Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/dTGHvoTu-mu949coxqmea84Ogk0.roa
File: dTGHvoTu-mu949coxqmea84Ogk0.roa (raw, json)
Hash identifier: Z12LZcWYVi1z8RI09A4/+YhcVrxVi9iO+A+3xoOFLpI=
Subject key identifier: 75:31:87:BE:84:EE:FA:6B:BD:E3:D7:28:C6:A9:9E:6B:CE:0E:82:4D
Certificate issuer: /CN=0d722e4513a39678d8ab23b2d649775340518cb9
Certificate serial: 018FF3D84560FD5A0A34901A3E69C9195295
Authority key identifier: 0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/dTGHvoTu-mu949coxqmea84Ogk0.roa
Signing time: Fri 07 Jun 2024 17:56:28 +0000
ROA not before: Fri 07 Jun 2024 17:56:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 89.249.192.0/21 maxlen: 21
185.21.253.0/24 maxlen: 24
212.42.208.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f3:d8:45:60:fd:5a:0a:34:90:1a:3e:69:c9:19:52:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d722e4513a39678d8ab23b2d649775340518cb9
Validity
Not Before: Jun 7 17:56:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=753187be84eefa6bbde3d728c6a99e6bce0e824d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:a1:43:ea:e5:31:ba:35:f4:a8:d3:ae:1a:5a:
85:82:4c:8f:25:cc:c1:34:45:8c:02:35:9d:07:4d:
3c:48:db:54:8a:a1:7d:88:b0:79:d7:26:11:6b:37:
58:3d:bd:ef:92:08:17:37:12:af:1a:c3:af:b8:30:
d5:a8:43:2f:26:39:1b:40:dc:90:a5:39:7e:bd:9e:
5a:2a:51:75:00:5c:94:91:a8:b8:a8:13:b1:7f:89:
c4:68:7e:a4:aa:76:2b:25:8c:80:78:43:30:59:ed:
12:69:bb:2e:f9:46:62:3e:d9:bc:5c:e4:c0:b2:bf:
1a:1e:d0:bb:08:21:54:02:82:3d:64:04:f6:43:9b:
9b:6c:1f:d2:30:31:37:3e:d0:53:b7:10:89:77:00:
8c:6c:5d:af:41:0c:55:2a:1e:81:0f:0f:2c:88:02:
b4:26:56:8f:67:4e:e8:d7:f5:8a:e0:6f:a3:74:cd:
bb:b7:a7:fd:b5:20:f6:32:cb:51:7d:b0:7d:ee:7f:
dc:a1:92:2e:37:4c:44:75:33:6b:0c:67:c7:af:6a:
f2:5c:29:5d:0b:02:82:1f:ed:81:cf:b6:78:77:c9:
67:5a:48:00:3e:54:a9:b5:f6:02:ef:e7:4a:a5:7e:
ab:aa:70:9b:b1:5d:84:43:60:0c:43:70:5d:7c:44:
e4:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:31:87:BE:84:EE:FA:6B:BD:E3:D7:28:C6:A9:9E:6B:CE:0E:82:4D
X509v3 Authority Key Identifier:
keyid:0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/dTGHvoTu-mu949coxqmea84Ogk0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/DXIuRROjlnjYqyOy1kl3U0BRjLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.249.192.0/21
185.21.253.0/24
212.42.208.0/20
Signature Algorithm: sha256WithRSAEncryption
80:e5:31:0e:17:19:10:39:7d:1b:c0:e7:32:5a:3d:d1:ef:64:
64:fa:09:f1:ed:c9:b0:6b:30:43:e7:2a:6d:aa:e9:71:81:4a:
d5:ce:8a:fe:34:9a:05:2b:94:54:62:e1:c5:45:80:7a:d8:31:
8e:5a:84:a1:04:4d:55:72:56:bc:1b:c4:00:e1:ac:cd:e2:1b:
4b:2f:a3:b2:bb:2e:d9:85:6f:3f:d2:2b:40:09:60:e6:60:1f:
ad:87:19:3f:1b:0f:66:03:25:1b:8a:8c:ce:e1:2e:8b:a6:67:
a5:ac:d5:aa:b1:84:59:d7:f0:28:d6:fe:48:97:09:0b:4a:12:
ea:db:c4:ea:8e:1e:7e:f8:91:9a:a9:4e:5c:55:06:51:bf:cd:
6e:02:3e:9f:04:5a:8f:f9:1a:1c:96:01:2a:c3:4c:9f:7a:09:
ce:0d:dc:67:eb:81:11:6d:30:94:4a:74:39:5a:f9:27:3d:be:
f2:91:6a:7e:15:04:fd:70:4d:29:6f:80:0c:86:81:8c:4b:ac:
cf:77:7b:b5:33:05:0c:68:21:d9:df:97:1f:46:15:0f:6f:11:
63:70:17:96:8c:1d:90:8e:25:4c:39:c2:70:54:2a:15:ea:69:
fb:90:de:bd:7c:1f:92:1a:8d:51:c7:a0:0e:a0:1c:91:78:5b:
1a:37:47:e5
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAY/z2EVg/VoKNJAaPmnJGVKVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkNzIyZTQ1MTNhMzk2NzhkOGFiMjNiMmQ2NDk3NzUzNDA1
MThjYjkwHhcNMjQwNjA3MTc1NjI4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NTMxODdiZTg0ZWVmYTZiYmRlM2Q3MjhjNmE5OWU2YmNlMGU4MjRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+KFD6uUxujX0qNOuGlqFgkyPJczB
NEWMAjWdB008SNtUiqF9iLB51yYRazdYPb3vkggXNxKvGsOvuDDVqEMvJjkbQNyQ
pTl+vZ5aKlF1AFyUkai4qBOxf4nEaH6kqnYrJYyAeEMwWe0Sabsu+UZiPtm8XOTA
sr8aHtC7CCFUAoI9ZAT2Q5ubbB/SMDE3PtBTtxCJdwCMbF2vQQxVKh6BDw8siAK0
JlaPZ07o1/WK4G+jdM27t6f9tSD2MstRfbB97n/coZIuN0xEdTNrDGfHr2ryXCld
CwKCH+2Bz7Z4d8lnWkgAPlSptfYC7+dKpX6rqnCbsV2EQ2AMQ3BdfETkTwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFHUxh76E7vprvePXKMapnmvODoJNMB8GA1UdIwQY
MBaAFA1yLkUTo5Z42KsjstZJd1NAUYy5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFhJdVJST2psbmpZcXlPeTFrbDNVMEJSakxrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8xYzA4NGMtOTgyZC00MDk4LWFmNDIt
MzQyNWIxMjVlYWE3LzEvZFRHSHZvVHUtbXU5NDljb3hxbWVhODRPZ2swLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC8xYzA4NGMtOTgyZC00MDk4LWFmNDItMzQyNWIxMjVlYWE3
LzEvRFhJdVJST2psbmpZcXlPeTFrbDNVMEJSakxrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQDWfnAAwQA
uRX9AwQE1CrQMA0GCSqGSIb3DQEBCwUAA4IBAQCA5TEOFxkQOX0bwOcyWj3R72Rk
+gnx7cmwazBD5yptqulxgUrVzor+NJoFK5RUYuHFRYB62DGOWoShBE1Vcla8G8QA
4azN4htLL6Oyuy7ZhW8/0itACWDmYB+thxk/Gw9mAyUbiozO4S6LpmelrNWqsYRZ
1/Ao1v5IlwkLShLq28Tqjh5++JGaqU5cVQZRv81uAj6fBFqP+RoclgEqw0yfegnO
Ddxn64ERbTCUSnQ5WvknPb7ykWp+FQT9cE0pb4AMhoGMS6zPd3u1MwUMaCHZ35cf
RhUPbxFjcBeWjB2QjiVMOcJwVCoV6mn7kN69fB+SGo1Rx6AOoByReFsaN0fl
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:00:46 2025 by rpki-client