Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/d21efd-ea64-4145-8cef-6d62c0359d29/1/YVx3H3hKyUWAxWA7hex1goyGmck.roa
File: YVx3H3hKyUWAxWA7hex1goyGmck.roa (raw, json)
Hash identifier: HgoG98u5oneZCgNm7+AmyIA5OmSG8JOlh9t4IonA/Zw=
Subject key identifier: 61:5C:77:1F:78:4A:C9:45:80:C5:60:3B:85:EC:75:82:8C:86:99:C9
Certificate issuer: /CN=09d527fbcd717b1316ee64c283fde26d0e5bb153
Certificate serial: 01856D94113549976C4CC2E5FB02FB1C8146
Authority key identifier: 09:D5:27:FB:CD:71:7B:13:16:EE:64:C2:83:FD:E2:6D:0E:5B:B1:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CdUn-81xexMW7mTCg_3ibQ5bsVM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/d21efd-ea64-4145-8cef-6d62c0359d29/1/YVx3H3hKyUWAxWA7hex1goyGmck.roa
Signing time: Sun 01 Jan 2023 13:44:58 +0000
ROA not before: Sun 01 Jan 2023 13:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47787
IP address blocks: 146.19.249.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:94:11:35:49:97:6c:4c:c2:e5:fb:02:fb:1c:81:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09d527fbcd717b1316ee64c283fde26d0e5bb153
Validity
Not Before: Jan 1 13:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=615c771f784ac94580c5603b85ec75828c8699c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:b2:30:7d:ed:17:89:53:88:4a:3c:f5:98:ce:
cc:30:48:dc:ed:24:6d:2b:45:f6:b9:dd:4f:5c:c1:
47:77:17:4f:72:31:8c:a1:59:a9:4b:b7:cc:67:0b:
28:bf:21:2c:04:7c:00:b9:43:3a:3a:42:7e:5b:4c:
c2:fc:7c:52:3b:de:72:06:18:06:28:9a:78:b6:06:
bf:21:8c:de:0c:51:29:c7:a6:13:41:fd:88:23:3d:
9a:fa:cd:07:6a:3c:1a:64:01:6c:96:81:e2:ee:71:
78:98:9f:7d:01:7b:57:71:78:9d:f0:a5:93:42:d8:
d7:9d:d0:e6:41:aa:15:63:22:8d:3c:13:9c:6a:c0:
4a:bd:3a:38:58:2c:ce:0d:c7:c4:ae:3f:f9:3c:c4:
9c:30:f9:d5:d9:05:16:89:3b:96:43:2c:d4:5e:43:
70:a5:cf:f1:b8:75:23:28:8e:3f:d7:f4:7a:52:34:
9a:e1:a1:bd:a0:90:45:8a:a8:a1:cc:e4:d8:a1:06:
a1:07:d8:10:15:fa:7a:5b:50:da:04:54:64:87:02:
d4:e8:9a:d4:48:99:a9:57:3e:0f:a4:e9:d2:a9:9f:
f5:a1:bd:d1:04:61:53:de:8b:a2:84:41:51:00:fa:
70:64:e6:90:77:7b:50:6c:1f:2b:5d:af:c9:8e:34:
eb:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:5C:77:1F:78:4A:C9:45:80:C5:60:3B:85:EC:75:82:8C:86:99:C9
X509v3 Authority Key Identifier:
keyid:09:D5:27:FB:CD:71:7B:13:16:EE:64:C2:83:FD:E2:6D:0E:5B:B1:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CdUn-81xexMW7mTCg_3ibQ5bsVM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/d21efd-ea64-4145-8cef-6d62c0359d29/1/YVx3H3hKyUWAxWA7hex1goyGmck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/d21efd-ea64-4145-8cef-6d62c0359d29/1/CdUn-81xexMW7mTCg_3ibQ5bsVM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.249.0/24
Signature Algorithm: sha256WithRSAEncryption
81:ac:b9:f9:05:fb:46:7e:3c:7b:09:91:f3:79:19:90:bc:b7:
56:00:83:82:bf:0c:8f:f0:7e:bb:86:1f:77:dd:20:31:f7:41:
e4:02:cf:db:76:65:5c:2d:30:ee:96:75:6c:c5:4c:2b:4f:9c:
a9:dd:3a:ca:50:77:a6:16:4b:f1:02:a4:9b:75:e1:21:a1:64:
c6:d5:11:fc:96:12:7c:84:7f:35:59:ea:6a:c6:9a:6e:22:fd:
84:de:01:53:6d:e8:c4:dc:24:ff:3c:45:2c:59:d8:ed:22:c6:
a7:18:f1:c4:c6:62:fd:3b:0f:51:78:67:29:06:b0:ad:7a:2e:
29:10:41:37:f3:ec:aa:ad:9b:04:13:87:13:b1:f0:e0:1d:7d:
b5:ec:3a:a8:06:cb:80:ca:33:20:44:d3:c8:97:59:72:30:ff:
2c:58:14:f2:49:97:03:68:b0:58:7f:60:39:4c:b0:17:7f:7a:
15:5f:14:76:fd:95:aa:a3:1c:c2:26:20:5c:75:c6:17:79:ef:
c0:33:54:76:3b:db:08:ba:74:4a:2f:9d:4b:a5:c5:ef:5e:89:
92:52:6f:ee:3a:09:09:1b:79:bc:11:7e:cd:81:90:a5:7a:48:
1e:2a:db:fb:d1:15:73:d4:44:f9:d3:61:a9:fa:75:0e:74:9c:
a9:aa:6b:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:32 2023 by rpki-client on console.sobornost.net