Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/aa06a5-7ef6-4bc9-b0a0-2fa839017d75/1/B3WdgLahU_KFczQnZXLI-uoQ4D8.roa
File: B3WdgLahU_KFczQnZXLI-uoQ4D8.roa (raw, json)
Hash identifier: rhvD7vs2dequTm5c+GlzjGHch6EYUk3EZhpOQGscXF4=
Subject key identifier: 07:75:9D:80:B6:A1:53:F2:85:73:34:27:65:72:C8:FA:EA:10:E0:3F
Certificate issuer: /CN=fbd83efdd9996f8c75e7f4114e466ebf836968ea
Certificate serial: 01930BFF015CF91FCAEDA779CB616DFFF610
Authority key identifier: FB:D8:3E:FD:D9:99:6F:8C:75:E7:F4:11:4E:46:6E:BF:83:69:68:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-9g-_dmZb4x15_QRTkZuv4NpaOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/aa06a5-7ef6-4bc9-b0a0-2fa839017d75/1/B3WdgLahU_KFczQnZXLI-uoQ4D8.roa
Signing time: Fri 08 Nov 2024 13:38:01 +0000
ROA not before: Fri 08 Nov 2024 13:38:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48803
IP address blocks: 88.206.176.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:0b:ff:01:5c:f9:1f:ca:ed:a7:79:cb:61:6d:ff:f6:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbd83efdd9996f8c75e7f4114e466ebf836968ea
Validity
Not Before: Nov 8 13:38:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=07759d80b6a153f2857334276572c8faea10e03f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a3:5e:dd:6d:a5:e3:39:75:94:b1:f5:04:79:
d2:22:70:36:e6:62:48:2d:66:fa:07:4e:1d:aa:34:
78:e0:11:66:f7:c6:36:84:28:c9:17:8c:a1:c3:7e:
fe:53:f0:fb:49:40:ad:01:c2:4b:11:5e:e6:d4:68:
cf:69:96:cf:b8:fb:1d:9e:89:cf:82:c4:2d:69:57:
1f:c9:b2:95:d0:a2:61:7e:62:a5:2a:01:a0:bd:5e:
7a:53:70:a5:d6:c1:d1:82:34:29:77:3a:e9:65:94:
9c:c6:92:4a:9a:cd:30:d2:72:3c:38:a4:7a:c8:c4:
6f:16:61:d1:78:80:09:cd:e2:44:e8:58:90:ee:02:
89:f0:de:2d:1d:96:21:f2:f9:eb:82:f2:1a:00:12:
1b:8e:f5:20:4e:83:ae:9f:58:14:51:82:8c:4c:21:
18:98:57:73:69:85:07:5f:0f:32:97:ee:db:28:c4:
c3:df:4c:c9:58:82:d8:e0:5d:4e:a1:57:ed:1f:3a:
b3:ac:fe:0a:2c:4a:cb:00:02:fb:ef:3a:12:16:52:
b9:9f:72:5d:07:fe:3b:14:d6:ab:dd:88:84:ef:cd:
b1:65:21:d8:4d:53:0e:39:d7:cf:dd:30:76:65:56:
92:fd:53:52:09:86:e9:b9:3d:5c:9f:50:a6:7d:d4:
ad:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:75:9D:80:B6:A1:53:F2:85:73:34:27:65:72:C8:FA:EA:10:E0:3F
X509v3 Authority Key Identifier:
keyid:FB:D8:3E:FD:D9:99:6F:8C:75:E7:F4:11:4E:46:6E:BF:83:69:68:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-9g-_dmZb4x15_QRTkZuv4NpaOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/aa06a5-7ef6-4bc9-b0a0-2fa839017d75/1/B3WdgLahU_KFczQnZXLI-uoQ4D8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/aa06a5-7ef6-4bc9-b0a0-2fa839017d75/1/1-9g-_dmZb4x15_QRTkZuv4NpaOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.206.176.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:58:bc:a6:84:31:37:bf:22:1c:99:5e:5f:97:1c:95:bb:91:
40:3b:50:fc:e8:ea:0f:e3:c4:41:d3:0d:fb:79:91:df:f9:5e:
e3:60:6b:3c:09:c0:e0:34:08:32:85:f2:15:8c:40:d7:86:04:
ac:73:11:d4:10:b0:89:de:95:9e:da:c8:b2:38:d3:f3:d9:e1:
93:77:68:3d:7c:ff:f5:3c:b4:5c:eb:d8:0a:92:d9:e6:7d:c1:
cc:bc:7f:30:de:7c:02:99:69:ff:aa:e7:81:d7:e5:96:50:ae:
a1:b4:37:9e:e7:6a:40:c2:22:f6:26:11:9f:b9:22:68:b2:b1:
f1:f0:db:28:2d:d5:85:15:2b:85:34:dc:54:6b:c7:3b:af:2b:
58:5a:9e:53:ed:35:e1:69:dc:b6:2b:3a:87:aa:0d:bb:b1:7a:
bb:3b:45:d0:c7:6a:44:da:81:4c:a4:b5:63:64:1d:93:ee:d3:
1c:af:13:45:84:9c:08:11:6e:21:69:c3:ee:26:0c:e8:6a:06:
92:70:da:76:80:73:14:db:bf:5f:35:8b:34:bb:90:11:bb:00:
71:c4:ef:64:ca:cb:c4:ea:f7:32:62:b9:b6:64:c0:f6:16:4f:
db:9c:28:78:32:b9:71:e6:ec:da:5a:24:a1:53:92:f0:05:60:
63:a0:df:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:59 2024 by rpki-client on console.sobornost.net