 maxlen: 24
176.58.57.0/24 maxlen: 24
185.190.190.0/24 maxlen: 24
212.124.96.0/22 maxlen: 24
212.124.100.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:3d:73:37:35:69:39:e0:ab:08:9b:c8:43:fb:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3674d5884a50a84e07dbdf6798ddcbb9cc2032e
Validity
Not Before: Jan 1 19:49:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=949e8b2e51a155c8bb62087bf6c9ee6843c06d92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:05:ca:a2:a9:20:a7:c4:dd:4f:4c:49:d8:23:
82:3d:91:f8:42:27:1c:2e:60:f2:e3:ad:0e:e7:ae:
8f:b6:94:ad:2a:39:64:ae:e7:f6:f5:d4:4b:f1:b2:
34:dd:23:98:7b:61:51:5b:23:a7:96:ff:a5:22:8e:
2e:62:44:a6:93:75:bf:9a:49:9d:3e:62:1c:8b:fa:
cf:b1:99:3c:64:d4:7b:a0:ff:d7:e3:bc:8e:1a:a3:
a4:35:5a:5e:5b:61:03:aa:01:85:9d:d7:a3:b3:13:
11:05:9d:41:de:1d:6c:ae:17:7a:3c:ba:87:80:a0:
4c:16:55:3a:ca:91:e0:b7:62:b7:36:28:f8:40:d9:
58:c3:70:fb:38:23:6b:6b:08:fa:8c:f7:07:78:96:
31:c4:a5:61:69:d5:ac:51:77:f3:73:03:53:f8:30:
31:de:13:e6:29:e7:c8:c1:a6:59:e7:34:53:2d:4d:
75:35:3a:c1:75:c9:74:54:f0:fa:ab:58:1b:ae:71:
3b:52:ab:78:82:c6:06:91:a6:6d:71:09:32:e6:2e:
7b:2d:c2:31:53:95:c2:20:79:ff:85:bb:9a:a7:16:
75:7c:57:31:ed:65:bd:ae:c9:75:ab:80:5d:1c:5f:
0b:fb:9e:2b:f0:3d:fa:d7:48:59:1c:02:02:5a:93:
d5:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:9E:8B:2E:51:A1:55:C8:BB:62:08:7B:F6:C9:EE:68:43:C0:6D:92
X509v3 Authority Key Identifier:
keyid:A3:67:4D:58:84:A5:0A:84:E0:7D:BD:F6:79:8D:DC:BB:9C:C2:03:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2dNWISlCoTgfb32eY3cu5zCAy4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/806532-54e9-4b49-b8a7-9e220f04a901/1/lJ6LLlGhVci7Ygh79snuaEPAbZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/806532-54e9-4b49-b8a7-9e220f04a901/1/o2dNWISlCoTgfb32eY3cu5zCAy4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.255.212.0-146.255.223.255
176.58.38.0-176.58.43.255
176.58.45.0-176.58.50.255
176.58.52.0-176.58.57.255
185.190.190.0/24
212.124.96.0/21
Signature Algorithm: sha256WithRSAEncryption
02:56:e3:0e:cd:6e:00:f0:cf:c3:af:36:cc:49:79:36:ca:67:
cc:00:a1:be:9f:ca:cf:1e:fc:cc:1f:4f:b6:72:d2:6d:94:dd:
91:30:c4:5e:5b:13:b0:92:7c:ea:f9:33:fa:9f:7b:c8:c4:c6:
bf:17:a5:c0:6c:e3:e2:e4:3e:42:8a:13:59:08:39:e0:0c:79:
18:46:44:44:f0:35:0f:eb:79:d5:57:b2:fa:4a:b2:9d:46:f1:
41:18:4a:74:3b:89:dd:24:d8:a9:d7:5a:e9:13:3c:12:05:71:
88:d6:7e:41:36:e6:52:ef:e5:01:ab:88:f3:87:2b:5c:66:20:
0a:fa:4b:35:fb:9b:7a:8e:02:b1:eb:d2:a4:45:0f:07:a3:ad:
85:7b:a6:2d:a8:6e:58:b4:fc:4f:56:04:11:7c:80:83:03:00:
ee:c6:89:08:b5:01:66:74:dc:96:d0:4e:7e:78:ec:df:9a:ce:
8b:00:33:21:43:b4:66:fc:d8:48:42:ed:25:11:6e:d2:92:2b:
58:9c:d4:34:26:f2:5d:39:9d:0e:c8:de:39:37:1b:52:cb:ff:
fd:df:77:7a:78:3c:24:6d:ac:e9:38:fe:ff:9f:74:44:2f:40:
4f:c6:55:4e:07:5d:74:0a:ec:55:b9:a5:25:24:a7:ae:01:d5:
7f:da:e9:86
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jan 23 19:17:06 2025 by rpki-client on console.sobornost.net