Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/MnzNvorvQxmB5qwxh7T7SEyeEfQ.roa
File: MnzNvorvQxmB5qwxh7T7SEyeEfQ.roa (raw, json)
Hash identifier: x9Ce4rrjnVNrFwyjIBkoe57RJT6xRSC1yj8z4nqdga8=
Subject key identifier: 32:7C:CD:BE:8A:EF:43:19:81:E6:AC:31:87:B4:FB:48:4C:9E:11:F4
Certificate issuer: /CN=23259da3b1b38ca0939f490fb9043fcd89cfd062
Certificate serial: 0193B530EC40F8BE082647A2CE7D235A9666
Authority key identifier: 23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/MnzNvorvQxmB5qwxh7T7SEyeEfQ.roa
Signing time: Wed 11 Dec 2024 10:08:22 +0000
ROA not before: Wed 11 Dec 2024 10:08:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201654
IP address blocks: 185.67.188.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b5:30:ec:40:f8:be:08:26:47:a2:ce:7d:23:5a:96:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23259da3b1b38ca0939f490fb9043fcd89cfd062
Validity
Not Before: Dec 11 10:08:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=327ccdbe8aef431981e6ac3187b4fb484c9e11f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9d:31:06:25:76:94:9c:14:3c:14:95:cd:4b:
9b:de:b9:99:13:8a:42:1f:64:8f:b6:9b:bf:48:0f:
34:ff:d8:52:10:8b:0f:2e:87:73:7b:f6:dd:62:a8:
ee:17:de:62:85:de:09:95:90:28:04:ad:53:0c:c6:
57:f4:02:77:c3:8f:d4:4e:ef:8c:36:5f:8d:2e:5b:
86:01:c4:f4:f8:70:17:fd:63:0a:5d:76:15:89:db:
9d:bd:1e:67:04:b9:ca:27:81:a0:b9:32:9e:84:8e:
0f:30:e3:c9:2e:2e:d7:30:b5:cb:08:4a:99:25:d3:
6a:72:79:bd:14:c3:91:a3:95:3b:ee:b2:71:a4:92:
3a:8b:7e:60:b2:0b:84:a3:02:a0:6b:e8:89:f0:bd:
a7:f9:13:c4:2e:9c:2a:e7:c7:5c:f1:14:b2:1e:99:
26:be:ce:39:77:b5:6f:a0:90:9f:e0:c3:c8:8e:ae:
c0:c1:82:b9:0b:45:51:32:91:c6:e7:67:85:2d:77:
63:db:3e:9d:f9:c6:e4:df:fc:12:e4:24:05:87:e0:
53:e0:91:5a:53:bc:f3:19:31:8a:47:71:64:92:4e:
c0:33:82:a1:b5:7f:70:32:59:ad:d8:67:e9:0a:b8:
63:70:f8:d9:7b:ba:50:ae:44:a5:ff:c0:f7:76:e0:
ce:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:7C:CD:BE:8A:EF:43:19:81:E6:AC:31:87:B4:FB:48:4C:9E:11:F4
X509v3 Authority Key Identifier:
keyid:23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/MnzNvorvQxmB5qwxh7T7SEyeEfQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.67.188.0/22
Signature Algorithm: sha256WithRSAEncryption
22:54:b7:a7:fe:f1:a1:03:a6:50:4e:ff:ad:62:3e:9a:87:1d:
10:3b:78:7a:16:fe:b2:18:5a:10:d9:5e:53:09:22:e6:fe:2b:
ec:ce:8e:64:aa:69:68:15:2d:fc:43:a4:a8:97:61:c0:72:4d:
39:16:48:bd:03:e6:13:6a:c2:97:3d:27:49:e2:d0:ac:4e:46:
1a:72:55:67:cb:a2:38:5a:4a:05:72:54:9d:09:61:0c:f2:68:
b4:e8:12:81:aa:f2:d6:2e:31:1b:dc:2e:a1:dc:b9:cb:69:eb:
85:85:14:27:ba:62:15:04:c7:f9:2a:43:04:56:1b:95:01:8a:
48:70:85:e4:75:a4:3b:3c:11:b8:ff:84:bc:8b:5a:25:4a:ce:
53:a7:39:53:f0:98:66:9c:66:54:65:1f:b8:4e:cf:fe:7b:38:
79:ca:3b:11:b8:6a:0e:f2:45:53:92:09:c7:16:b8:2c:ca:e0:
cf:3f:90:e2:f3:41:8f:41:a7:c3:9b:e6:46:23:ae:9e:85:1e:
d9:17:17:ee:75:ba:0e:ec:08:8c:d1:bc:4a:4d:3f:44:e4:0a:
64:c7:56:44:79:37:65:e3:41:17:82:b4:62:b9:cc:1a:18:48:
7e:b5:35:e3:1e:67:65:50:88:7d:35:31:f9:b2:fb:41:d0:eb:
31:9e:ca:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:54 2024 by rpki-client on console.sobornost.net