Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/aa96d0-9721-4e38-9936-801d2c4ed494/1/vf4UTFdolzcX5hp3mu-Id9eJT_0.roa
File: vf4UTFdolzcX5hp3mu-Id9eJT_0.roa (raw, json)
Hash identifier: I8/fdScYysGb55tWpzal/u0plaSFB82SgZHIffEdidg=
Subject key identifier: BD:FE:14:4C:57:68:97:37:17:E6:1A:77:9A:EF:88:77:D7:89:4F:FD
Certificate issuer: /CN=29fb641a0d1a36c2b6478f7dcf3a8546405f9b45
Certificate serial: 018964C061FB72D9C1C4C7017E507DFAC46B
Authority key identifier: 29:FB:64:1A:0D:1A:36:C2:B6:47:8F:7D:CF:3A:85:46:40:5F:9B:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KftkGg0aNsK2R499zzqFRkBfm0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/aa96d0-9721-4e38-9936-801d2c4ed494/1/vf4UTFdolzcX5hp3mu-Id9eJT_0.roa
Signing time: Mon 17 Jul 2023 16:47:56 +0000
ROA not before: Mon 17 Jul 2023 16:47:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 31.222.246.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:c0:61:fb:72:d9:c1:c4:c7:01:7e:50:7d:fa:c4:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29fb641a0d1a36c2b6478f7dcf3a8546405f9b45
Validity
Not Before: Jul 17 16:47:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bdfe144c5768973717e61a779aef8877d7894ffd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:cb:1c:59:20:3f:77:c9:84:91:09:1a:d9:9c:
04:c6:ae:a1:8d:9b:47:95:19:14:54:32:2c:d6:a8:
79:47:97:30:a5:d3:cb:58:d9:dc:d3:d0:a6:b5:57:
ca:64:5e:6c:83:be:22:d7:b3:57:e9:28:87:16:e9:
ca:06:60:fe:63:dd:bd:90:cd:ab:2d:9b:02:be:2f:
40:73:1f:fe:48:4a:6e:7a:06:4a:c4:b7:79:a1:c2:
b5:fb:72:c0:98:1b:96:45:88:ee:7a:b9:ca:c1:1d:
b2:50:cd:ab:b8:59:32:98:64:42:81:f4:50:5b:e1:
f5:64:48:09:5b:11:22:8a:d4:37:25:63:25:1a:8f:
47:1e:45:9c:73:bc:45:fa:03:fa:08:e0:c8:80:db:
67:51:18:86:7e:b3:9f:29:05:c4:b1:68:81:e7:70:
e5:92:6f:7c:bf:b9:8e:0f:2e:2a:68:9d:99:b5:71:
ae:33:8f:05:4c:52:6f:bc:af:32:95:d0:25:66:36:
83:59:e7:e0:ae:58:bd:f7:65:11:57:23:e5:45:be:
fa:d7:83:7c:47:e8:e0:aa:34:c5:dc:c9:80:46:7b:
31:eb:8a:ea:e0:18:a6:47:90:77:3c:f8:6e:44:03:
aa:9f:a6:a4:9b:eb:cf:67:4e:2d:f3:ea:c2:dd:e5:
ff:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:FE:14:4C:57:68:97:37:17:E6:1A:77:9A:EF:88:77:D7:89:4F:FD
X509v3 Authority Key Identifier:
keyid:29:FB:64:1A:0D:1A:36:C2:B6:47:8F:7D:CF:3A:85:46:40:5F:9B:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KftkGg0aNsK2R499zzqFRkBfm0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/aa96d0-9721-4e38-9936-801d2c4ed494/1/vf4UTFdolzcX5hp3mu-Id9eJT_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/aa96d0-9721-4e38-9936-801d2c4ed494/1/KftkGg0aNsK2R499zzqFRkBfm0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.246.0/24
Signature Algorithm: sha256WithRSAEncryption
27:17:62:18:6f:83:a6:1d:e1:82:7a:40:30:8f:10:02:ca:72:
95:78:cb:5f:e1:24:89:35:9a:26:03:56:79:f9:bb:fa:0e:11:
96:5b:41:aa:93:4c:db:b9:a2:f1:22:8c:79:53:19:8e:f2:41:
66:0f:9c:65:91:63:1d:ca:26:0a:ec:2f:f1:7b:c6:29:e5:59:
49:03:a2:90:e4:82:78:aa:0b:30:00:9f:02:01:d3:1e:11:d8:
1c:c9:48:3a:c5:cd:99:f6:d5:9b:96:11:55:33:3a:8f:d1:16:
78:d9:d7:db:81:63:8e:63:8c:f2:52:7b:69:43:0e:2a:8f:ab:
8d:b0:fe:09:97:70:08:b0:ca:14:a4:2e:25:df:10:bc:40:c8:
27:98:ae:5c:e6:56:9f:99:f4:04:4d:2b:54:8a:33:e5:ff:ce:
99:3c:80:e3:ad:9e:db:51:fa:7f:aa:ea:c1:1b:db:95:64:5a:
04:c5:45:0d:bc:a3:07:8e:35:6f:5f:e5:f1:69:b2:83:a3:7c:
26:a5:d1:bf:02:85:aa:29:9d:ce:e1:84:b1:a7:7e:0d:28:1b:
6e:23:e4:b4:d6:83:32:ea:c5:94:fe:61:27:5a:08:d2:95:4f:
84:c1:d2:5c:a8:cc:ce:34:64:fe:0e:32:72:d1:22:c2:23:2d:
e8:be:2e:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:41 2023 by rpki-client on console.sobornost.net