Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/7v42Tcw94QKFgXFhxixxt4Z7w8k.roa
File: 7v42Tcw94QKFgXFhxixxt4Z7w8k.roa (raw, json)
Hash identifier: pQ6KOORLWm/Rxgvi1aO1V8dniZosgpGCS68weMta7G0=
Subject key identifier: EE:FE:36:4D:CC:3D:E1:02:85:81:71:61:C6:2C:71:B7:86:7B:C3:C9
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 01919D4EA6889EED896E57400BBFD3E84B22
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/7v42Tcw94QKFgXFhxixxt4Z7w8k.roa
Signing time: Thu 29 Aug 2024 08:44:22 +0000
ROA not before: Thu 29 Aug 2024 08:44:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41691
IP address blocks: 81.22.192.0/24 maxlen: 24
87.117.128.0/21 maxlen: 21
87.117.136.0/23 maxlen: 23
87.117.138.0/24 maxlen: 24
87.117.140.0/22 maxlen: 22
87.117.146.0/23 maxlen: 23
87.117.148.0/23 maxlen: 23
89.221.192.0/21 maxlen: 21
89.221.192.0/22 maxlen: 22
89.221.197.0/24 maxlen: 24
89.221.205.0/24 maxlen: 24
109.172.48.0/22 maxlen: 22
109.172.52.0/23 maxlen: 23
109.172.72.0/23 maxlen: 23
109.172.76.0/23 maxlen: 23
109.172.102.0/23 maxlen: 23
109.172.104.0/22 maxlen: 22
109.172.118.0/23 maxlen: 23
2a02:25e0:f00::/40 maxlen: 40
2a02:25e0:7700::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:9d:4e:a6:88:9e:ed:89:6e:57:40:0b:bf:d3:e8:4b:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Aug 29 08:44:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eefe364dcc3de10285817161c62c71b7867bc3c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:5e:67:03:a8:d6:e9:a7:4b:a1:59:d2:1f:29:
10:42:07:17:98:b8:44:80:33:87:2f:a2:91:23:b7:
aa:89:c4:10:87:c0:a6:37:37:19:2f:34:eb:4a:64:
6c:13:a6:0f:3a:92:0d:3b:52:d2:72:a2:53:20:1b:
12:fe:5c:a7:fd:61:dd:95:0a:58:17:95:6d:7f:5b:
8a:94:dd:57:cc:d4:be:d4:d9:cf:e7:35:40:63:f2:
89:14:15:3b:b6:b5:18:af:88:4a:37:60:be:1c:28:
d9:d7:f1:e0:ad:02:b2:6d:f4:99:d1:28:cc:3b:1a:
2c:06:27:75:21:19:a3:92:15:c6:7b:f8:76:9a:2b:
28:b8:5a:e1:e1:86:74:ac:72:63:b5:73:40:c1:cb:
b7:a9:d5:07:08:e9:55:8b:92:36:fd:4c:3b:42:28:
f1:b9:d5:2e:ad:ef:bb:18:9a:d4:9d:e7:8d:ee:45:
93:c8:ee:b8:ab:fb:15:a6:98:de:3d:e4:c1:41:b0:
94:e2:04:41:68:9f:f2:c2:d1:47:bc:87:f6:3e:6e:
5b:36:5d:7e:b8:69:2c:28:c2:40:1e:e3:4a:78:d3:
73:71:d3:44:ce:59:2e:31:44:06:90:d3:c0:3a:47:
f2:5f:e2:ef:3e:ff:dc:af:78:04:5c:bf:51:f4:49:
20:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:FE:36:4D:CC:3D:E1:02:85:81:71:61:C6:2C:71:B7:86:7B:C3:C9
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/7v42Tcw94QKFgXFhxixxt4Z7w8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.192.0/24
87.117.128.0-87.117.138.255
87.117.140.0/22
87.117.146.0-87.117.149.255
89.221.192.0/21
89.221.205.0/24
109.172.48.0-109.172.53.255
109.172.72.0/23
109.172.76.0/23
109.172.102.0-109.172.107.255
109.172.118.0/23
IPv6:
2a02:25e0:f00::/40
2a02:25e0:7700::/40
Signature Algorithm: sha256WithRSAEncryption
7d:a8:6f:27:f6:c0:e1:a6:f8:a2:52:90:2c:e2:30:91:17:c3:
9f:e1:6d:6c:a4:75:ec:b1:e0:96:94:1a:10:5b:97:ae:95:93:
28:03:5c:fd:1f:25:10:ea:8d:94:ef:a1:38:91:e3:46:60:91:
92:73:85:8b:3a:4d:06:08:09:c0:f2:2b:eb:12:2a:98:ed:27:
8d:a3:d4:95:a3:bc:4c:84:ad:55:cb:ca:05:27:30:ad:f3:4f:
d1:6e:99:fe:03:97:0f:9a:e2:80:3c:17:75:ea:2f:2a:a6:1d:
ae:d0:9c:a1:77:ce:fa:9f:22:57:ee:03:d3:7b:63:b8:ba:75:
2b:62:27:15:0c:6d:d3:e7:ba:6a:b7:f5:b8:16:87:27:b4:50:
13:1c:6e:a0:e3:2c:80:89:4f:0e:c6:be:a2:e7:72:88:d8:e6:
06:de:c6:e0:4a:fe:63:46:82:89:f4:69:45:c7:91:e1:f4:41:
de:45:88:83:c5:45:a7:36:97:f5:0a:ba:68:73:45:7b:64:3f:
86:20:3a:bd:6b:07:bf:93:7f:b0:8c:3a:b7:ae:6a:be:35:25:
06:08:12:a2:a0:21:a4:60:f9:7a:4f:1b:01:7d:1b:99:f7:cb:
99:70:86:8b:ff:40:1d:20:0d:49:2a:35:89:89:44:1c:7c:3f:
2d:66:33:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 11 06:13:23 2024 by rpki-client on console.sobornost.net