Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/7xTXZLlHAdwgc7ll-3_DKH37FDI.roa
File: 7xTXZLlHAdwgc7ll-3_DKH37FDI.roa (raw, json)
Hash identifier: K1MN1TC0mVL2Pgxh5TRAo0gly7QrTVR+Y9KgZKXNlpU=
Subject key identifier: EF:14:D7:64:B9:47:01:DC:20:73:B9:65:FB:7F:C3:28:7D:FB:14:32
Certificate issuer: /CN=2b051ef23060eb51bfd8c79795f6a4daf48a3aa0
Certificate serial: 01935AD504686868A198FAC5DC94BFED079B
Authority key identifier: 2B:05:1E:F2:30:60:EB:51:BF:D8:C7:97:95:F6:A4:DA:F4:8A:3A:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KwUe8jBg61G_2MeXlfak2vSKOqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/7xTXZLlHAdwgc7ll-3_DKH37FDI.roa
Signing time: Sat 23 Nov 2024 21:02:09 +0000
ROA not before: Sat 23 Nov 2024 21:02:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 195.234.153.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:5a:d5:04:68:68:68:a1:98:fa:c5:dc:94:bf:ed:07:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b051ef23060eb51bfd8c79795f6a4daf48a3aa0
Validity
Not Before: Nov 23 21:02:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ef14d764b94701dc2073b965fb7fc3287dfb1432
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:3b:cf:4d:6e:06:ab:d5:cc:b2:50:49:12:a5:
f2:22:e9:29:8f:92:cd:2b:94:a8:d7:a8:6a:54:32:
9f:51:cd:dd:32:27:82:d9:66:20:34:8e:d7:ae:fa:
d0:26:61:50:35:e1:be:1c:ac:a5:24:92:ea:78:e0:
e9:92:3d:3e:ec:c1:8b:ab:77:9c:6a:7c:5f:27:71:
fe:8d:ea:84:b2:37:3b:ed:4f:a9:ba:27:b1:20:a5:
1a:48:e9:d7:35:0c:81:80:ff:08:c9:d5:d0:ef:f6:
69:47:39:ce:60:80:dd:7c:8d:63:a2:48:8a:8f:7e:
69:b0:a4:7f:b7:70:bd:4e:66:39:de:e9:58:81:3c:
a8:76:cf:dd:0c:9c:8d:a6:92:85:6a:3a:66:04:2b:
0a:e0:da:6f:2a:8f:df:c3:b5:c7:0d:88:dd:cb:da:
dc:44:72:32:77:e7:6c:5d:dd:ff:f4:4a:84:61:55:
88:46:2c:77:e7:f6:71:de:75:c0:68:ee:cf:7c:09:
99:30:92:06:5e:53:1c:1e:85:a9:7a:01:77:ef:a5:
ef:2e:20:d7:6b:5a:33:d3:fa:43:dd:48:21:4e:3e:
7d:23:74:8f:32:91:28:8e:59:25:1e:ac:f0:ce:8a:
a6:3c:e8:c8:f6:1a:c8:73:39:3a:c8:92:f7:fe:ea:
df:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:14:D7:64:B9:47:01:DC:20:73:B9:65:FB:7F:C3:28:7D:FB:14:32
X509v3 Authority Key Identifier:
keyid:2B:05:1E:F2:30:60:EB:51:BF:D8:C7:97:95:F6:A4:DA:F4:8A:3A:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KwUe8jBg61G_2MeXlfak2vSKOqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/7xTXZLlHAdwgc7ll-3_DKH37FDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/KwUe8jBg61G_2MeXlfak2vSKOqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.234.153.0/24
Signature Algorithm: sha256WithRSAEncryption
82:4e:22:4b:24:28:f4:f7:57:52:d9:e8:e7:72:f6:33:5d:01:
98:b7:be:9e:ae:80:c8:c9:e3:a0:29:37:6c:d1:2a:0e:c8:15:
69:59:a8:32:3c:e4:0b:1c:40:b2:e8:f7:01:2d:09:c5:df:3a:
3c:ea:42:a8:7d:d1:a3:3b:be:1d:da:fe:fd:e4:7c:f8:61:20:
f1:e2:fb:4d:7a:42:f2:c0:00:fb:74:44:e7:63:09:a4:15:a8:
75:7b:54:92:21:d5:ad:c4:9a:78:5a:b2:1e:43:fb:21:40:ae:
a5:4a:30:bd:92:5e:a9:c0:bd:fa:7a:f5:a2:11:63:19:0d:a7:
df:3a:8f:f8:fe:8f:01:32:58:63:48:94:11:f3:66:58:76:10:
2c:cc:02:b7:69:9d:7b:ad:79:b8:65:3e:a6:b9:75:71:cd:0b:
e5:b8:8e:f7:1d:4a:f2:f5:82:82:3e:f4:2c:1a:4f:ee:ac:35:
a6:a6:d9:ef:37:77:32:c8:81:58:a5:29:82:ec:db:3c:f8:56:
ce:35:6a:da:04:62:84:5d:90:fe:d2:e6:9b:5f:26:78:12:bb:
d8:2b:5d:24:d3:e3:40:a1:96:0a:c0:a7:0a:d9:0c:61:01:32:
71:a6:49:73:da:c4:d0:e3:f3:dc:4d:4f:74:48:dc:cb:9f:fb:
dd:9f:ad:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:22 2024 by rpki-client on console.sobornost.net