Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/bfd9cb-c222-43a1-a05b-144a763e25d7/1/tjghjt2JpCDlLlRJGorSjZev2bY.roa
File: tjghjt2JpCDlLlRJGorSjZev2bY.roa (raw, json)
Hash identifier: EzbOTl+qxrcKxaVdcV6N3ebNuSnsfewlwORkoh0nyVg=
Subject key identifier: B6:38:21:8E:DD:89:A4:20:E5:2E:54:49:1A:8A:D2:8D:97:AF:D9:B6
Certificate issuer: /CN=6dfa081c5ebd1749917d74876763152340609d68
Certificate serial: 78CAF0
Authority key identifier: 6D:FA:08:1C:5E:BD:17:49:91:7D:74:87:67:63:15:23:40:60:9D:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfoIHF69F0mRfXSHZ2MVI0BgnWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/bfd9cb-c222-43a1-a05b-144a763e25d7/1/tjghjt2JpCDlLlRJGorSjZev2bY.roa
Signing time: Sat 01 Jan 2022 00:52:19 +0000
ROA not before: Sat 01 Jan 2022 00:52:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 109.205.187.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7916272 (0x78caf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dfa081c5ebd1749917d74876763152340609d68
Validity
Not Before: Jan 1 00:52:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b638218edd89a420e52e54491a8ad28d97afd9b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:55:92:22:95:23:f3:43:35:b3:73:50:08:e2:
5c:da:c0:0b:a8:47:61:c9:e2:e7:d4:01:ef:67:ce:
b7:95:c4:d9:0d:ec:ad:fd:41:1e:d3:fe:80:fc:34:
e1:fa:e3:0b:1e:0d:1f:78:b0:6e:ce:de:01:0a:17:
09:aa:58:3a:37:f4:99:95:f7:73:dd:c7:25:24:01:
1d:80:65:f7:44:62:fa:7e:ab:ab:84:40:47:40:6d:
bb:e6:33:d0:38:a1:34:8b:7d:76:e9:62:cc:94:b2:
34:99:64:51:8e:da:04:3a:ce:24:7d:1d:4d:71:d6:
53:06:67:af:d3:c2:5e:96:82:72:14:b5:f6:b3:34:
b9:47:59:f4:c9:44:f3:bc:70:3b:c7:60:0d:00:ef:
c3:ed:a8:b1:e6:5f:90:07:a1:d8:2c:a6:3b:18:38:
51:0a:fd:b3:d3:ef:8e:db:01:ef:0b:12:95:f1:8b:
1c:a6:f4:d1:1e:b6:bf:da:e9:d8:15:c4:1e:a3:dc:
7a:93:7b:47:94:28:2f:64:ee:5c:fe:5f:d3:b8:44:
07:60:e8:cf:04:1f:93:fa:1c:ef:ce:aa:e2:f6:b2:
77:c2:c4:e0:f4:73:27:4a:a3:57:45:4b:f9:cb:1b:
9f:de:bb:a3:aa:a1:26:fa:14:8a:13:a9:f9:d2:01:
bb:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:38:21:8E:DD:89:A4:20:E5:2E:54:49:1A:8A:D2:8D:97:AF:D9:B6
X509v3 Authority Key Identifier:
keyid:6D:FA:08:1C:5E:BD:17:49:91:7D:74:87:67:63:15:23:40:60:9D:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfoIHF69F0mRfXSHZ2MVI0BgnWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bfd9cb-c222-43a1-a05b-144a763e25d7/1/tjghjt2JpCDlLlRJGorSjZev2bY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bfd9cb-c222-43a1-a05b-144a763e25d7/1/bfoIHF69F0mRfXSHZ2MVI0BgnWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.187.0/24
Signature Algorithm: sha256WithRSAEncryption
76:c6:c8:1c:a2:a8:ea:00:58:66:21:ee:8e:3f:8a:6d:58:1c:
31:66:09:40:05:ff:5e:71:69:27:ba:ba:cc:1f:af:c6:43:6b:
cf:fb:93:84:6b:4a:22:60:c7:60:cd:69:dd:47:f3:67:75:e7:
67:b6:6a:fc:3a:10:19:bd:21:0d:a2:42:b9:0a:b2:7a:dc:43:
7a:02:27:a8:ef:d0:e4:f2:f2:e8:13:a2:c9:79:16:3f:b2:79:
9a:e7:70:d0:c7:eb:94:20:25:86:0c:20:9c:7a:19:25:32:21:
86:67:69:e3:63:af:5e:34:a0:40:06:a7:fc:9e:83:9d:fa:54:
a6:f1:bd:ec:41:fb:4b:58:fc:ed:76:3e:d4:e5:58:cd:b1:44:
b3:4b:aa:bf:e2:ce:64:c1:8b:f4:37:db:4a:65:0d:6e:c9:fd:
d9:d1:35:fe:51:4d:92:d1:8c:bd:75:f0:60:cb:ce:e4:0c:06:
6a:2e:0e:d3:53:55:89:82:f1:f8:5f:a3:fa:fc:17:c0:73:56:
df:32:b9:19:b8:22:92:cb:71:88:9b:89:1a:73:2b:57:ec:0c:
c3:61:d2:0a:30:45:60:2c:fe:0f:5b:11:25:fa:93:97:2b:f2:
4d:59:1f:89:00:2c:e2:f0:fa:6c:34:ef:2f:0a:38:11:53:6d:
c1:ba:b9:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:27 2023 by rpki-client on console.sobornost.net