Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/986d6c-9a44-4ee1-921c-30bfed2a719c/1/JWmtpK4bA48e6tLWFhMfZk34e5M.roa
File: JWmtpK4bA48e6tLWFhMfZk34e5M.roa (raw, json)
Hash identifier: 4Q1Ct3gEe3aIXjnOvtonE57MQK7VZuyC8Y6eynCjH8Y=
Subject key identifier: 25:69:AD:A4:AE:1B:03:8F:1E:EA:D2:D6:16:13:1F:66:4D:F8:7B:93
Certificate issuer: /CN=ba051b540188f74aba19a90ab7b5dcc429d47a98
Certificate serial: 013AF27A
Authority key identifier: BA:05:1B:54:01:88:F7:4A:BA:19:A9:0A:B7:B5:DC:C4:29:D4:7A:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ugUbVAGI90q6GakKt7XcxCnUepg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/986d6c-9a44-4ee1-921c-30bfed2a719c/1/JWmtpK4bA48e6tLWFhMfZk34e5M.roa
Signing time: Sat 01 Jan 2022 02:57:20 +0000
ROA not before: Sat 01 Jan 2022 02:57:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9910
IP address blocks: 87.236.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20640378 (0x13af27a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba051b540188f74aba19a90ab7b5dcc429d47a98
Validity
Not Before: Jan 1 02:57:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2569ada4ae1b038f1eead2d616131f664df87b93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:55:18:59:79:ca:f0:a1:7c:a0:2a:55:9d:16:
39:b9:29:39:25:b9:51:46:d5:c2:c0:51:f2:b8:2e:
e5:b4:8e:c4:45:d9:92:6f:7c:08:18:b7:4f:e5:38:
4c:79:57:60:5d:99:47:b0:f4:33:49:d3:df:17:57:
42:23:c9:61:64:85:c4:25:a9:2f:d4:97:d4:04:6e:
09:51:a8:20:d3:34:b8:ae:1e:0b:41:61:b5:6d:54:
cd:da:2e:fc:a2:93:c8:cb:69:80:fc:46:56:43:29:
f3:c7:a5:fa:2f:90:5e:2d:ee:31:49:fa:fe:ec:29:
57:37:d1:42:60:1c:56:13:97:80:57:34:06:3c:ef:
eb:b8:1c:24:e1:a3:a0:46:91:cf:ce:2e:92:0e:a8:
1f:d3:7d:a3:47:08:e4:c6:c7:bb:62:7b:4c:39:7a:
f6:73:1f:22:7b:d9:3c:43:68:a4:3d:e4:09:45:32:
d8:cf:4d:ca:8b:80:f6:86:ce:5b:87:76:09:07:41:
ba:3f:41:6b:0e:f7:90:08:26:cb:2a:95:79:27:69:
0b:ae:a5:8f:8d:9b:ed:97:77:dd:b0:c1:9a:0f:1d:
6e:e2:19:fc:ae:ab:ce:dd:10:d2:a9:9b:5d:92:4b:
73:e8:0d:5c:df:0b:62:74:11:b4:f6:75:6b:2c:97:
d0:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:69:AD:A4:AE:1B:03:8F:1E:EA:D2:D6:16:13:1F:66:4D:F8:7B:93
X509v3 Authority Key Identifier:
keyid:BA:05:1B:54:01:88:F7:4A:BA:19:A9:0A:B7:B5:DC:C4:29:D4:7A:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ugUbVAGI90q6GakKt7XcxCnUepg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/986d6c-9a44-4ee1-921c-30bfed2a719c/1/JWmtpK4bA48e6tLWFhMfZk34e5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/986d6c-9a44-4ee1-921c-30bfed2a719c/1/ugUbVAGI90q6GakKt7XcxCnUepg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.236.166.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:1b:8e:8e:5a:54:80:37:ff:c3:6a:33:f1:d4:4a:d0:ca:eb:
1e:24:42:9c:bb:44:b1:18:8b:b1:18:76:03:a9:54:e4:66:0a:
31:06:07:2c:a3:d1:8b:39:96:64:52:11:ab:94:81:3c:9a:4c:
c4:80:38:0d:11:04:4a:be:ab:da:33:20:1e:5e:83:27:dc:40:
c5:86:4b:c9:97:b3:67:88:50:24:4a:9a:22:2d:47:b0:27:97:
48:cf:91:88:d6:cd:b7:b7:af:fe:80:03:f3:07:dc:e7:20:13:
36:02:d4:34:3e:8b:12:51:97:22:51:10:e8:55:51:d0:ac:bf:
62:1d:97:1a:87:38:42:04:75:3e:db:88:98:75:99:0e:c4:02:
d4:6b:d2:ef:92:c7:7a:22:aa:5f:3a:92:bd:52:82:aa:41:61:
72:76:a8:84:40:33:f7:de:31:0b:82:b0:40:1c:4b:f1:7a:47:
17:22:72:04:56:3c:0d:60:b1:98:cc:09:4e:f1:86:61:19:25:
8c:51:9e:2a:4f:95:6a:ad:33:1b:4f:e2:49:14:82:d0:bb:a6:
2a:2b:c3:ff:86:f2:e5:f1:5b:67:b8:30:42:0d:f5:0a:4f:a5:
ad:a6:26:45:aa:16:8e:00:92:60:7f:aa:43:34:98:b6:58:6c:
2f:3b:5c:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:39 2023 by rpki-client on console.sobornost.net