Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1a3d5c-e49a-4d4d-a70d-b6d427a3b106/1/k_I3JZo7URE7cKZJ6wBWDse1ovQ.roa
File: k_I3JZo7URE7cKZJ6wBWDse1ovQ.roa (raw, json)
Hash identifier: 44GwP5GEiNLMXoz25BVd52WcucaSJBT71/FWT7xLdBs=
Subject key identifier: 93:F2:37:25:9A:3B:51:11:3B:70:A6:49:EB:00:56:0E:C7:B5:A2:F4
Certificate issuer: /CN=68395fb8f4524b8a6f945bbfa938b8f61694052f
Certificate serial: 071FB84B
Authority key identifier: 68:39:5F:B8:F4:52:4B:8A:6F:94:5B:BF:A9:38:B8:F6:16:94:05:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDlfuPRSS4pvlFu_qTi49haUBS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1a3d5c-e49a-4d4d-a70d-b6d427a3b106/1/k_I3JZo7URE7cKZJ6wBWDse1ovQ.roa
Signing time: Fri 22 Apr 2022 12:12:49 +0000
ROA not before: Fri 22 Apr 2022 12:12:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197706
IP address blocks: 81.21.232.0/24 maxlen: 24
91.217.73.0/24 maxlen: 24
81.21.235.0/24 maxlen: 24
91.217.7.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119519307 (0x71fb84b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68395fb8f4524b8a6f945bbfa938b8f61694052f
Validity
Not Before: Apr 22 12:12:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93f237259a3b51113b70a649eb00560ec7b5a2f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:fd:2d:9f:a6:b8:10:69:25:c5:db:d5:0d:df:
e4:7d:a6:06:0c:68:f2:4f:84:6c:80:5e:73:87:61:
8d:74:3c:a9:94:a8:e0:bb:2a:77:c6:aa:5b:4c:74:
ad:99:59:fc:d5:51:c4:6a:26:08:b7:5b:2f:bc:a7:
0e:b1:25:15:73:46:11:f3:a3:0b:18:d9:18:9a:c6:
fc:5f:22:8f:20:38:43:f7:97:08:51:dc:aa:db:09:
84:9d:a8:7f:4f:86:de:50:5e:fc:13:1b:8d:de:2c:
69:46:a5:34:0f:bc:6f:c0:5f:b9:52:11:61:32:5b:
76:66:d6:03:9b:ca:74:db:cb:da:f8:0e:01:44:1f:
21:4a:ca:e9:21:f4:25:aa:7f:30:44:71:d9:c2:19:
57:53:24:40:7b:14:7a:d7:8b:af:c5:6d:a9:92:a4:
7f:9c:6c:96:70:eb:c1:64:6f:84:cb:8f:47:ec:b6:
17:a3:5a:db:25:ee:b3:6c:5c:12:8f:ae:e1:67:14:
09:cc:24:77:db:3f:3a:b0:a1:66:84:ad:b3:a4:82:
c8:57:b3:a9:c0:b2:d8:e4:fa:b9:1d:96:9b:e7:87:
80:1d:65:4e:48:7b:68:eb:8e:1a:f9:2b:f0:04:e2:
23:1a:57:ad:70:0b:3d:cf:a7:08:f8:d5:4b:b4:92:
4f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:F2:37:25:9A:3B:51:11:3B:70:A6:49:EB:00:56:0E:C7:B5:A2:F4
X509v3 Authority Key Identifier:
keyid:68:39:5F:B8:F4:52:4B:8A:6F:94:5B:BF:A9:38:B8:F6:16:94:05:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDlfuPRSS4pvlFu_qTi49haUBS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1a3d5c-e49a-4d4d-a70d-b6d427a3b106/1/k_I3JZo7URE7cKZJ6wBWDse1ovQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1a3d5c-e49a-4d4d-a70d-b6d427a3b106/1/aDlfuPRSS4pvlFu_qTi49haUBS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.21.232.0/24
81.21.235.0/24
91.217.7.0/24
91.217.73.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:bb:24:48:d2:64:a2:ac:4c:ff:86:e2:2f:ab:aa:3a:21:4d:
00:43:f8:72:2b:e3:dc:b7:d4:f7:f7:5a:6c:bd:f3:6a:52:a3:
1c:5f:bc:28:60:c9:cf:dc:be:e7:61:d9:61:26:12:e0:05:37:
db:cc:2f:db:40:7f:66:e4:ab:cc:20:8b:bf:5c:dd:15:30:41:
b5:00:e5:0b:86:cb:ae:8f:cb:bf:7a:fd:23:25:8a:ea:7c:eb:
a7:88:d5:a4:6b:49:9c:43:1b:7d:79:6e:28:a8:2f:ac:d4:70:
d6:b3:48:e9:d6:08:af:bd:98:48:66:87:b8:1d:7c:09:8a:5d:
e8:57:03:fd:6f:a7:13:90:14:1e:45:0f:39:44:ee:ad:ea:c9:
4e:2f:5a:eb:a4:9b:6e:b7:26:31:f5:25:21:d3:02:9c:08:d1:
14:0c:0e:20:d0:e5:92:b9:94:bc:2c:4d:60:c6:ca:b8:ca:b9:
42:34:aa:a2:ab:ec:99:93:6c:4c:c9:ef:04:c9:3c:5a:6c:4e:
14:55:d6:b9:c2:1e:74:0d:12:b3:5b:3d:9a:fd:ad:5a:9d:f1:
45:ef:9e:93:d9:b7:56:a3:a7:63:b7:d6:f2:46:2b:37:b6:2a:
b0:a3:87:79:0c:a3:87:4d:61:98:73:9a:b9:eb:6f:ca:e7:af:
f3:ab:69:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:39 2023 by rpki-client on console.sobornost.net