Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/ca31df-7c9c-44ef-9ddc-776915488225/1/i4vGEiWSxJcTShyp4xa9U-g0QkU.roa
File: i4vGEiWSxJcTShyp4xa9U-g0QkU.roa (raw, json)
Hash identifier: hQ/xZjXth+hacpfE7NWNsUTWqNGAAAFWZW+WzqkHg/I=
Subject key identifier: 8B:8B:C6:12:25:92:C4:97:13:4A:1C:A9:E3:16:BD:53:E8:34:42:45
Certificate issuer: /CN=bd1db5d728bd276b4c752e125a508ff8784ad285
Certificate serial: 01909289FA3C8EFD4E13847E7381939D7E9A
Authority key identifier: BD:1D:B5:D7:28:BD:27:6B:4C:75:2E:12:5A:50:8F:F8:78:4A:D2:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vR211yi9J2tMdS4SWlCP-HhK0oU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/ca31df-7c9c-44ef-9ddc-776915488225/1/i4vGEiWSxJcTShyp4xa9U-g0QkU.roa
Signing time: Mon 08 Jul 2024 13:30:34 +0000
ROA not before: Mon 08 Jul 2024 13:30:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41600
IP address blocks: 91.201.36.0/22 maxlen: 22
195.138.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:92:89:fa:3c:8e:fd:4e:13:84:7e:73:81:93:9d:7e:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd1db5d728bd276b4c752e125a508ff8784ad285
Validity
Not Before: Jul 8 13:30:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8b8bc6122592c497134a1ca9e316bd53e8344245
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6f:3c:df:b5:5b:88:94:26:fc:88:47:9d:05:
8c:cb:5d:f4:66:2b:0a:15:1f:8f:d7:32:99:2e:f8:
96:1f:76:37:71:42:fd:87:48:b9:63:ae:2e:0c:30:
6f:3a:0f:6b:b6:1f:d0:e2:6a:2d:32:d4:d9:9b:24:
75:d2:18:60:68:83:b3:6e:e9:0c:6d:e3:90:ea:42:
53:86:39:59:25:0e:39:ab:73:86:50:b4:c0:3b:5f:
07:fb:0f:9a:5b:30:33:4c:20:3c:32:50:22:2f:e1:
c7:02:7f:b7:1a:90:19:5a:0d:5d:2c:c0:34:e2:9b:
4e:2f:e6:40:df:f6:6f:c1:a9:69:1b:2c:ae:94:89:
79:84:f7:e9:e0:b9:ae:46:b1:b9:bd:e9:f3:62:36:
ea:0a:6b:52:aa:d4:72:ae:7d:22:68:57:ea:62:3d:
36:8d:d9:9d:ea:a6:81:0f:9a:6f:bf:e0:c0:8a:e7:
fd:1d:00:a5:e9:9a:0d:e1:95:ad:8c:ca:08:c0:49:
79:c5:10:15:40:b6:72:61:5f:fb:12:d0:48:d5:b5:
36:a8:03:47:3d:12:b9:41:fb:08:30:44:0d:fd:8a:
c5:6a:ef:7e:e2:e8:fa:fc:bc:54:8d:59:66:75:00:
c2:af:df:63:84:7b:bd:53:10:7d:2b:86:48:c9:ca:
fd:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:8B:C6:12:25:92:C4:97:13:4A:1C:A9:E3:16:BD:53:E8:34:42:45
X509v3 Authority Key Identifier:
keyid:BD:1D:B5:D7:28:BD:27:6B:4C:75:2E:12:5A:50:8F:F8:78:4A:D2:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vR211yi9J2tMdS4SWlCP-HhK0oU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/ca31df-7c9c-44ef-9ddc-776915488225/1/i4vGEiWSxJcTShyp4xa9U-g0QkU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/ca31df-7c9c-44ef-9ddc-776915488225/1/vR211yi9J2tMdS4SWlCP-HhK0oU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.201.36.0/22
195.138.218.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:4b:6f:5f:de:1c:d8:de:e3:84:b6:4d:35:0e:53:2a:1d:16:
c5:68:f4:fd:55:80:d1:ec:f4:24:f9:af:c0:9b:26:63:78:60:
63:65:c6:07:9a:d1:21:92:28:e1:63:f2:91:ee:62:19:b8:ca:
95:f2:d1:b5:db:ff:b4:d4:ba:be:20:cd:2a:d9:e1:c0:9c:a8:
7b:ca:56:cc:90:69:55:46:a5:f7:32:a4:c1:c4:de:d6:bd:04:
87:2c:bd:dd:f9:c7:b1:a6:e7:4e:b6:e6:6a:f0:57:03:1f:ea:
80:88:19:74:a1:bb:c3:67:a8:de:e5:8d:41:02:03:8a:71:9b:
59:c4:78:66:09:e9:02:33:f0:97:d4:30:ae:42:11:a8:71:8f:
8d:59:d5:e0:c9:f5:23:58:e6:63:1a:48:b0:ec:09:8f:f7:84:
fc:f9:f7:be:60:d7:b0:bc:ca:b2:98:19:6f:0e:42:a8:30:e4:
01:0a:d0:20:51:23:dc:d4:cd:75:56:76:e6:dd:97:b5:8a:db:
2a:c4:92:c3:57:ad:3f:f7:24:8e:9a:4f:92:bc:ec:ea:10:62:
49:bf:b4:a5:78:ce:f3:c8:7a:f5:a5:ba:7e:18:61:7e:04:49:
eb:f1:10:c3:5f:8d:c3:c5:81:5a:c2:74:d9:ce:c8:bc:fb:a8:
dd:f0:be:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:49 2024 by rpki-client on console.sobornost.net