Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/80b930-ad97-403a-9fdb-0156d00272b7/1/YwZatRPUrAfSLLoio6wLZxVs0j8.roa
File: YwZatRPUrAfSLLoio6wLZxVs0j8.roa (raw, json)
Hash identifier: ezqISbFMD5L/VyCRj2L8MDQFPu1qTtsj0AkJAk2lMkI=
Subject key identifier: 63:06:5A:B5:13:D4:AC:07:D2:2C:BA:22:A3:AC:0B:67:15:6C:D2:3F
Certificate issuer: /CN=75e8b2b28bba3dc4e861d5cbf5bc1cc98c89e576
Certificate serial: 018CC79334897628A9D9CE5CA1CE26A54F26
Authority key identifier: 75:E8:B2:B2:8B:BA:3D:C4:E8:61:D5:CB:F5:BC:1C:C9:8C:89:E5:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/deiysou6PcToYdXL9bwcyYyJ5XY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/80b930-ad97-403a-9fdb-0156d00272b7/1/YwZatRPUrAfSLLoio6wLZxVs0j8.roa
Signing time: Tue 02 Jan 2024 00:29:22 +0000
ROA not before: Tue 02 Jan 2024 00:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3561
IP address blocks: 213.109.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:93:34:89:76:28:a9:d9:ce:5c:a1:ce:26:a5:4f:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75e8b2b28bba3dc4e861d5cbf5bc1cc98c89e576
Validity
Not Before: Jan 2 00:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=63065ab513d4ac07d22cba22a3ac0b67156cd23f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e3:02:23:c0:b4:33:8b:05:b3:1c:78:c3:e7:
8d:7c:43:45:93:00:ac:30:d2:bc:48:5b:97:a3:5a:
b2:88:71:ca:59:44:e4:ad:dd:15:9a:64:f1:ab:21:
a1:35:9f:b4:0f:6c:db:55:90:a8:cd:af:62:f0:6a:
4c:d2:0b:3c:c3:e2:9c:22:9f:44:c4:bb:00:e2:75:
24:c1:93:cb:1f:d3:6e:fe:4b:4b:1a:e7:8b:60:cc:
17:7f:e5:3e:d8:b8:ac:dd:c9:39:38:05:ae:d1:f1:
1a:aa:ff:6b:b2:4e:98:45:db:c4:3e:4f:52:42:11:
5b:b7:a5:79:26:3a:ac:c3:e7:75:f0:21:0f:12:17:
87:84:a0:5a:36:d0:39:c7:84:c4:21:0b:ea:5d:0a:
2e:e8:e7:0c:b8:74:3b:89:f5:ef:38:3f:e0:fe:db:
f1:f3:1c:64:50:bb:ad:91:e6:fc:05:bb:76:58:a6:
aa:de:e8:c2:16:f4:80:bf:9a:79:cb:20:fa:57:16:
7d:4b:78:1a:00:61:d8:c9:27:fd:e8:db:80:61:fc:
cc:c9:a7:71:d3:bd:5c:02:2b:06:21:61:c6:33:8c:
0b:06:01:73:ab:a9:64:63:49:33:c7:03:df:eb:eb:
b2:7f:90:38:f3:a5:7a:89:fa:28:ec:00:e5:6e:36:
14:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:06:5A:B5:13:D4:AC:07:D2:2C:BA:22:A3:AC:0B:67:15:6C:D2:3F
X509v3 Authority Key Identifier:
keyid:75:E8:B2:B2:8B:BA:3D:C4:E8:61:D5:CB:F5:BC:1C:C9:8C:89:E5:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/deiysou6PcToYdXL9bwcyYyJ5XY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/80b930-ad97-403a-9fdb-0156d00272b7/1/YwZatRPUrAfSLLoio6wLZxVs0j8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/80b930-ad97-403a-9fdb-0156d00272b7/1/deiysou6PcToYdXL9bwcyYyJ5XY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.207.0/24
Signature Algorithm: sha256WithRSAEncryption
51:b8:ff:16:81:59:1b:66:5f:b6:dd:ae:5f:c4:7c:41:15:9e:
76:f4:9f:e9:f1:d4:3b:f8:1b:8d:c4:5d:f4:27:ef:de:61:f6:
69:69:1d:fd:6a:d8:ed:0d:be:27:58:bb:cb:01:a6:99:dd:9d:
6b:ec:b2:d4:53:82:e3:8e:34:d7:27:c7:21:47:53:79:c6:b9:
0d:5e:36:dc:1d:7a:a0:45:da:ab:02:5e:22:9e:b1:5e:49:c1:
3c:89:fa:1d:13:9f:1a:bc:b5:ef:d2:48:94:a4:2e:e2:dd:99:
84:2a:98:88:c4:47:2e:4a:f9:f7:f5:87:e1:f1:da:b7:79:ed:
30:10:40:3d:de:c4:ec:de:b0:ad:4e:1d:79:a1:f8:d2:16:ae:
1f:c7:4b:55:17:42:6f:0a:59:be:39:a1:38:21:0e:e5:db:97:
69:28:23:ea:2d:31:e1:e0:05:26:60:10:a9:f6:50:54:c8:73:
8e:a4:1c:9d:f4:8b:37:f0:2d:e3:da:ae:72:18:0f:bc:81:5e:
4d:46:9b:c9:85:80:fb:ab:45:a5:20:f6:d2:99:45:69:eb:53:
66:be:f7:57:1d:a4:d6:d5:3c:0f:b9:a2:ac:e3:9f:ee:98:e9:
48:81:90:fd:1d:56:55:37:f6:7a:d1:d0:59:ad:1c:cc:03:45:
88:88:56:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 27 00:58:28 2024 by rpki-client on console.sobornost.net