Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/bfd9cb-c222-43a1-a05b-144a763e25d7/1/yAFdlmGtg--r06pkYT0ZmUbGEKE.roa
File: yAFdlmGtg--r06pkYT0ZmUbGEKE.roa (raw, json)
Hash identifier: Y0Fu3FRCQev4cazMcxaalsUQfMxvEwQgFfho9t4zOog=
Subject key identifier: C8:01:5D:96:61:AD:83:EF:AB:D3:AA:64:61:3D:19:99:46:C6:10:A1
Certificate issuer: /CN=6dfa081c5ebd1749917d74876763152340609d68
Certificate serial: 01870E99B3B576AA85CBAFB6AA229E3C433D
Authority key identifier: 6D:FA:08:1C:5E:BD:17:49:91:7D:74:87:67:63:15:23:40:60:9D:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfoIHF69F0mRfXSHZ2MVI0BgnWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/bfd9cb-c222-43a1-a05b-144a763e25d7/1/yAFdlmGtg--r06pkYT0ZmUbGEKE.roa
Signing time: Thu 23 Mar 2023 13:12:46 +0000
ROA not before: Thu 23 Mar 2023 13:12:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213373
IP address blocks: 109.205.187.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:0e:99:b3:b5:76:aa:85:cb:af:b6:aa:22:9e:3c:43:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dfa081c5ebd1749917d74876763152340609d68
Validity
Not Before: Mar 23 13:12:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c8015d9661ad83efabd3aa64613d199946c610a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:4a:0f:26:f0:51:dc:e9:e8:10:9f:28:7d:44:
f9:45:35:6b:f3:c7:41:65:26:91:88:a9:7d:71:4d:
a6:f4:7c:91:4a:ca:71:41:4d:c6:41:ec:74:97:85:
3d:d2:08:a8:86:e5:a5:c7:51:3c:7d:69:bc:10:45:
76:be:8f:4d:bc:55:34:89:b8:3b:56:87:68:ac:a8:
f4:93:bc:d9:a5:aa:cf:25:5f:81:56:5a:10:30:90:
0f:bc:dd:2e:c5:b3:77:08:e7:9a:18:fb:0a:bb:90:
e2:e2:3b:c6:d3:53:97:57:03:eb:4e:fd:f4:2f:21:
4c:83:1f:44:41:f5:ea:f1:db:50:e5:cc:d9:5c:72:
cd:6d:d4:40:f0:db:2c:6d:88:8e:a8:72:e6:c1:a2:
c8:ec:1e:da:70:31:38:82:80:30:c3:5e:97:26:45:
d5:b1:c7:16:79:cc:43:75:34:9f:a1:b5:10:6a:78:
53:1d:1b:51:a3:5d:4c:c4:0b:68:09:6d:ec:49:35:
81:97:07:06:4d:b5:1f:21:8a:98:fb:f1:5e:73:9f:
23:fb:70:45:8c:fc:08:f1:f6:17:9e:e2:01:49:39:
30:f4:86:82:13:17:21:15:52:be:6e:83:ab:10:64:
ea:ba:2c:6a:ce:1c:1c:17:ea:10:8d:fb:0e:d1:34:
39:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:01:5D:96:61:AD:83:EF:AB:D3:AA:64:61:3D:19:99:46:C6:10:A1
X509v3 Authority Key Identifier:
keyid:6D:FA:08:1C:5E:BD:17:49:91:7D:74:87:67:63:15:23:40:60:9D:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfoIHF69F0mRfXSHZ2MVI0BgnWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bfd9cb-c222-43a1-a05b-144a763e25d7/1/yAFdlmGtg--r06pkYT0ZmUbGEKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bfd9cb-c222-43a1-a05b-144a763e25d7/1/bfoIHF69F0mRfXSHZ2MVI0BgnWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.187.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:4a:19:fe:75:66:96:ae:49:61:8c:3a:da:81:fb:3b:11:11:
5c:b5:66:ff:1c:ae:24:8f:27:89:0a:1e:7f:21:1e:51:35:34:
9f:d2:7b:df:54:ad:84:f8:82:1d:65:ea:a7:42:6c:c9:b2:73:
54:95:01:b9:79:c1:9f:e8:e6:33:71:7f:93:dd:73:c6:4a:82:
69:14:99:4d:3a:a4:ee:a7:bf:f3:08:68:05:03:7e:13:7a:a5:
82:cb:4a:06:6b:f8:0d:63:21:3f:e3:ca:32:5a:82:6e:f9:79:
5c:cb:2d:ac:ba:fa:f8:38:df:1b:40:c3:b8:27:c2:23:08:c0:
da:c0:c5:64:5d:13:98:e2:fd:0d:a5:2d:7b:17:99:c3:a0:49:
e2:20:f9:26:32:c9:59:31:69:4a:4d:b5:5f:76:5a:0c:55:2c:
50:e1:66:50:7a:30:d0:f7:a8:bd:40:35:14:2d:44:77:0e:3e:
63:44:f6:57:37:ec:1e:2f:30:92:d3:e0:90:b6:60:4d:51:c6:
48:4b:ac:9b:ac:7b:ae:95:d7:1b:de:0b:79:48:22:06:02:2c:
c6:1a:ec:44:00:5c:03:40:15:d4:ed:6d:9f:a6:af:e7:e0:78:
42:1f:f7:52:0f:b1:28:65:17:e1:0a:65:70:f6:47:fa:24:8c:
41:f2:5b:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:27 2023 by rpki-client on console.sobornost.net