Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/57b216-ee54-4306-9d16-4ff3b79579b4/1/yioRx5hnaUL9Ztu8ngKDipWpBNo.roa
File: yioRx5hnaUL9Ztu8ngKDipWpBNo.roa (raw, json)
Hash identifier: Zb2g9eHOeShVCFH2IccJoaxIJros9U0w7U6v8xmXNZk=
Subject key identifier: CA:2A:11:C7:98:67:69:42:FD:66:DB:BC:9E:02:83:8A:95:A9:04:DA
Certificate issuer: /CN=43024627b16e9cf8537f573085db454cf8cee6fe
Certificate serial: 07392838
Authority key identifier: 43:02:46:27:B1:6E:9C:F8:53:7F:57:30:85:DB:45:4C:F8:CE:E6:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwJGJ7FunPhTf1cwhdtFTPjO5v4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/57b216-ee54-4306-9d16-4ff3b79579b4/1/yioRx5hnaUL9Ztu8ngKDipWpBNo.roa
Signing time: Sat 01 Jan 2022 12:54:37 +0000
ROA not before: Sat 01 Jan 2022 12:54:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3214
IP address blocks: 91.193.75.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121186360 (0x7392838)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43024627b16e9cf8537f573085db454cf8cee6fe
Validity
Not Before: Jan 1 12:54:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca2a11c798676942fd66dbbc9e02838a95a904da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:24:19:31:3c:a5:e5:81:5f:ae:21:6f:a7:9c:
67:df:42:3c:52:fe:af:0c:9b:d9:3e:bb:61:ce:ee:
da:87:5a:e0:3f:ba:c7:24:fc:c3:1d:49:5b:c9:2d:
3d:60:5a:5d:cc:0a:b5:9c:16:33:12:a0:cf:28:34:
47:e3:b2:f3:d5:98:3b:a0:98:34:3f:7e:70:0b:86:
25:f8:c2:24:72:bd:70:10:be:18:ff:95:dd:3f:03:
0d:ac:09:57:5f:b0:e3:f3:0b:ac:02:ef:64:8a:4b:
9f:0f:7c:21:cf:a5:67:47:6b:97:74:5a:1d:61:ba:
8f:47:af:e6:35:48:9a:d9:c7:f6:0e:8b:85:9f:29:
fe:65:91:c2:e8:9d:77:b8:dc:82:27:11:de:59:ad:
c4:1c:ce:f8:05:62:85:ed:d4:8d:58:39:fc:f3:13:
22:64:04:7f:27:9f:49:5b:97:8c:4d:2c:39:9a:d4:
a4:9c:a1:58:9f:ab:2b:75:a9:c8:80:c7:27:0b:63:
41:44:ee:a9:f7:da:15:ba:36:44:d8:6a:4e:51:f9:
71:ff:a8:56:fd:7a:23:5d:e4:93:99:03:44:7d:97:
0c:53:96:c1:1a:97:00:42:92:a7:b7:87:0b:ce:c8:
b7:15:c9:08:ff:03:3b:a9:69:88:c0:1e:ff:cd:f3:
5a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:2A:11:C7:98:67:69:42:FD:66:DB:BC:9E:02:83:8A:95:A9:04:DA
X509v3 Authority Key Identifier:
keyid:43:02:46:27:B1:6E:9C:F8:53:7F:57:30:85:DB:45:4C:F8:CE:E6:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwJGJ7FunPhTf1cwhdtFTPjO5v4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/57b216-ee54-4306-9d16-4ff3b79579b4/1/yioRx5hnaUL9Ztu8ngKDipWpBNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/57b216-ee54-4306-9d16-4ff3b79579b4/1/QwJGJ7FunPhTf1cwhdtFTPjO5v4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.193.75.0/24
Signature Algorithm: sha256WithRSAEncryption
49:aa:ae:28:8c:b0:79:e2:af:b5:df:b3:54:56:e5:34:f4:b8:
91:4d:16:8f:cc:d6:f8:f0:b9:74:74:87:b7:c3:da:d6:e6:e2:
c6:03:f7:36:49:6b:d6:76:3b:72:83:6d:10:24:73:9d:64:12:
94:3a:cd:51:17:e5:da:92:ed:5f:ec:47:55:07:70:b2:d6:ed:
f7:c5:ec:8d:3c:ce:d4:1f:e0:67:05:c1:af:06:7d:1c:cb:49:
71:65:91:bf:57:c8:3f:1f:d7:3d:64:b7:15:2e:62:61:8b:0a:
41:93:5d:4c:71:a2:48:68:2f:94:f2:f2:86:e1:c0:dd:f3:1a:
29:fd:9b:2b:5b:f1:64:9f:c0:ff:40:c5:9a:02:ce:f7:3d:72:
b2:65:b7:32:dd:5c:a1:93:94:11:4b:5c:8a:71:31:ca:47:76:
13:19:04:a0:b9:6a:60:47:2d:8a:8d:4e:c7:13:d0:c6:c5:c8:
e8:96:90:02:e7:91:5c:31:82:1a:1a:1f:a4:64:6d:73:c5:95:
40:6e:e4:7c:22:ca:9b:3b:f0:b4:24:52:16:83:dc:b4:b0:65:
41:24:55:b9:0a:87:4f:18:50:b4:fd:06:b7:d7:9e:ba:bc:5f:
53:4d:bd:85:71:72:f8:82:aa:17:39:61:dd:ed:bd:56:60:7c:
57:4e:28:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:25 2023 by rpki-client on console.sobornost.net