Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/c45811-75ba-4dd7-a421-f36d9ee346d4/1/ypuirbQCc-d8fY7x4oTxBQWVuhs.roa
File: ypuirbQCc-d8fY7x4oTxBQWVuhs.roa (raw, json)
Hash identifier: y7E5Lz7rSCfB2GEF5tdR7ebWSee0oRXoA42ycyanou4=
Subject key identifier: CA:9B:A2:AD:B4:02:73:E7:7C:7D:8E:F1:E2:84:F1:05:05:95:BA:1B
Certificate issuer: /CN=2e0a2316f4e9b58aa52deee5c7d1f4b84476ec86
Certificate serial: 0190CA5532E0019C7AF92A555A572636C067
Authority key identifier: 2E:0A:23:16:F4:E9:B5:8A:A5:2D:EE:E5:C7:D1:F4:B8:44:76:EC:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LgojFvTptYqlLe7lx9H0uER27IY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/c45811-75ba-4dd7-a421-f36d9ee346d4/1/ypuirbQCc-d8fY7x4oTxBQWVuhs.roa
Signing time: Fri 19 Jul 2024 09:31:39 +0000
ROA not before: Fri 19 Jul 2024 09:31:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29545
IP address blocks: 86.111.32.0/21 maxlen: 21
86.111.36.0/24 maxlen: 24
86.111.37.0/24 maxlen: 24
86.111.38.0/24 maxlen: 24
86.111.39.0/24 maxlen: 24
86.111.40.0/22 maxlen: 22
86.111.40.0/24 maxlen: 24
86.111.41.0/24 maxlen: 24
86.111.50.0/23 maxlen: 23
86.111.50.0/24 maxlen: 24
213.163.229.0/24 maxlen: 24
213.163.232.0/24 maxlen: 24
213.163.233.0/24 maxlen: 24
213.163.238.0/24 maxlen: 24
213.163.242.0/23 maxlen: 23
213.163.244.0/23 maxlen: 23
213.163.249.0/24 maxlen: 24
213.163.254.0/24 maxlen: 24
2a00:1f88::/32 maxlen: 32
2a00:1f88:a402::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ca:55:32:e0:01:9c:7a:f9:2a:55:5a:57:26:36:c0:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e0a2316f4e9b58aa52deee5c7d1f4b84476ec86
Validity
Not Before: Jul 19 09:31:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ca9ba2adb40273e77c7d8ef1e284f1050595ba1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:24:69:9d:9b:af:a7:11:bf:ca:25:a1:a4:a7:
50:1a:0e:4a:30:93:ea:3e:01:85:c6:cb:0a:d9:9d:
b2:29:5a:fa:73:4f:15:33:7d:6e:86:3d:c2:03:3b:
a1:cd:57:77:c3:b5:4c:d1:23:13:07:04:13:1e:2c:
87:1c:ea:ec:49:c0:4c:4e:bb:4f:60:4c:d2:af:76:
c1:39:0e:85:50:21:99:4d:2e:29:24:44:b1:c9:34:
37:65:d8:a9:f5:86:dd:b0:b1:15:04:5d:e3:42:70:
1d:18:61:30:aa:9f:98:b5:54:01:85:c9:0e:9d:a7:
47:a4:3c:01:96:82:57:49:42:30:3e:4a:f2:3a:74:
b0:6f:00:c4:93:5e:34:7d:7a:02:ce:8f:14:91:25:
77:7a:79:19:1a:56:7d:82:e4:cb:30:c1:4c:5f:1f:
9b:ee:bb:0d:a5:60:c3:73:1c:84:82:c2:6d:14:a5:
0b:e3:57:21:5e:77:e9:b2:96:ed:72:b2:2b:66:f9:
16:b0:90:3c:ef:c2:21:63:cb:b1:cd:51:40:ef:cb:
06:d6:d0:bb:85:ac:43:71:a7:f3:75:e8:6e:e2:08:
2a:72:44:65:fa:31:45:92:30:a5:9d:72:75:6c:51:
97:4c:b9:90:ba:41:90:32:4c:1b:96:fd:ce:2f:ff:
81:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:9B:A2:AD:B4:02:73:E7:7C:7D:8E:F1:E2:84:F1:05:05:95:BA:1B
X509v3 Authority Key Identifier:
keyid:2E:0A:23:16:F4:E9:B5:8A:A5:2D:EE:E5:C7:D1:F4:B8:44:76:EC:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LgojFvTptYqlLe7lx9H0uER27IY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c45811-75ba-4dd7-a421-f36d9ee346d4/1/ypuirbQCc-d8fY7x4oTxBQWVuhs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c45811-75ba-4dd7-a421-f36d9ee346d4/1/LgojFvTptYqlLe7lx9H0uER27IY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.111.32.0-86.111.43.255
86.111.50.0/23
213.163.229.0/24
213.163.232.0/23
213.163.238.0/24
213.163.242.0-213.163.245.255
213.163.249.0/24
213.163.254.0/24
IPv6:
2a00:1f88::/32
Signature Algorithm: sha256WithRSAEncryption
99:b4:f9:3b:c3:39:74:1d:32:5d:1a:dc:0d:ef:85:4e:f8:eb:
1d:73:1d:bb:03:81:c9:99:73:37:4d:00:72:c9:b0:ff:49:e1:
36:f5:d8:23:c5:87:17:de:b0:56:da:b6:24:be:66:8b:0c:81:
d0:d7:38:31:9f:5e:d0:8b:d5:5b:23:f8:38:69:d7:86:c7:56:
4a:9a:cc:20:8c:98:40:e7:4c:90:e0:fd:f6:4f:50:44:06:e5:
18:94:53:f6:01:8d:5f:14:b6:56:c5:29:c0:a6:28:d0:ff:3f:
9b:9c:db:e2:3b:42:ae:38:5a:82:0d:8c:6e:70:f4:fa:7b:25:
f2:d4:54:e9:9d:85:b1:71:2b:5e:3f:05:f4:bb:b1:d5:e1:55:
8d:7d:ee:e1:03:d9:0d:e6:9d:ae:df:e9:e1:6d:32:cf:3e:df:
eb:09:b7:fa:70:49:29:2b:07:87:ee:4e:30:64:b6:7a:ba:af:
0c:81:3c:c6:36:c1:13:2e:e1:fb:dc:68:b0:e9:f2:7b:dc:eb:
5a:4f:f4:87:00:da:df:42:cd:00:9a:99:38:97:43:25:2a:e5:
05:8b:93:a0:11:25:5f:0b:eb:f9:f4:1b:33:2c:90:40:1e:cf:
d7:81:73:f0:2c:c0:ac:75:98:a5:3c:ba:0b:93:fd:74:a6:72:
c3:09:66:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 17 00:23:01 2024 by rpki-client on console.sobornost.net