Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/7e90ac-90cf-4523-8f97-31660c22d19e/1/1-AtiHWXhUFKsPjrrSu_3se2X5Ss.roa
File: 1-AtiHWXhUFKsPjrrSu_3se2X5Ss.roa (raw, json)
Hash identifier: znWE/7GzHeQEEqxGZlgd1rO/0NpvWVl72hgbWvIHNtY=
Subject key identifier: F8:0B:62:1D:65:E1:50:52:AC:3E:3A:EB:4A:EF:F7:B1:ED:97:E5:2B
Certificate issuer: /CN=cb4d83a67fb35af88de83c1304c6743a51531361
Certificate serial: 0191BEC4536A44398CB37A1A29979A8F1DD0
Authority key identifier: CB:4D:83:A6:7F:B3:5A:F8:8D:E8:3C:13:04:C6:74:3A:51:53:13:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y02Dpn-zWviN6DwTBMZ0OlFTE2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/7e90ac-90cf-4523-8f97-31660c22d19e/1/1-AtiHWXhUFKsPjrrSu_3se2X5Ss.roa
Signing time: Wed 04 Sep 2024 20:40:23 +0000
ROA not before: Wed 04 Sep 2024 20:40:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202220
IP address blocks: 176.97.51.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:be:c4:53:6a:44:39:8c:b3:7a:1a:29:97:9a:8f:1d:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb4d83a67fb35af88de83c1304c6743a51531361
Validity
Not Before: Sep 4 20:40:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f80b621d65e15052ac3e3aeb4aeff7b1ed97e52b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:7c:8f:58:c4:f1:50:2a:8b:59:e5:58:7c:85:
eb:0d:81:c7:13:93:e5:ba:87:fd:90:cf:43:d2:ff:
ac:ee:f6:b0:95:a5:8d:b3:dc:45:f7:2b:05:fd:27:
19:06:1b:ca:43:df:67:c5:bf:c3:f0:d6:db:70:50:
2c:ef:d1:d4:5b:13:fe:7b:c6:64:36:a4:b6:40:f0:
f7:cb:d5:2c:34:7d:5e:61:9f:2b:85:dd:4c:92:21:
f9:5d:01:67:1a:e4:a2:cd:90:d9:ef:d1:76:b4:0c:
29:70:cd:db:ac:ae:30:e8:8b:91:f6:76:65:64:c7:
1f:17:a7:e9:9f:34:d4:3f:c2:9f:ef:1b:bd:45:ed:
f9:95:1b:35:94:91:32:3d:ee:76:d1:3f:aa:47:1d:
62:08:13:54:9a:d2:c9:06:16:b5:a5:e1:84:65:0f:
d6:0f:2a:a7:bc:4f:5b:3b:3a:df:61:e4:12:01:cb:
8f:86:c5:b9:47:44:ea:c1:8d:dd:7c:aa:3c:d3:68:
1a:96:b8:17:7a:59:4c:6b:32:0c:c1:7c:12:8b:cb:
00:c8:ba:ad:46:ea:f6:0f:8c:d4:3c:30:5d:a1:5e:
6a:c1:87:77:9f:8a:c6:98:10:83:ca:34:c7:9e:5b:
a6:4e:9e:bc:38:72:d1:32:c7:17:94:c5:c5:84:7b:
62:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:0B:62:1D:65:E1:50:52:AC:3E:3A:EB:4A:EF:F7:B1:ED:97:E5:2B
X509v3 Authority Key Identifier:
keyid:CB:4D:83:A6:7F:B3:5A:F8:8D:E8:3C:13:04:C6:74:3A:51:53:13:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y02Dpn-zWviN6DwTBMZ0OlFTE2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/7e90ac-90cf-4523-8f97-31660c22d19e/1/1-AtiHWXhUFKsPjrrSu_3se2X5Ss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/7e90ac-90cf-4523-8f97-31660c22d19e/1/y02Dpn-zWviN6DwTBMZ0OlFTE2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.51.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:48:d3:8c:cb:3d:56:ca:e1:ab:cf:7a:8e:ed:2b:77:c7:d2:
ba:b8:fe:1b:f2:bb:9e:ab:0c:b6:c3:a1:25:a9:f1:05:35:07:
27:93:5b:2d:fa:fc:08:77:b2:f2:47:e9:27:6a:62:8f:a9:09:
ae:2a:93:31:6f:f3:56:4c:f3:88:d1:5e:19:e1:cd:20:2c:b5:
20:b2:be:bd:d9:70:dc:fd:3a:78:03:b0:80:24:e0:d4:3d:fc:
5e:40:42:fb:5b:67:46:66:c5:51:41:49:4b:03:72:72:35:db:
e6:cd:dd:3b:30:f5:b4:ba:8f:f1:c9:a3:a6:4e:14:35:79:6e:
a8:ee:2f:fc:e0:b7:ab:c0:87:a2:b1:12:60:e5:4d:00:4e:93:
d0:c5:fc:b9:54:4d:3c:1a:85:e2:29:90:8b:7f:3f:ab:9b:8c:
f0:1c:56:77:99:f0:7c:c3:a8:e7:75:f1:d4:02:c0:0a:06:71:
74:9c:e0:48:e9:3d:de:36:1d:3a:47:bd:63:36:e9:ff:19:47:
15:dc:67:97:cf:97:f1:b6:c6:d6:ec:6c:13:6e:60:e6:c3:7a:
5b:91:41:12:e9:05:c0:75:a7:60:44:16:30:f4:e8:d1:2b:7f:
cb:99:71:c9:94:31:6c:42:9c:9d:b0:00:42:ff:98:4a:2b:0c:
85:31:29:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:58 2024 by rpki-client on console.sobornost.net