Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/95c3d1-d7fa-49eb-8db6-e2608343a6c4/1/jzNF_ig6x3uvVssNhUYY0CgEGgs.roa
File: jzNF_ig6x3uvVssNhUYY0CgEGgs.roa (raw, json)
Hash identifier: 9iBcjvBmMoDLEN5pfaN6l2YJvpzDEOX4DnDtzSPnzzY=
Subject key identifier: 8F:33:45:FE:28:3A:C7:7B:AF:56:CB:0D:85:46:18:D0:28:04:1A:0B
Certificate issuer: /CN=5a9184ec4204901e6de244360d0ad417403622cb
Certificate serial: 0995D4E8
Authority key identifier: 5A:91:84:EC:42:04:90:1E:6D:E2:44:36:0D:0A:D4:17:40:36:22:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WpGE7EIEkB5t4kQ2DQrUF0A2Iss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/95c3d1-d7fa-49eb-8db6-e2608343a6c4/1/jzNF_ig6x3uvVssNhUYY0CgEGgs.roa
Signing time: Sat 01 Jan 2022 10:00:56 +0000
ROA not before: Sat 01 Jan 2022 10:00:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206894
IP address blocks: 185.215.96.0/22 maxlen: 22
2a0b:a840::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160814312 (0x995d4e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a9184ec4204901e6de244360d0ad417403622cb
Validity
Not Before: Jan 1 10:00:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f3345fe283ac77baf56cb0d854618d028041a0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:30:f0:17:15:9f:5f:48:ca:44:99:69:4f:15:
bb:ea:85:a2:31:1f:da:79:8f:84:7f:05:d1:6e:39:
68:fc:60:ce:72:78:aa:bd:4e:c8:64:6f:3d:8a:0b:
a3:6b:a8:0a:86:d7:3c:77:bc:18:11:a1:cb:ee:08:
3c:61:da:f3:60:f0:6c:90:70:33:c2:43:0c:61:e4:
23:49:2f:ba:7c:6b:7b:00:6d:8d:07:17:83:f3:46:
ef:4d:f0:80:97:7e:8a:ca:30:08:81:e8:60:5d:59:
89:3b:41:56:5b:47:36:4d:90:66:f0:97:83:8b:28:
91:d6:ea:d4:a5:b3:1e:77:ae:31:7c:4f:47:cc:fa:
41:26:24:e1:ed:6d:dc:8d:88:1b:6c:6e:52:61:da:
11:7a:a1:c3:da:72:00:7e:d2:59:06:8d:91:bd:44:
45:5a:d2:72:fc:36:0c:2e:fb:c7:34:f9:af:b7:94:
21:8d:26:81:00:f8:5f:c2:6c:e1:75:8f:fd:5b:cf:
88:0d:b9:ee:f1:05:8f:a4:84:5e:08:b7:27:a8:b9:
11:a4:82:a1:e0:b9:e9:0a:f8:8a:7d:39:de:ea:e0:
3f:0d:37:1f:45:50:a1:c4:00:46:fd:8d:84:19:f3:
a9:d3:4c:8e:63:cb:ab:55:d8:40:7d:35:6f:6d:e2:
42:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:33:45:FE:28:3A:C7:7B:AF:56:CB:0D:85:46:18:D0:28:04:1A:0B
X509v3 Authority Key Identifier:
keyid:5A:91:84:EC:42:04:90:1E:6D:E2:44:36:0D:0A:D4:17:40:36:22:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WpGE7EIEkB5t4kQ2DQrUF0A2Iss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/95c3d1-d7fa-49eb-8db6-e2608343a6c4/1/jzNF_ig6x3uvVssNhUYY0CgEGgs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/95c3d1-d7fa-49eb-8db6-e2608343a6c4/1/WpGE7EIEkB5t4kQ2DQrUF0A2Iss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.215.96.0/22
IPv6:
2a0b:a840::/32
Signature Algorithm: sha256WithRSAEncryption
4f:9d:44:65:9d:00:f3:b3:31:33:f4:8c:b5:8b:48:eb:ef:46:
07:fe:27:a6:71:41:09:99:56:9e:d9:b8:dc:0a:f9:59:02:a1:
b0:63:8c:a7:48:2d:f7:a0:d7:70:56:8f:0c:bd:fa:63:b4:8d:
c7:56:04:32:7c:f7:84:c8:d1:54:23:70:40:69:bf:4b:b8:6f:
ab:69:96:a5:62:b7:2f:17:61:f0:95:72:8c:ed:7a:38:2f:ea:
e5:47:9b:80:ce:0c:8e:1e:be:28:5d:a6:1d:74:3f:3c:7e:f2:
5d:fe:60:65:1a:fd:ed:c7:41:19:1a:5a:ce:90:bc:f4:ac:a0:
57:02:ee:af:43:e7:f3:83:90:bb:11:31:8c:f7:c8:db:4a:e9:
1e:95:22:12:76:d4:77:87:40:17:61:ad:c2:e2:81:00:c9:b2:
e5:dd:8c:52:a0:9e:b1:99:42:9e:ca:68:c5:64:1b:0b:5c:de:
61:fa:18:b6:b3:8e:fc:7f:aa:30:ab:ee:e7:dd:bd:7b:14:ba:
2f:7b:fa:a4:00:30:db:42:9f:b5:8f:fc:47:e6:ec:9a:08:08:
7d:64:8b:8e:6b:2f:e0:9f:f5:ba:13:93:41:3e:22:19:8b:e6:
3d:a8:25:46:f8:fc:f9:5a:a6:f5:dd:59:1e:76:83:3b:7f:62:
1a:0f:5c:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:28 2023 by rpki-client on console.sobornost.net