Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/bNLOIb-G-pigNm8mrdS9d3EJKeQ.roa
File: bNLOIb-G-pigNm8mrdS9d3EJKeQ.roa (raw, json)
Hash identifier: qX3T2R+W7szles7X0aY76k54DiSUgGYs5GdnH+BF7Tc=
Subject key identifier: 6C:D2:CE:21:BF:86:FA:98:A0:36:6F:26:AD:D4:BD:77:71:09:29:E4
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019368AF046D55F4C9B10A3A84E72991F1B4
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/bNLOIb-G-pigNm8mrdS9d3EJKeQ.roa
Signing time: Tue 26 Nov 2024 13:35:20 +0000
ROA not before: Tue 26 Nov 2024 13:35:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396596
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.53/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:af:04:6d:55:f4:c9:b1:0a:3a:84:e7:29:91:f1:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Nov 26 13:35:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6cd2ce21bf86fa98a0366f26add4bd77710929e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:76:c0:84:39:2f:cf:b2:ec:54:ac:98:a1:04:
35:f6:2f:44:36:bf:70:1d:09:ee:fe:31:52:1a:9a:
9a:28:b1:ba:f4:cc:21:06:89:f8:fe:d9:48:2e:32:
02:6a:e3:76:3d:bb:aa:d7:d7:a0:f8:d6:bb:a4:3d:
8e:d9:99:b3:98:66:c4:58:71:47:16:34:5f:81:f0:
a8:c8:e4:1a:4b:c2:34:52:10:dc:13:a4:fa:57:a6:
60:9e:b2:ba:b7:11:38:57:f4:bc:0f:89:7a:e1:73:
5e:14:02:4b:eb:ea:6a:91:17:13:3c:47:93:22:fe:
4e:54:0f:05:a6:e2:02:28:3e:d6:8a:96:3c:fd:b4:
94:0a:30:2d:c0:e8:14:4d:5b:fb:49:bc:d5:36:a1:
23:72:44:67:7e:f8:d7:9c:1e:28:d0:02:a3:c2:54:
e5:48:e6:9f:0f:a8:3e:b3:40:a2:79:fc:ab:0e:36:
60:df:8b:dd:f3:42:b7:30:bd:1e:63:06:ed:9d:db:
41:e2:da:1b:89:d7:17:84:b1:de:09:1c:34:dd:72:
f6:7b:e0:0f:54:46:8c:f6:20:43:07:29:69:ec:5b:
28:f9:34:97:e1:bb:f7:d2:1d:87:0a:5f:2d:ff:af:
dc:02:a2:00:5d:77:06:f1:c4:92:7c:5e:e2:e5:0e:
6c:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:D2:CE:21:BF:86:FA:98:A0:36:6F:26:AD:D4:BD:77:71:09:29:E4
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/bNLOIb-G-pigNm8mrdS9d3EJKeQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
185.100.0.53/32
Signature Algorithm: sha256WithRSAEncryption
8c:11:e9:38:25:1f:e8:eb:cb:e4:94:dd:3b:a4:4e:f7:32:ef:
59:18:95:cc:8d:c3:c5:ab:2f:ec:ec:0b:35:de:3a:a7:0c:e9:
a3:9f:0c:c4:ef:ae:66:cb:53:3e:7a:92:fa:8a:18:da:a9:53:
43:71:20:4b:2e:99:b4:fd:f8:4b:ea:70:4f:6c:2a:70:c8:de:
61:f4:02:bb:3c:4e:73:b6:21:2f:5d:60:64:e2:0f:26:76:29:
be:cc:f8:dd:5b:bd:30:ac:14:2a:35:c7:75:23:85:ae:1b:2b:
8f:fa:cc:c4:65:c8:56:ac:5f:6d:2d:16:ca:65:17:e2:0b:aa:
30:f5:be:14:79:53:9b:6b:1b:09:a4:ae:6d:ff:9e:63:55:df:
61:d1:b9:29:87:00:f9:de:b3:07:ca:f7:45:47:bf:f3:d3:3f:
de:d4:9d:d3:fd:d4:95:62:37:c5:68:39:c3:f7:c3:53:d4:a1:
aa:59:6d:7f:25:40:1e:71:4c:a2:65:d6:c6:84:6f:29:c2:40:
d0:1f:97:56:7b:55:e7:0d:cc:f3:a6:44:04:ae:e8:9e:60:89:
4b:ad:06:1d:4c:1f:e5:00:07:a8:c9:f8:7b:9f:dc:d6:1c:af:
4f:fd:e9:70:02:f6:90:ae:63:7c:80:0b:b8:71:35:ce:f2:e7:
f4:77:cd:2c
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAZNorwRtVfTJsQo6hOcpkfG0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0MzgwYjliOGMwNzA0NTdlZDU0YmM0NWQxMmRkZGQyNDRl
MDZkNTIwHhcNMjQxMTI2MTMzNTIwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2Y2QyY2UyMWJmODZmYTk4YTAzNjZmMjZhZGQ0YmQ3NzcxMDkyOWU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA43bAhDkvz7LsVKyYoQQ19i9ENr9w
HQnu/jFSGpqaKLG69MwhBon4/tlILjICauN2Pbuq19eg+Na7pD2O2ZmzmGbEWHFH
FjRfgfCoyOQaS8I0UhDcE6T6V6ZgnrK6txE4V/S8D4l64XNeFAJL6+pqkRcTPEeT
Iv5OVA8FpuICKD7WipY8/bSUCjAtwOgUTVv7SbzVNqEjckRnfvjXnB4o0AKjwlTl
SOafD6g+s0CiefyrDjZg34vd80K3ML0eYwbtndtB4tobidcXhLHeCRw03XL2e+AP
VEaM9iBDBylp7Fso+TSX4bv30h2HCl8t/6/cAqIAXXcG8cSSfF7i5Q5sawIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFGzSziG/hvqYoDZvJq3UvXdxCSnkMB8GA1UdIwQY
MBaAFLQ4C5uMBwRX7VS8RdEt3dJE4G1SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdERnTG00d0hCRmZ0Vkx4RjBTM2Qwa1RnYlZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS9iYzkyZTYtYzhlZS00OGYwLWFlN2Yt
MzZjY2I1YTA2MTk1LzEvYk5MT0liLUctcGlnTm04bXJkUzlkM0VKS2VRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS9iYzkyZTYtYzhlZS00OGYwLWFlN2YtMzZjY2I1YTA2MTk1
LzEvdERnTG00d0hCRmZ0Vkx4RjBTM2Qwa1RnYlZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOAwUBURPDHgMF
ALlkADUwDQYJKoZIhvcNAQELBQADggEBAIwR6TglH+jry+SU3TukTvcy71kYlcyN
w8WrL+zsCzXeOqcM6aOfDMTvrmbLUz56kvqKGNqpU0NxIEsumbT9+EvqcE9sKnDI
3mH0Ars8TnO2IS9dYGTiDyZ2Kb7M+N1bvTCsFCo1x3Ujha4bK4/6zMRlyFasX20t
FsplF+ILqjD1vhR5U5trGwmkrm3/nmNV32HRuSmHAPneswfK90VHv/PTP97UndP9
1JViN8VoOcP3w1PUoapZbX8lQB5xTKJl1saEbynCQNAfl1Z7VecNzPOmRASu6J5g
iUutBh1MH+UAB6jJ+Huf3NYcr0/96XAC9pCuY3yAC7hxNc7y5/R3zSw=
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:35 2024 by rpki-client on console.sobornost.net