Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/d6f953-e5f1-4d32-8d1d-1e26bd87a6f4/1/lmGso5KB21kB5mrvfmPbSfisp6E.roa
File: lmGso5KB21kB5mrvfmPbSfisp6E.roa (raw, json)
Hash identifier: y4MZ6WU2XfU3Vts4WIph2QldB6PSXc6PjRJGbPH8JVs=
Subject key identifier: 96:61:AC:A3:92:81:DB:59:01:E6:6A:EF:7E:63:DB:49:F8:AC:A7:A1
Certificate issuer: /CN=b9d55f36c511db636cb82f34750cc8ae239450e5
Certificate serial: 0184ED20304728308789F9AD4D152DE19510
Authority key identifier: B9:D5:5F:36:C5:11:DB:63:6C:B8:2F:34:75:0C:C8:AE:23:94:50:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/udVfNsUR22NsuC80dQzIriOUUOU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/d6f953-e5f1-4d32-8d1d-1e26bd87a6f4/1/lmGso5KB21kB5mrvfmPbSfisp6E.roa
Signing time: Wed 07 Dec 2022 15:07:00 +0000
ROA not before: Wed 07 Dec 2022 15:07:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34373
IP address blocks: 185.96.44.0/22 maxlen: 24
2a00:4140::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ed:20:30:47:28:30:87:89:f9:ad:4d:15:2d:e1:95:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9d55f36c511db636cb82f34750cc8ae239450e5
Validity
Not Before: Dec 7 15:07:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9661aca39281db5901e66aef7e63db49f8aca7a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ac:0f:cb:a1:62:2b:c7:d8:88:76:57:44:54:
91:7a:cd:8d:d1:49:68:2b:77:8c:13:40:db:87:4d:
64:51:d3:0b:2e:37:07:e4:bc:6d:5e:fc:e3:f1:0f:
54:3b:a3:ef:ea:c1:5b:d0:4e:6c:bc:1a:db:73:7c:
a5:e1:86:16:4a:78:6d:b6:9a:00:e4:0c:cf:b5:62:
f2:6a:ad:88:31:19:7f:81:0b:08:55:3e:c2:72:36:
11:8c:41:fc:e4:95:05:fd:d5:17:a6:13:4c:c8:ec:
d1:cf:a8:19:69:73:3f:fb:12:c5:f3:16:9a:a3:e3:
5a:d9:ea:77:09:54:b5:aa:9a:d4:0f:13:c5:5a:61:
72:d7:c7:b9:88:68:a1:09:f0:c7:bf:93:19:a4:51:
1f:6a:e0:7d:56:d1:cc:35:5a:d2:66:85:15:fb:e8:
75:d7:3a:bf:ed:fe:87:e1:75:9c:c9:70:8d:d9:0f:
76:c0:95:0d:f0:90:3d:87:a5:8c:f3:8c:5b:b2:ac:
18:68:4c:0c:38:b5:e5:0f:25:65:a6:b5:dc:10:4c:
3f:14:2b:6d:e2:a1:8e:17:96:ff:ed:cf:33:72:47:
2d:68:d6:f6:eb:e5:97:c3:d7:39:cc:4f:13:1f:bc:
40:bd:10:05:8f:6a:86:4b:e6:77:2f:57:d7:f1:61:
74:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:61:AC:A3:92:81:DB:59:01:E6:6A:EF:7E:63:DB:49:F8:AC:A7:A1
X509v3 Authority Key Identifier:
keyid:B9:D5:5F:36:C5:11:DB:63:6C:B8:2F:34:75:0C:C8:AE:23:94:50:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/udVfNsUR22NsuC80dQzIriOUUOU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d6f953-e5f1-4d32-8d1d-1e26bd87a6f4/1/lmGso5KB21kB5mrvfmPbSfisp6E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d6f953-e5f1-4d32-8d1d-1e26bd87a6f4/1/udVfNsUR22NsuC80dQzIriOUUOU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.96.44.0/22
IPv6:
2a00:4140::/32
Signature Algorithm: sha256WithRSAEncryption
6c:c5:88:c4:e2:fa:b5:40:7c:d3:78:63:b5:0b:af:cb:77:77:
d6:96:0d:f4:c4:a5:ff:62:68:56:43:05:54:6e:6b:0e:af:23:
cb:a3:f2:c3:89:27:34:c3:54:81:5b:1a:e5:16:88:63:0e:5b:
14:38:c2:27:47:6c:fb:8b:fa:06:57:73:63:a8:c9:ff:64:ae:
09:6c:bb:a2:a7:b1:3f:18:4f:c8:db:e4:ca:b7:ea:6c:22:68:
60:62:c8:5b:d0:2e:09:e9:2a:c3:fe:c9:d3:7a:89:8c:c9:bf:
1c:bf:d3:fc:b4:b7:0c:93:1f:d3:0a:29:6d:fa:db:e6:a8:6a:
61:80:e9:70:48:f5:b6:04:97:df:e2:36:54:55:3d:76:2c:4e:
e7:f3:f3:69:1f:9d:ac:2d:2e:0d:af:eb:31:94:b2:e4:84:08:
01:b5:6f:82:48:8b:df:4a:02:ad:e1:1f:9f:dd:34:eb:1c:30:
8c:e0:66:4c:b0:c3:d1:b6:ef:e0:ad:35:b8:95:c7:c7:6b:24:
81:2b:69:93:3b:af:59:4e:b1:90:43:5b:91:73:2b:db:c0:49:
de:4e:10:59:e4:b9:29:a4:e2:c4:22:57:8d:da:92:0d:da:16:
95:02:09:d5:f4:26:7b:b2:4b:38:e3:23:08:0c:45:0d:c0:11:
8f:e0:70:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:32 2023 by rpki-client on console.sobornost.net