Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3b433e-4c88-43f2-8bf2-2468836f154b/1/yR4ZhdPnFjVIh_9AgyDbt2SkLjc.roa
File: yR4ZhdPnFjVIh_9AgyDbt2SkLjc.roa (raw, json)
Hash identifier: 6J0jqgaZZsy0CQDg73orlMyZafvvzqix5gKt6+WQQYk=
Subject key identifier: C9:1E:19:85:D3:E7:16:35:48:87:FF:40:83:20:DB:B7:64:A4:2E:37
Certificate issuer: /CN=0c16bb527a52859e0f69b88d2fedede1bde9ff2d
Certificate serial: 018CC56E0A3DF79E6A22D5CB343F54D5D818
Authority key identifier: 0C:16:BB:52:7A:52:85:9E:0F:69:B8:8D:2F:ED:ED:E1:BD:E9:FF:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DBa7UnpShZ4PabiNL-3t4b3p_y0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3b433e-4c88-43f2-8bf2-2468836f154b/1/yR4ZhdPnFjVIh_9AgyDbt2SkLjc.roa
Signing time: Mon 01 Jan 2024 14:29:32 +0000
ROA not before: Mon 01 Jan 2024 14:29:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201106
IP address blocks: 193.105.95.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:0a:3d:f7:9e:6a:22:d5:cb:34:3f:54:d5:d8:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c16bb527a52859e0f69b88d2fedede1bde9ff2d
Validity
Not Before: Jan 1 14:29:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c91e1985d3e716354887ff408320dbb764a42e37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:2a:b4:35:ec:23:36:44:31:d0:84:8b:46:5a:
ac:ab:a3:4f:2a:1a:3f:34:e1:2e:dd:f2:d4:de:8c:
cf:b6:83:50:98:4e:a1:56:6f:07:36:c3:09:95:72:
b0:90:2c:84:c0:6b:79:80:da:34:31:9b:21:8b:55:
a0:22:30:32:f7:fa:c8:93:b4:77:c1:8a:11:95:f7:
19:28:fb:0f:dd:51:4d:54:4f:78:08:82:38:c6:39:
31:e2:f8:f8:b3:59:90:67:72:20:0c:d3:e5:dc:db:
bb:e5:08:44:a1:94:31:14:0f:87:e7:a6:7c:f7:c2:
5d:5c:ac:3f:d8:6f:46:3c:e3:3c:09:55:50:25:03:
33:04:4a:68:ee:de:ff:3c:c7:d8:b1:c7:d7:fa:fe:
c1:8e:1c:29:fe:55:60:55:00:09:1d:1b:a3:91:9e:
74:25:3c:18:85:04:08:68:3e:5f:e6:bd:5a:0a:8e:
93:2e:7e:81:c6:93:2e:fc:86:9b:60:c5:3d:55:0f:
bb:5b:28:7f:0b:eb:71:13:93:3b:42:70:15:eb:95:
ea:16:65:a0:7d:86:56:0d:60:b3:fd:db:fe:15:1a:
4a:6d:8a:a5:f4:77:0f:ec:ed:54:5e:2b:67:f9:cb:
7c:95:9c:ef:55:de:45:f0:ef:44:e4:5a:a5:f0:7e:
52:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:1E:19:85:D3:E7:16:35:48:87:FF:40:83:20:DB:B7:64:A4:2E:37
X509v3 Authority Key Identifier:
keyid:0C:16:BB:52:7A:52:85:9E:0F:69:B8:8D:2F:ED:ED:E1:BD:E9:FF:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DBa7UnpShZ4PabiNL-3t4b3p_y0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3b433e-4c88-43f2-8bf2-2468836f154b/1/yR4ZhdPnFjVIh_9AgyDbt2SkLjc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3b433e-4c88-43f2-8bf2-2468836f154b/1/DBa7UnpShZ4PabiNL-3t4b3p_y0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.95.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:df:d9:62:62:e8:97:62:27:d5:ab:29:34:01:9d:5d:17:5e:
7b:84:5e:ac:4b:27:65:33:f0:18:51:4d:5e:e4:3a:f2:dd:f0:
e1:eb:82:9f:19:76:7e:eb:88:9c:e5:0e:cd:cc:af:18:9e:8b:
cb:5d:93:2f:51:39:62:5f:08:97:f6:9d:fe:42:1c:ac:5b:f2:
d7:9d:e0:44:61:1a:40:80:95:1c:31:12:4c:64:a1:4d:b0:b7:
61:23:c2:c6:dc:5e:70:77:83:a2:d7:33:0f:d4:78:0c:e5:8e:
29:9e:9d:f2:93:bc:1e:1d:c9:72:d4:e7:5e:28:59:49:e0:da:
01:28:ac:e2:19:7a:1a:eb:40:09:6b:f2:f1:58:98:e6:a9:20:
2f:62:4f:01:d1:35:7c:b3:82:fd:45:c9:46:76:b9:e4:82:b6:
51:df:f8:84:aa:c1:55:d9:e5:86:07:7d:c2:62:bc:3f:21:e6:
62:1f:1f:dc:39:d8:ac:0b:6c:f2:7c:9b:19:8e:17:ae:38:fb:
ed:e7:5c:f5:3b:4f:b4:29:a3:25:81:d4:35:0f:e4:b3:5f:55:
8e:23:f5:f2:47:3e:11:8b:3a:a9:14:84:f8:f2:9c:c4:e5:74:
0e:77:36:d8:3d:50:f7:a3:de:a4:bd:10:4b:1a:09:55:8e:89:
76:da:93:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 21 18:46:37 2024 by rpki-client on console.sobornost.net