Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/PFd-5-bPEEO8f3cXkJxQmltEoOk.roa
File: PFd-5-bPEEO8f3cXkJxQmltEoOk.roa (raw, json)
Hash identifier: ZWnHd2+H+3c2RLeJuZPgl8V5kzfRKBzmnL8VLEHXfJE=
Subject key identifier: 3C:57:7E:E7:E6:CF:10:43:BC:7F:77:17:90:9C:50:9A:5B:44:A0:E9
Certificate issuer: /CN=de804c9c8a43397d16779aa934f7067388fc7d7c
Certificate serial: 018CC56E92709361EB4BB332C236BE8CF077
Authority key identifier: DE:80:4C:9C:8A:43:39:7D:16:77:9A:A9:34:F7:06:73:88:FC:7D:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/PFd-5-bPEEO8f3cXkJxQmltEoOk.roa
Signing time: Mon 01 Jan 2024 14:30:07 +0000
ROA not before: Mon 01 Jan 2024 14:30:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205747
IP address blocks: 185.188.196.0/22 maxlen: 24
2a0b:d080::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:92:70:93:61:eb:4b:b3:32:c2:36:be:8c:f0:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de804c9c8a43397d16779aa934f7067388fc7d7c
Validity
Not Before: Jan 1 14:30:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3c577ee7e6cf1043bc7f7717909c509a5b44a0e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2a:31:4a:fb:4a:68:22:20:e3:f5:ff:fa:9c:
c9:57:45:06:86:1c:57:b9:2e:99:43:02:58:f4:dc:
87:af:33:4f:52:07:03:43:79:8c:b3:af:e4:27:6f:
2b:35:fc:52:c0:5b:3e:40:b8:94:73:b3:44:21:bc:
9f:b9:37:28:38:70:00:d9:67:22:55:05:ca:91:95:
c2:9a:5d:b3:c3:d4:23:21:e0:73:e6:ae:4b:56:57:
19:6b:72:78:e9:40:f0:6f:d6:ca:a9:22:80:25:70:
59:e2:48:6a:35:0d:13:3c:51:bd:d3:00:84:38:42:
b3:07:16:3c:fd:7e:55:41:38:38:90:ce:9d:bf:48:
eb:cf:83:d7:90:51:76:ec:a9:00:9e:fe:07:07:27:
4f:04:4e:85:03:45:f0:9e:92:be:4c:f7:f1:52:dd:
5a:bb:f9:95:21:05:ca:46:85:f3:cc:06:1b:93:1c:
a0:74:63:0a:4e:7e:ac:54:0d:2c:5d:89:47:de:3f:
14:b9:53:67:d0:81:4a:12:9f:84:94:1f:84:34:b8:
18:51:ac:65:e6:77:0e:40:ed:70:b7:04:14:54:39:
35:4a:60:5c:64:45:4b:1a:f9:6f:ab:3c:09:7b:fd:
ca:fd:79:d4:a5:5b:8f:0e:54:97:fd:56:63:08:25:
63:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:57:7E:E7:E6:CF:10:43:BC:7F:77:17:90:9C:50:9A:5B:44:A0:E9
X509v3 Authority Key Identifier:
keyid:DE:80:4C:9C:8A:43:39:7D:16:77:9A:A9:34:F7:06:73:88:FC:7D:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/PFd-5-bPEEO8f3cXkJxQmltEoOk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.196.0/22
IPv6:
2a0b:d080::/32
Signature Algorithm: sha256WithRSAEncryption
38:43:10:e6:da:56:7c:fb:ab:54:57:09:08:17:a4:e5:ba:71:
90:fd:d8:c3:01:f9:ec:70:1d:9f:9f:76:ec:a2:7c:bd:7c:d1:
47:66:6d:96:f3:dc:fc:24:2a:ff:5f:81:29:a6:0a:c4:87:9c:
c0:05:10:fc:ed:29:c8:5b:57:80:0d:23:82:b9:da:38:e5:96:
79:93:3f:0a:e9:6d:41:de:02:8d:2c:a7:ca:4b:c1:80:4a:4e:
a6:cc:87:4d:12:64:7f:84:c0:c4:a0:e7:10:5e:60:e0:eb:3b:
64:03:23:01:15:98:fd:e5:0f:ad:a9:c7:ed:36:79:03:80:c9:
5f:00:69:42:cc:1f:78:33:fa:bc:81:a3:5e:7f:ee:c9:59:4d:
b8:ae:63:e9:c6:25:d1:34:e3:84:71:25:4a:ab:dc:de:5a:ea:
9f:0c:83:b6:ff:c9:50:dc:8c:02:13:2a:c3:ee:d8:9f:8c:87:
2c:ea:1b:24:89:a6:86:f0:66:2f:d5:68:df:01:e2:ab:c3:88:
12:0f:b4:c5:7f:ab:60:63:78:60:11:97:61:ad:4b:fc:97:88:
19:5e:fa:f9:98:47:c9:7c:79:81:4a:71:45:7c:f4:c2:0d:fc:
cf:0a:4c:d0:ce:09:ad:c3:df:f5:9e:f3:a7:90:73:51:38:1a:
bb:5f:36:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 15 03:07:27 2024 by rpki-client on console.sobornost.net