Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/343379-f8e1-4be6-be01-f83946c2c82e/1/M9p5r0iaGLgnshgwxBVALCyv7u4.roa
File: M9p5r0iaGLgnshgwxBVALCyv7u4.roa (raw, json)
Hash identifier: kUSXxJkWyh3wixUH2tMnqrsg/QRRIvb6di4YeCnVFMY=
Subject key identifier: 33:DA:79:AF:48:9A:18:B8:27:B2:18:30:C4:15:40:2C:2C:AF:EE:EE
Certificate issuer: /CN=8c2289ae0b10629350da0a50e87b389109f16c2e
Certificate serial: 0193962420051F4060142C3D59B6A1784EE2
Authority key identifier: 8C:22:89:AE:0B:10:62:93:50:DA:0A:50:E8:7B:38:91:09:F1:6C:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jCKJrgsQYpNQ2gpQ6Hs4kQnxbC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/343379-f8e1-4be6-be01-f83946c2c82e/1/M9p5r0iaGLgnshgwxBVALCyv7u4.roa
Signing time: Thu 05 Dec 2024 09:26:10 +0000
ROA not before: Thu 05 Dec 2024 09:26:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43089
IP address blocks: 213.251.215.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:96:24:20:05:1f:40:60:14:2c:3d:59:b6:a1:78:4e:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c2289ae0b10629350da0a50e87b389109f16c2e
Validity
Not Before: Dec 5 09:26:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33da79af489a18b827b21830c415402c2cafeeee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:5a:f8:a4:25:3a:85:c3:14:6b:fd:31:49:c0:
8c:94:7b:99:86:de:88:81:0a:4a:2b:2e:d0:11:ad:
9c:aa:fe:b6:c9:f0:9b:3c:9f:91:02:62:14:8d:52:
7b:f9:c3:a0:5b:9d:e5:1b:a2:2c:e8:e8:71:bd:ab:
27:36:72:a8:1b:15:da:64:39:87:42:70:a5:75:0b:
91:07:31:08:35:f0:de:c4:d8:8a:98:41:37:ca:2a:
89:99:16:5e:07:76:e8:b0:5a:b7:28:30:41:e2:57:
e3:71:f7:ce:6b:62:df:74:ed:59:3a:89:14:c0:b5:
ae:cf:61:19:d6:d8:09:3d:03:13:44:2d:d8:1a:10:
86:3b:16:1d:c8:25:7e:6e:eb:8b:6c:cd:09:b2:91:
65:22:d9:8f:11:2e:e9:b4:10:43:c2:84:25:fe:1e:
d2:17:4d:a1:19:c5:10:1d:55:1d:f7:15:06:d1:c2:
5d:9a:b3:87:37:0b:1b:2b:fd:c3:96:8a:08:d7:fb:
e1:14:f9:72:fa:54:97:2b:20:ec:a0:3f:8c:36:5c:
a5:a5:93:7b:5e:c7:8f:d2:21:e7:b6:e0:ce:51:d1:
7a:01:a5:e2:a8:00:b5:a5:82:37:2d:38:bb:4a:03:
8d:08:b4:7b:8f:e3:bb:7d:87:ac:c9:3b:4f:9c:99:
2a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:DA:79:AF:48:9A:18:B8:27:B2:18:30:C4:15:40:2C:2C:AF:EE:EE
X509v3 Authority Key Identifier:
keyid:8C:22:89:AE:0B:10:62:93:50:DA:0A:50:E8:7B:38:91:09:F1:6C:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jCKJrgsQYpNQ2gpQ6Hs4kQnxbC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/343379-f8e1-4be6-be01-f83946c2c82e/1/M9p5r0iaGLgnshgwxBVALCyv7u4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/343379-f8e1-4be6-be01-f83946c2c82e/1/jCKJrgsQYpNQ2gpQ6Hs4kQnxbC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.251.215.0/24
Signature Algorithm: sha256WithRSAEncryption
74:6a:26:9c:bb:6c:54:86:3c:bb:5d:9e:53:ad:fd:4e:e8:b2:
38:cd:7a:cf:d7:1e:65:db:51:83:54:35:92:6d:ba:d4:5f:7f:
83:8c:66:0f:f4:09:96:ef:1a:34:18:f7:67:30:cb:0d:7e:ae:
cd:b4:62:4c:c4:8a:15:29:d0:b1:8a:46:47:d9:93:62:a8:57:
87:51:c1:c7:f9:2f:50:45:7b:f8:24:47:f5:b4:f8:9e:ac:0a:
cd:7a:19:3e:70:f1:b5:a1:fd:e1:9e:16:49:f6:1b:45:b3:ec:
58:02:6c:bf:58:96:90:61:db:66:b6:dc:ec:74:b3:bf:b4:7f:
f7:be:43:a7:56:a9:47:f1:87:82:5d:fe:85:e0:d9:4c:f5:72:
17:a1:b3:d9:8b:03:df:2b:92:12:e1:69:14:01:a8:fc:ae:a8:
25:de:6c:66:23:72:b2:d8:d9:56:b2:d3:b2:4b:7b:0b:db:ba:
07:5e:bd:4d:87:49:62:c8:1e:51:a4:85:aa:b3:32:ad:b3:d2:
c8:f8:76:6a:ae:61:2d:60:fe:3f:db:0f:77:2c:a1:75:93:8f:
cd:67:a5:b8:e8:ca:df:28:20:c1:2c:19:1e:98:cf:9e:b1:46:
31:af:d0:1f:e7:8e:ca:3a:b5:f5:98:1d:69:94:5b:2a:9d:90:
b8:5e:68:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:59 2024 by rpki-client on console.sobornost.net