Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/4eafc3-4639-4ae9-80a6-4cc282441cf3/1/Opn_hfy97dM6Hi0XDGyzbYR1PBU.roa
File: Opn_hfy97dM6Hi0XDGyzbYR1PBU.roa (raw, json)
Hash identifier: i7dNGuhJ3TkgbssDF+5WNaUtZCLCaS5YgOoOiwUjZvQ=
Subject key identifier: 3A:99:FF:85:FC:BD:ED:D3:3A:1E:2D:17:0C:6C:B3:6D:84:75:3C:15
Certificate issuer: /CN=c32aaf3ab4dea33b5ca1e22b45df6e9aa2d4a035
Certificate serial: 0185710C2009F6E2294CAF18F935933F6AB6
Authority key identifier: C3:2A:AF:3A:B4:DE:A3:3B:5C:A1:E2:2B:45:DF:6E:9A:A2:D4:A0:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wyqvOrTeoztcoeIrRd9umqLUoDU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/4eafc3-4639-4ae9-80a6-4cc282441cf3/1/Opn_hfy97dM6Hi0XDGyzbYR1PBU.roa
Signing time: Mon 02 Jan 2023 05:54:58 +0000
ROA not before: Mon 02 Jan 2023 05:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210506
IP address blocks: 194.26.201.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:20:09:f6:e2:29:4c:af:18:f9:35:93:3f:6a:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c32aaf3ab4dea33b5ca1e22b45df6e9aa2d4a035
Validity
Not Before: Jan 2 05:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3a99ff85fcbdedd33a1e2d170c6cb36d84753c15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:07:fc:fc:43:99:a6:05:fb:1a:e9:1c:74:a3:
94:6b:f8:04:9b:08:25:3e:47:4b:85:63:a9:66:b1:
d2:60:2d:f2:ca:1c:ba:15:d3:dc:10:4c:7a:82:03:
f5:81:b0:45:ea:58:4c:bb:ae:fb:d2:68:73:df:10:
fb:b4:ad:f7:e8:d8:87:72:89:ce:1c:47:8c:95:30:
80:b9:54:47:ac:0a:bc:79:07:4b:c6:50:46:8b:11:
81:60:be:74:a3:cb:96:0f:4f:ba:75:9e:98:a4:44:
e5:ae:b0:cc:b7:c2:8c:73:26:cb:7b:a5:f5:ff:0b:
5b:00:68:dc:fa:5f:16:c3:5f:53:7c:08:3a:0c:ad:
4a:f2:86:73:92:52:1b:9d:53:21:fe:70:d2:35:82:
03:44:66:83:4f:26:96:61:e5:97:a6:5e:a5:b1:22:
c8:cc:78:bf:28:e7:ff:f6:83:d7:3f:1a:ad:17:52:
2e:66:42:f9:9b:05:46:44:69:d1:48:1d:6a:35:f0:
5c:b0:b3:76:5d:84:35:a5:9b:68:03:c5:1b:b2:60:
9a:9d:5f:07:d5:4c:1f:e7:6b:cf:d8:b5:03:41:2c:
ac:77:e7:3e:33:e3:97:48:af:39:03:c4:04:b1:bf:
be:49:4e:b5:22:ea:ef:d0:1d:f0:ce:c8:b4:ef:9b:
7d:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:99:FF:85:FC:BD:ED:D3:3A:1E:2D:17:0C:6C:B3:6D:84:75:3C:15
X509v3 Authority Key Identifier:
keyid:C3:2A:AF:3A:B4:DE:A3:3B:5C:A1:E2:2B:45:DF:6E:9A:A2:D4:A0:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wyqvOrTeoztcoeIrRd9umqLUoDU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/4eafc3-4639-4ae9-80a6-4cc282441cf3/1/Opn_hfy97dM6Hi0XDGyzbYR1PBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/4eafc3-4639-4ae9-80a6-4cc282441cf3/1/wyqvOrTeoztcoeIrRd9umqLUoDU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.201.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:25:b2:27:4d:67:5f:a0:1a:04:84:8b:9a:3d:44:cf:d2:04:
f2:db:90:fb:fe:45:5e:6b:80:7e:91:78:f5:a0:0e:e5:d1:ca:
20:e2:ad:c3:fd:de:e8:50:5d:98:70:75:2d:f6:ce:c5:a3:98:
44:ea:4a:73:21:b3:f8:98:c9:63:f2:50:5a:0b:a5:54:4b:7f:
d5:eb:56:ca:b7:2b:8b:f2:7b:21:cc:25:93:6f:74:55:3f:1f:
3d:e8:70:04:c4:c5:2b:2b:3c:a1:92:56:a6:83:f2:6c:df:52:
72:1b:e7:db:2b:d0:cb:38:3a:51:48:e5:14:ea:3e:6c:52:13:
81:43:14:e3:e1:9f:5d:49:d3:15:24:a7:0b:38:17:4c:3c:59:
36:82:b5:42:fa:0c:fa:e9:08:ca:5b:8c:bd:81:86:6b:21:1f:
4c:70:8d:0b:54:8e:2d:49:74:03:42:2d:d5:6f:1b:13:90:62:
55:1c:8d:a0:e8:65:76:7b:b2:fa:07:55:a1:89:fc:c1:5a:95:
93:55:51:cd:74:ce:67:50:c5:6a:3b:09:fa:4c:61:90:38:0c:
c3:a1:78:9f:5e:53:3f:30:4e:71:e1:c3:14:7d:ec:83:84:0a:
10:7a:13:fc:78:47:04:ec:61:fe:cb:a6:f5:89:30:66:21:25:
4e:d7:5b:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:39 2023 by rpki-client on console.sobornost.net