Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/a1740e-8404-42d2-af5c-10e24625a4d4/1/AWYtD29rzES8Jo6DSVDVNBDHqU4.roa
File: AWYtD29rzES8Jo6DSVDVNBDHqU4.roa (raw, json)
Hash identifier: /t8XyYbaTgQvtIqWwZk5NDyMv0Lctz8Ce/w1Xc/xhQY=
Subject key identifier: 01:66:2D:0F:6F:6B:CC:44:BC:26:8E:83:49:50:D5:34:10:C7:A9:4E
Certificate issuer: /CN=e93f3a41e6be524115c6c2b558bc280043a0224e
Certificate serial: 018CC8010FEBD2557F60548ADD36435D3BEC
Authority key identifier: E9:3F:3A:41:E6:BE:52:41:15:C6:C2:B5:58:BC:28:00:43:A0:22:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6T86Qea-UkEVxsK1WLwoAEOgIk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/a1740e-8404-42d2-af5c-10e24625a4d4/1/AWYtD29rzES8Jo6DSVDVNBDHqU4.roa
Signing time: Tue 02 Jan 2024 02:29:21 +0000
ROA not before: Tue 02 Jan 2024 02:29:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51859
IP address blocks: 87.237.204.0/24 maxlen: 24
87.237.204.0/22 maxlen: 24
87.237.200.0/21 maxlen: 24
87.237.201.0/24 maxlen: 24
87.237.202.0/23 maxlen: 24
87.237.203.0/24 maxlen: 24
185.29.100.0/22 maxlen: 24
92.249.52.0/22 maxlen: 22
92.249.52.0/24 maxlen: 24
188.93.120.0/22 maxlen: 24
91.222.4.0/22 maxlen: 24
2a04:2e40::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:0f:eb:d2:55:7f:60:54:8a:dd:36:43:5d:3b:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e93f3a41e6be524115c6c2b558bc280043a0224e
Validity
Not Before: Jan 2 02:29:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=01662d0f6f6bcc44bc268e834950d53410c7a94e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:61:85:d3:4a:43:32:3d:16:d4:3c:18:f8:c6:
4d:6e:e6:54:5c:4c:45:c8:74:69:68:c2:82:32:a1:
ff:83:02:f1:bb:98:ab:a7:12:77:f3:9e:ca:3a:0f:
d3:a7:d2:28:7b:3a:21:87:cf:42:88:4c:9d:4d:8f:
6f:bd:e4:20:a9:10:c4:66:46:3f:14:28:77:fe:b2:
57:82:9f:2c:3e:5a:91:f0:f7:d3:a3:9e:fb:a4:08:
df:8c:ae:a2:4c:42:46:05:b8:2a:58:9b:32:77:62:
e1:c8:36:2f:8e:59:ce:48:88:36:04:ab:9d:8e:de:
c5:12:3f:3e:6e:42:c6:0c:64:ed:e9:8f:0f:f1:6a:
cd:59:12:f3:e4:7d:88:83:57:fa:bc:c0:24:3a:3f:
7c:6a:9f:92:bf:9d:0c:66:01:a3:2c:80:46:4d:f4:
1d:fb:86:29:86:e2:4b:85:a0:8d:fe:70:76:26:03:
25:8b:28:08:f2:ef:74:a4:2d:28:72:0b:8b:0e:cc:
30:34:fc:67:fa:fe:f0:1b:35:27:ab:48:5d:9e:46:
51:b8:79:6c:68:be:59:9b:2d:71:e6:1d:06:f0:d3:
5f:bd:3a:50:25:c2:63:78:3c:f2:d4:aa:f0:0e:8d:
8e:13:ee:fb:b2:93:72:0c:03:e9:57:67:c3:38:9d:
cd:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:66:2D:0F:6F:6B:CC:44:BC:26:8E:83:49:50:D5:34:10:C7:A9:4E
X509v3 Authority Key Identifier:
keyid:E9:3F:3A:41:E6:BE:52:41:15:C6:C2:B5:58:BC:28:00:43:A0:22:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6T86Qea-UkEVxsK1WLwoAEOgIk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/a1740e-8404-42d2-af5c-10e24625a4d4/1/AWYtD29rzES8Jo6DSVDVNBDHqU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/a1740e-8404-42d2-af5c-10e24625a4d4/1/6T86Qea-UkEVxsK1WLwoAEOgIk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.237.200.0/21
91.222.4.0/22
92.249.52.0/22
185.29.100.0/22
188.93.120.0/22
IPv6:
2a04:2e40::/29
Signature Algorithm: sha256WithRSAEncryption
82:c9:cc:23:45:81:de:0b:42:69:58:c5:c3:d1:7d:a0:f0:d1:
5c:3b:53:16:44:f7:3d:51:91:d2:db:92:a1:e5:05:52:1b:eb:
c3:a3:79:3a:68:46:dc:c4:6e:ec:04:48:54:c1:fd:d0:82:91:
e1:57:58:d2:8f:70:fd:8f:d0:d0:2a:1c:31:82:03:0f:0e:90:
ce:e3:c9:3b:6a:4f:63:f4:74:94:3a:86:f4:4c:3e:d4:e7:8d:
30:76:26:3d:83:3c:c9:ba:29:77:f4:20:48:16:9e:2b:d4:2a:
62:ca:c0:8b:0f:5e:32:f3:ad:50:16:72:09:87:54:81:18:a4:
f5:13:fe:10:0a:f7:d7:71:c0:23:a9:03:34:aa:35:2a:f8:a6:
c2:27:75:a2:2b:85:6a:34:a9:62:b4:75:d5:79:d6:d5:9a:cf:
4c:a4:ec:e4:68:8a:71:23:c4:e8:c8:a9:ad:bd:9d:f7:58:c4:
32:bc:f7:ad:a9:fe:13:72:06:da:45:34:21:cd:a1:15:d4:18:
25:c7:22:e3:4a:11:2d:ec:aa:1a:b4:f1:82:75:30:f7:b3:7a:
54:45:f6:1a:83:3e:00:fa:80:86:36:fc:a2:25:58:8f:c1:e4:
1e:da:61:2b:30:1b:70:25:e9:98:f8:05:d5:ac:63:84:6b:f3:
94:c6:03:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 28 09:37:10 2024 by rpki-client on console.sobornost.net