Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3b433e-4c88-43f2-8bf2-2468836f154b/1/6qI_5XPEOEo7aCZxV8QdrkazQYU.roa
File: 6qI_5XPEOEo7aCZxV8QdrkazQYU.roa (raw, json)
Hash identifier: nAZV57OY5Tt727ECpw6VrBHSz3HCYEG4DseUfA3X7gk=
Subject key identifier: EA:A2:3F:E5:73:C4:38:4A:3B:68:26:71:57:C4:1D:AE:46:B3:41:85
Certificate issuer: /CN=0c16bb527a52859e0f69b88d2fedede1bde9ff2d
Certificate serial: 018CC56E0A189F33F76F09C8BFE9161F796F
Authority key identifier: 0C:16:BB:52:7A:52:85:9E:0F:69:B8:8D:2F:ED:ED:E1:BD:E9:FF:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DBa7UnpShZ4PabiNL-3t4b3p_y0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3b433e-4c88-43f2-8bf2-2468836f154b/1/6qI_5XPEOEo7aCZxV8QdrkazQYU.roa
Signing time: Mon 01 Jan 2024 14:29:32 +0000
ROA not before: Mon 01 Jan 2024 14:29:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 63018
IP address blocks: 193.105.95.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:0a:18:9f:33:f7:6f:09:c8:bf:e9:16:1f:79:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c16bb527a52859e0f69b88d2fedede1bde9ff2d
Validity
Not Before: Jan 1 14:29:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eaa23fe573c4384a3b68267157c41dae46b34185
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:bb:a3:ba:1b:8d:71:b6:1b:a8:06:04:c1:37:
97:9a:6f:bc:27:c0:bb:fa:dd:23:5c:04:a5:0f:48:
86:51:22:30:30:72:fc:85:72:eb:1d:e2:fb:7b:d4:
1e:79:95:7b:67:a2:77:46:de:79:b5:9f:a6:85:0f:
9a:bf:7d:9a:86:7f:48:c9:7f:83:32:b5:f4:50:32:
4a:54:31:de:03:e5:72:04:2f:ce:e5:a0:f5:0e:0e:
e7:c5:a0:b0:a3:ba:70:fa:79:76:16:3c:0a:16:6b:
fc:be:d9:25:ba:71:28:1b:cd:a3:17:f6:23:ea:39:
33:01:6d:ea:92:f9:a1:ce:1a:cf:ad:b1:8f:ca:72:
6f:f0:16:c4:d5:20:68:fc:26:a9:f3:6e:57:3c:be:
6b:e4:ca:88:a4:ce:8d:0a:56:6d:c9:a0:3f:1d:d7:
19:0a:ae:c5:dd:03:4e:a3:2c:8c:13:89:32:67:e6:
3f:2f:d5:4b:a9:ee:f6:cd:46:0c:67:ab:cf:54:7e:
e4:fc:82:cb:08:bd:3d:b9:06:be:a8:fd:68:3b:2e:
39:8b:03:d7:4a:4b:7a:48:b1:1b:f4:de:5c:1f:2d:
c6:21:a2:0f:34:19:93:ea:5e:36:29:41:c1:aa:6c:
ac:59:2f:d4:94:f9:97:e4:ad:31:35:b5:cd:15:87:
c6:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:A2:3F:E5:73:C4:38:4A:3B:68:26:71:57:C4:1D:AE:46:B3:41:85
X509v3 Authority Key Identifier:
keyid:0C:16:BB:52:7A:52:85:9E:0F:69:B8:8D:2F:ED:ED:E1:BD:E9:FF:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DBa7UnpShZ4PabiNL-3t4b3p_y0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3b433e-4c88-43f2-8bf2-2468836f154b/1/6qI_5XPEOEo7aCZxV8QdrkazQYU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3b433e-4c88-43f2-8bf2-2468836f154b/1/DBa7UnpShZ4PabiNL-3t4b3p_y0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.95.0/24
Signature Algorithm: sha256WithRSAEncryption
14:08:81:9f:39:cd:8c:ed:53:8a:85:56:3a:85:e8:a1:94:da:
ac:bb:f6:f6:67:76:0e:d5:41:2d:d1:bd:e4:6a:c0:4e:d1:81:
10:f8:d5:de:76:e3:eb:5e:39:f4:d3:ef:c9:a2:e5:58:73:4a:
cf:62:23:4f:af:94:bd:d9:5e:96:26:b7:39:3d:a3:dd:ac:4f:
73:0d:71:2f:5b:f9:4f:9b:3b:9e:29:3b:dd:69:2a:bf:c8:ff:
7b:5d:d2:77:8e:33:57:48:a5:47:ad:e0:92:55:f2:33:d8:06:
cc:42:8a:1b:a7:ef:7e:2f:4d:77:2b:1a:79:23:04:34:32:dd:
e5:f6:26:e8:c2:e6:5a:ed:40:82:96:e0:9d:20:13:22:fd:ff:
3c:69:cb:57:41:a2:5d:6a:95:a5:e7:28:f1:be:77:05:70:e0:
cb:6b:99:3b:b3:cf:e1:88:94:3d:d2:74:d4:22:c2:8a:be:07:
86:37:49:bb:ef:74:b4:aa:2b:28:8a:24:a6:b5:3f:fa:f2:f6:
c0:1c:c3:c1:89:d7:84:36:15:e4:99:1a:d4:a2:28:96:48:79:
5a:ff:46:c2:d5:4b:84:16:87:a4:2e:73:79:59:85:74:c7:b6:
3d:94:58:37:7e:3a:54:45:29:13:e3:1b:3c:ab:23:7e:03:01:
2e:86:1c:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 21 18:46:37 2024 by rpki-client on console.sobornost.net