Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/cf64f6-0789-43e3-bd6b-7bff296c6b02/1/NCh0xvli35xKuI3R-IxNhLluMq4.roa
File: NCh0xvli35xKuI3R-IxNhLluMq4.roa (raw, json)
Hash identifier: ihA3QLQObPbYsu4GaWIS3D8hD/gvJhOUYzryw/Spb4E=
Subject key identifier: 34:28:74:C6:F9:62:DF:9C:4A:B8:8D:D1:F8:8C:4D:84:B9:6E:32:AE
Certificate issuer: /CN=6d069e19e12c104004e8b4b75f8a7789b7e11396
Certificate serial: 01937832699E3C7F8E2FF062AD50FDDCB825
Authority key identifier: 6D:06:9E:19:E1:2C:10:40:04:E8:B4:B7:5F:8A:77:89:B7:E1:13:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQaeGeEsEEAE6LS3X4p3ibfhE5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/cf64f6-0789-43e3-bd6b-7bff296c6b02/1/NCh0xvli35xKuI3R-IxNhLluMq4.roa
Signing time: Fri 29 Nov 2024 13:53:09 +0000
ROA not before: Fri 29 Nov 2024 13:53:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203396
IP address blocks: 145.12.0.0/16 maxlen: 24
145.12.216.0/24 maxlen: 24
145.12.217.0/24 maxlen: 24
145.69.0.0/16 maxlen: 16
145.69.0.0/19 maxlen: 19
145.69.25.0/24 maxlen: 24
145.69.40.0/21 maxlen: 21
145.69.47.0/24 maxlen: 24
145.69.56.0/21 maxlen: 21
145.69.96.0/19 maxlen: 19
145.69.100.0/24 maxlen: 24
145.69.101.0/24 maxlen: 24
145.69.102.0/24 maxlen: 24
145.69.103.0/24 maxlen: 24
145.69.104.0/24 maxlen: 24
145.69.105.0/24 maxlen: 24
145.69.106.0/24 maxlen: 24
145.69.107.0/24 maxlen: 24
145.69.108.0/24 maxlen: 24
145.69.109.0/24 maxlen: 24
145.69.110.0/24 maxlen: 24
145.69.128.0/17 maxlen: 17
145.69.210.0/24 maxlen: 24
145.69.216.0/24 maxlen: 24
145.69.221.0/24 maxlen: 24
145.69.242.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:78:32:69:9e:3c:7f:8e:2f:f0:62:ad:50:fd:dc:b8:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d069e19e12c104004e8b4b75f8a7789b7e11396
Validity
Not Before: Nov 29 13:53:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=342874c6f962df9c4ab88dd1f88c4d84b96e32ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5d:b6:8d:54:c5:43:cc:94:ff:53:36:3b:e2:
7e:17:d6:03:5f:b1:35:7e:99:ea:59:f6:e1:76:f1:
32:88:6f:4d:5a:5b:06:30:e0:d5:13:8f:b5:56:5c:
68:3e:e3:e1:a7:93:e5:00:7e:f1:6b:e6:f2:d3:fc:
2c:67:81:23:ec:c9:26:62:d8:7f:77:01:15:91:d8:
ca:24:8b:6f:69:21:fb:90:5c:1c:75:cf:56:e3:53:
e4:93:fd:ac:e1:56:a4:4f:b3:4d:8f:9c:f0:7f:6b:
0c:cf:f6:7f:c8:62:10:ac:a9:43:ca:75:10:63:56:
b5:41:42:9d:00:ef:5b:3c:8d:1f:1c:7c:e0:1e:23:
0f:03:d1:82:c1:31:3a:12:09:43:8a:79:ac:86:50:
8b:99:af:61:8f:13:3c:75:dd:d2:38:68:9d:83:d6:
ab:d1:eb:d7:62:73:93:35:18:76:99:49:95:70:06:
30:1a:54:1e:4d:f5:b0:88:1a:53:d2:85:d8:8b:0e:
83:4b:3e:62:c2:a7:4e:a3:a6:a5:7b:bb:fa:99:ad:
6d:c1:2a:be:35:3e:fe:d4:7c:95:fd:c1:0a:45:2f:
13:17:f6:b1:72:eb:ca:1c:c2:c9:f7:af:bc:4d:f7:
a4:7b:47:1e:0c:a7:0e:ef:65:17:ff:92:73:83:34:
92:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:28:74:C6:F9:62:DF:9C:4A:B8:8D:D1:F8:8C:4D:84:B9:6E:32:AE
X509v3 Authority Key Identifier:
keyid:6D:06:9E:19:E1:2C:10:40:04:E8:B4:B7:5F:8A:77:89:B7:E1:13:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQaeGeEsEEAE6LS3X4p3ibfhE5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/cf64f6-0789-43e3-bd6b-7bff296c6b02/1/NCh0xvli35xKuI3R-IxNhLluMq4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/cf64f6-0789-43e3-bd6b-7bff296c6b02/1/bQaeGeEsEEAE6LS3X4p3ibfhE5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.12.0.0/16
145.69.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8a:02:da:0b:93:74:3a:2d:26:e7:fc:75:c1:5e:7e:b8:76:c0:
a6:2b:ff:aa:04:8e:ea:52:60:81:a9:e3:e6:c1:a6:87:f0:2a:
86:54:d1:dc:12:b2:1a:e5:7a:ee:ae:66:19:58:aa:cd:f8:30:
83:50:30:14:f7:b1:6e:01:bd:e9:6b:5a:23:89:23:a1:a2:d7:
0b:c3:23:94:cd:69:17:e2:b2:cc:a8:8b:93:76:d7:31:2d:b7:
f7:4a:9e:13:46:35:22:d7:f4:e7:47:03:19:6c:12:64:0d:47:
90:2a:21:a3:66:38:59:7c:f3:c4:10:c1:68:22:ab:ae:b8:eb:
b7:9f:7f:23:00:ff:bc:7f:fb:f9:3b:98:c0:5d:73:8a:24:ff:
19:d7:43:19:8b:94:f4:58:20:56:41:4e:c8:78:0c:e9:c7:c6:
7a:46:24:50:c1:18:7e:c8:cf:56:b2:b6:49:7e:5b:aa:2e:68:
a1:c0:4d:dd:21:a2:f9:bf:b9:5b:b7:54:03:fb:35:94:ca:e3:
e4:7a:83:28:d5:fb:aa:17:88:ac:8b:90:3a:a2:0c:2e:15:df:
98:c4:51:3d:5e:8f:d5:ca:13:72:02:72:96:1c:df:e9:16:cc:
02:36:02:76:41:89:a8:ca:8d:05:bb:b6:5e:27:3f:6c:59:7d:
dd:0b:0d:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:36 2024 by rpki-client on console.sobornost.net