Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/PfvhxT16KdMwlDTCa1FhF-HG-8c.roa
File: PfvhxT16KdMwlDTCa1FhF-HG-8c.roa (raw, json)
Hash identifier: vKefazhZUXdy9iNmk6u+xj5/eN3X5X+EqfToUvktua4=
Subject key identifier: 3D:FB:E1:C5:3D:7A:29:D3:30:94:34:C2:6B:51:61:17:E1:C6:FB:C7
Certificate issuer: /CN=4444c7c3ad34b6977fa18a2237ca306b9bee08e0
Certificate serial: 018CD4A5DA392920E51C5146B14B89A5FCE0
Authority key identifier: 44:44:C7:C3:AD:34:B6:97:7F:A1:8A:22:37:CA:30:6B:9B:EE:08:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RETHw600tpd_oYoiN8owa5vuCOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/PfvhxT16KdMwlDTCa1FhF-HG-8c.roa
Signing time: Thu 04 Jan 2024 13:24:48 +0000
ROA not before: Thu 04 Jan 2024 13:24:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205513
IP address blocks: 31.129.250.0/24 maxlen: 24
31.129.248.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d4:a5:da:39:29:20:e5:1c:51:46:b1:4b:89:a5:fc:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4444c7c3ad34b6977fa18a2237ca306b9bee08e0
Validity
Not Before: Jan 4 13:24:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3dfbe1c53d7a29d3309434c26b516117e1c6fbc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:47:8d:a5:6e:8a:01:b0:41:69:9f:01:1d:fd:
a9:be:f7:f6:a1:ec:2a:b0:ce:1a:ef:dc:22:ca:77:
1f:55:7d:eb:ad:7f:d5:9b:87:c5:14:a0:36:96:94:
20:b1:b2:6b:9f:1d:e5:af:71:fa:ab:06:86:a3:f8:
90:d4:40:28:e3:bc:20:0b:dc:3e:98:58:13:2c:9e:
05:c7:3e:ea:14:b9:e8:f6:ea:ae:49:22:d1:0d:52:
8e:75:7e:08:a8:82:3c:d4:04:63:21:75:0d:05:cf:
e5:d9:c3:67:be:b2:55:f5:45:5d:35:d5:fc:4d:9b:
9e:b1:4d:6e:63:fc:63:d4:65:01:03:a4:8a:18:8b:
3d:fc:6e:6e:e0:de:c8:0b:59:df:d4:68:2d:9f:ea:
1e:44:a6:3d:0c:32:ad:f8:9d:a4:ef:cc:c4:d6:82:
a5:5f:ad:93:16:f5:b7:cd:8e:a3:27:ee:b5:ca:b9:
f9:d1:6f:8b:30:73:75:ec:13:00:87:d7:5b:fb:97:
5d:94:50:f2:9e:8a:fb:ae:8b:a1:90:ca:1f:f8:16:
db:9a:f5:f4:cf:0a:21:a4:99:79:27:b8:2c:9b:bd:
a5:3b:81:22:9b:e5:92:62:cb:aa:1f:e9:f4:3a:2b:
74:b5:2f:63:a4:d7:69:42:05:ba:75:f8:d9:f8:8f:
af:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:FB:E1:C5:3D:7A:29:D3:30:94:34:C2:6B:51:61:17:E1:C6:FB:C7
X509v3 Authority Key Identifier:
keyid:44:44:C7:C3:AD:34:B6:97:7F:A1:8A:22:37:CA:30:6B:9B:EE:08:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RETHw600tpd_oYoiN8owa5vuCOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/PfvhxT16KdMwlDTCa1FhF-HG-8c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.129.248.0-31.129.250.255
Signature Algorithm: sha256WithRSAEncryption
8c:b1:33:09:0e:1f:17:8b:8c:8e:b1:dc:49:3f:df:f9:41:d7:
dc:e2:fd:6a:0e:fa:9b:61:a6:03:b8:2d:b4:48:9f:4d:41:8f:
ab:d4:ad:8c:b3:d7:e6:7a:ff:28:ad:e6:4c:57:ec:86:3c:6c:
c6:65:93:d9:c4:c5:ef:e2:8b:5c:98:0d:ac:81:eb:c8:7b:01:
09:30:a7:96:2e:f3:d4:41:c4:a3:8c:c7:32:26:8c:12:38:25:
c8:a2:9e:c0:e3:e7:74:63:5a:7c:95:5b:16:3a:4a:6a:d2:de:
d1:2f:d6:6b:91:1a:c4:e9:ad:bc:18:32:71:2b:57:09:be:df:
d5:87:15:80:4a:8c:db:b8:b6:d5:b4:58:c8:bd:e8:c1:94:2e:
d7:5d:a2:0e:5e:23:d8:0b:cd:12:64:07:7e:11:24:a6:fd:15:
ca:74:f5:6f:19:dc:ec:bc:9b:2a:53:fe:92:11:ba:c9:aa:fa:
82:b3:56:7e:da:be:9f:d9:d2:c9:31:a6:46:3b:88:ab:db:ac:
a4:e0:dd:89:fe:5d:09:ac:69:d0:0b:91:02:c4:43:f6:60:0f:
19:83:d8:63:b5:09:ab:96:c7:0b:24:3f:f0:09:ea:bf:e0:ed:
57:5f:e6:a1:d9:f4:fd:b8:45:7d:90:20:82:9c:ea:f5:6e:39:
32:ca:33:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 30 06:53:42 2024 by rpki-client on console.sobornost.net