Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/6ba6a3-25e0-499a-a7a9-98398fdbc9fb/1/phjLdzHL45tNjHV0od-czUDj-qQ.roa
File: phjLdzHL45tNjHV0od-czUDj-qQ.roa (raw, json)
Hash identifier: 9ncdreAFPo9+RnKf8pdkWBsqQmMopa0qB1DseesFCcI=
Subject key identifier: A6:18:CB:77:31:CB:E3:9B:4D:8C:75:74:A1:DF:9C:CD:40:E3:FA:A4
Certificate issuer: /CN=1a946f4a826d622a338ed83e0afcdf78c87604f8
Certificate serial: 018CC64B139E5DED9D47AB2519E16285C194
Authority key identifier: 1A:94:6F:4A:82:6D:62:2A:33:8E:D8:3E:0A:FC:DF:78:C8:76:04:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GpRvSoJtYiozjtg-CvzfeMh2BPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/6ba6a3-25e0-499a-a7a9-98398fdbc9fb/1/phjLdzHL45tNjHV0od-czUDj-qQ.roa
Signing time: Mon 01 Jan 2024 18:30:58 +0000
ROA not before: Mon 01 Jan 2024 18:30:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210568
IP address blocks: 193.111.28.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:13:9e:5d:ed:9d:47:ab:25:19:e1:62:85:c1:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a946f4a826d622a338ed83e0afcdf78c87604f8
Validity
Not Before: Jan 1 18:30:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a618cb7731cbe39b4d8c7574a1df9ccd40e3faa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:7c:b1:7a:93:67:56:e4:4b:4d:a3:7c:3e:ed:
c2:77:0a:cc:33:78:2f:f3:57:90:45:69:8a:aa:f4:
08:c1:09:b2:ee:e8:37:df:9e:28:a6:b3:5a:9e:10:
be:f8:54:d7:12:ef:7c:04:04:98:cb:58:25:5a:af:
9a:db:d5:cb:08:8f:fc:a8:93:48:e6:8b:e3:1e:0c:
fa:92:08:da:13:28:a1:d1:f0:84:19:d7:b0:d3:ad:
81:21:68:a0:d4:8c:c7:ca:dc:92:6a:17:57:55:03:
37:33:2b:bb:32:25:e6:43:fd:d5:45:b8:53:d3:be:
e9:66:84:de:05:20:a5:e5:4c:aa:fa:2b:b8:7f:14:
db:fc:da:0e:ec:30:7b:52:07:35:4f:4d:d7:70:e7:
02:50:2d:60:b8:8e:57:41:2c:13:d5:ff:92:8b:43:
51:44:fe:bf:b9:fa:ca:c1:8a:a3:18:c5:54:f5:ab:
58:e2:92:41:76:6a:0c:e2:40:3d:99:a6:ca:22:c9:
e3:3f:f9:1c:d1:90:83:6d:6f:8a:27:eb:e0:67:b6:
f1:6f:96:d8:29:13:90:8d:a4:b0:bb:02:46:ad:10:
e0:0d:ad:94:47:4b:41:56:dd:91:57:52:5f:45:8c:
89:46:eb:01:d8:94:74:7c:10:98:c5:a8:ae:90:2f:
24:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:18:CB:77:31:CB:E3:9B:4D:8C:75:74:A1:DF:9C:CD:40:E3:FA:A4
X509v3 Authority Key Identifier:
keyid:1A:94:6F:4A:82:6D:62:2A:33:8E:D8:3E:0A:FC:DF:78:C8:76:04:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GpRvSoJtYiozjtg-CvzfeMh2BPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/6ba6a3-25e0-499a-a7a9-98398fdbc9fb/1/phjLdzHL45tNjHV0od-czUDj-qQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/6ba6a3-25e0-499a-a7a9-98398fdbc9fb/1/GpRvSoJtYiozjtg-CvzfeMh2BPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.28.0/24
Signature Algorithm: sha256WithRSAEncryption
05:30:11:33:12:9c:4e:93:56:e5:46:35:ab:ea:81:bd:b5:83:
04:ba:36:6f:81:e4:6a:39:b3:14:13:c0:73:b8:6c:ea:c6:55:
36:4d:ba:6b:8d:8f:bd:02:c7:13:fc:90:6b:d3:55:e1:70:d0:
68:2a:e0:03:ab:79:db:fa:fa:f0:94:bc:86:59:93:21:10:70:
e6:8b:f1:52:8e:68:6c:fa:8c:82:90:30:ea:54:8c:df:3f:b0:
9a:34:2a:c1:9f:aa:7c:09:85:e5:9a:a9:4a:ea:6c:c8:c9:c1:
5d:f5:a8:79:ce:f4:e5:b9:6a:e4:9d:44:b9:77:46:ee:ae:ad:
f4:52:0a:69:0f:c5:89:61:57:11:d1:e1:3b:98:f0:29:8c:31:
b2:50:8c:68:01:af:b9:ea:2e:4d:99:69:74:51:31:ee:3c:13:
72:33:47:7b:c9:bf:e4:d8:ef:48:ed:00:86:28:0b:87:01:58:
da:e6:75:95:aa:8a:c0:18:97:b9:b4:61:a3:26:d0:29:93:34:
79:a4:77:18:bc:9d:19:c5:8e:6b:23:a8:f5:44:6a:2b:9b:32:
e0:5e:63:fa:59:f9:00:6b:a8:bf:93:fb:31:2b:67:6b:35:c7:
98:f5:af:3d:19:74:8c:c1:50:a5:f4:34:b8:8a:49:6c:71:7b:
e9:21:64:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:19 2024 by rpki-client on console.sobornost.net