Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/w692VcN3ogJxn290zpDoLAn51_k.roa
File: w692VcN3ogJxn290zpDoLAn51_k.roa (raw, json)
Hash identifier: rtXK0fqQ1KDxyGS3UDQyY9NIRu1GMHLPbblmNlkEbuI=
Subject key identifier: C3:AF:76:55:C3:77:A2:02:71:9F:6F:74:CE:90:E8:2C:09:F9:D7:F9
Certificate issuer: /CN=6eab53640b0931924b73f760925845150a6ccca5
Certificate serial: 01939215003881EAE70EF1BB68C712158E55
Authority key identifier: 6E:AB:53:64:0B:09:31:92:4B:73:F7:60:92:58:45:15:0A:6C:CC:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bqtTZAsJMZJLc_dgklhFFQpszKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/w692VcN3ogJxn290zpDoLAn51_k.roa
Signing time: Wed 04 Dec 2024 14:31:09 +0000
ROA not before: Wed 04 Dec 2024 14:31:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43848
IP address blocks: 185.51.220.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:92:15:00:38:81:ea:e7:0e:f1:bb:68:c7:12:15:8e:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eab53640b0931924b73f760925845150a6ccca5
Validity
Not Before: Dec 4 14:31:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c3af7655c377a202719f6f74ce90e82c09f9d7f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:74:5b:e7:cf:9c:1c:58:2f:66:2d:e4:3e:13:
ea:89:a9:f2:6c:86:78:1e:a2:26:d9:90:f0:e1:c2:
2b:cc:94:b1:86:2d:5f:22:c6:f8:53:78:83:c4:ec:
11:48:6b:5c:af:ed:a3:d4:42:57:dd:25:ea:07:79:
af:a2:ef:80:2e:69:65:57:8d:22:9b:2b:6b:78:8e:
99:00:21:c9:4c:6b:8e:ef:a4:69:fe:9c:90:47:5c:
a2:06:7e:a7:a3:c7:9e:1e:63:fc:7f:6f:5e:25:4d:
08:7e:58:c9:6a:a9:31:aa:f0:db:35:aa:8c:99:c7:
4e:3b:73:6d:a1:20:8c:fd:d0:e3:7b:fa:c4:d6:3b:
24:06:51:be:41:00:a2:a8:ca:31:ea:75:77:57:d1:
24:0b:49:6e:30:6b:50:60:86:2f:ae:21:92:52:30:
f9:90:61:c6:0d:ae:e1:07:69:3d:78:46:8d:0b:d9:
36:15:91:6c:20:9f:b1:0c:04:22:9b:c2:25:0a:16:
53:23:81:d6:d3:c7:48:a4:b4:3b:d5:b4:ea:a2:b5:
e6:9b:45:a8:0f:09:35:31:29:e3:11:8c:ef:2e:58:
e8:f6:e9:d5:e4:1a:11:0c:53:27:e7:72:bc:ae:23:
d5:1f:fb:6a:f3:e7:20:4e:d8:4d:d6:5d:a8:cb:e4:
30:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:AF:76:55:C3:77:A2:02:71:9F:6F:74:CE:90:E8:2C:09:F9:D7:F9
X509v3 Authority Key Identifier:
keyid:6E:AB:53:64:0B:09:31:92:4B:73:F7:60:92:58:45:15:0A:6C:CC:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bqtTZAsJMZJLc_dgklhFFQpszKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/w692VcN3ogJxn290zpDoLAn51_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/bqtTZAsJMZJLc_dgklhFFQpszKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.220.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:75:9a:c5:f0:39:bd:46:e1:43:be:a7:13:de:4b:40:4e:c8:
94:3b:06:d4:8c:d3:cd:17:90:a1:7a:3f:1f:8c:5a:ad:43:eb:
b9:dd:02:ac:2b:91:ce:2c:46:2d:c5:20:64:06:4b:f9:ba:09:
c4:89:ec:5f:8f:c0:ba:d7:39:35:5c:3f:08:f6:73:7d:b7:dc:
2d:0e:de:f6:33:1b:13:4d:30:16:26:70:b7:77:58:d4:0c:c1:
31:5c:0d:63:da:83:43:7b:99:6e:7a:54:59:b4:d5:22:f1:a1:
f6:49:ef:46:1b:c1:1d:da:1b:6a:b3:ed:c8:4b:82:7e:f9:d3:
5b:cf:bd:71:90:df:78:fc:c5:27:08:7f:3f:2b:0e:72:8c:2d:
ed:9a:fe:c9:43:eb:b6:8c:48:c8:d8:a4:56:e0:5a:9f:a4:f5:
01:fe:69:c2:0a:f9:28:8d:70:4b:3f:03:f4:29:8f:72:38:64:
9d:7c:26:64:c2:10:28:54:9e:be:92:8c:4c:30:68:a8:53:8d:
d4:b7:90:89:7a:be:ef:c6:48:d7:fd:0f:89:bd:01:5f:3d:20:
60:33:80:0d:89:5b:58:d3:35:8e:3c:29:b4:f8:0b:93:f4:8d:
6b:be:ca:38:b2:59:bc:6e:06:cb:78:a9:b1:17:84:d5:fc:c0:
ff:72:21:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:59 2024 by rpki-client on console.sobornost.net