Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/ca5919-bb58-41ea-92cb-bb0c3f9c79f6/1/y0TUeF5DAPcQ63cSxuXu-kl279w.roa
File: y0TUeF5DAPcQ63cSxuXu-kl279w.roa (raw, json)
Hash identifier: IEFJ3+UUkEsH4d+xIi5anL/Zb8ro7PJhKJcBZx8k6c4=
Subject key identifier: CB:44:D4:78:5E:43:00:F7:10:EB:77:12:C6:E5:EE:FA:49:76:EF:DC
Certificate issuer: /CN=23e391f062bd8cd79eb845fa66e80ab42914a9af
Certificate serial: 0237BB38
Authority key identifier: 23:E3:91:F0:62:BD:8C:D7:9E:B8:45:FA:66:E8:0A:B4:29:14:A9:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I-OR8GK9jNeeuEX6ZugKtCkUqa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/ca5919-bb58-41ea-92cb-bb0c3f9c79f6/1/y0TUeF5DAPcQ63cSxuXu-kl279w.roa
Signing time: Sat 01 Jan 2022 15:03:04 +0000
ROA not before: Sat 01 Jan 2022 15:03:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 84.54.0.0/22 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37206840 (0x237bb38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23e391f062bd8cd79eb845fa66e80ab42914a9af
Validity
Not Before: Jan 1 15:03:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb44d4785e4300f710eb7712c6e5eefa4976efdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:27:55:cd:d3:2f:df:04:f0:8a:65:7f:73:05:
10:6e:00:e0:f6:0f:44:63:73:ed:e1:2f:c9:6f:69:
5a:b4:c3:9a:35:fa:0a:4f:99:12:1b:16:3a:57:d0:
9b:ed:d8:18:4b:fc:c4:8f:2b:05:38:2b:d5:34:d4:
1d:e1:e4:c0:45:7d:67:fe:b4:c1:f4:da:ad:7e:50:
9f:03:95:01:1a:4b:d0:c4:84:26:b0:2b:07:40:17:
44:fa:fa:9e:cd:b9:cd:36:43:1c:5a:17:eb:65:7a:
3c:1d:04:d4:f8:65:9e:ec:1c:5c:15:64:df:34:d0:
93:55:46:c2:0a:a0:d6:0a:ad:7a:22:73:00:08:34:
6c:e4:bc:41:68:f2:40:b1:11:65:94:c1:ce:68:3c:
99:00:45:04:9f:57:b9:bc:07:d0:2e:ee:dd:5c:b1:
d7:be:dd:55:ba:38:8f:28:1f:e8:b0:f9:ac:e9:95:
9e:62:67:af:46:0e:c5:74:a3:24:49:33:78:b0:d8:
c8:4d:84:8d:74:e0:37:2f:f6:4d:e1:08:7d:6f:ba:
2a:f8:77:12:4d:99:9b:09:9c:45:0b:f7:14:92:e6:
f2:16:52:d6:b3:30:fc:24:d6:57:21:66:5e:93:b8:
ba:e2:c1:74:0a:67:d1:0d:65:ad:ed:3e:ed:47:64:
0f:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:44:D4:78:5E:43:00:F7:10:EB:77:12:C6:E5:EE:FA:49:76:EF:DC
X509v3 Authority Key Identifier:
keyid:23:E3:91:F0:62:BD:8C:D7:9E:B8:45:FA:66:E8:0A:B4:29:14:A9:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I-OR8GK9jNeeuEX6ZugKtCkUqa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/ca5919-bb58-41ea-92cb-bb0c3f9c79f6/1/y0TUeF5DAPcQ63cSxuXu-kl279w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/ca5919-bb58-41ea-92cb-bb0c3f9c79f6/1/I-OR8GK9jNeeuEX6ZugKtCkUqa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.54.0.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:8d:35:14:fd:be:ca:0a:69:c5:5d:26:0c:56:40:91:61:90:
f3:d3:13:15:4d:b3:da:f9:ca:04:e1:f7:a3:59:54:ee:8d:90:
63:bc:af:50:bd:f6:95:4e:1f:96:90:9e:f7:9a:56:0b:28:22:
03:ff:89:01:f6:d0:9f:70:ff:71:a3:ba:37:0d:38:3b:b1:c4:
df:03:96:bc:4e:b4:48:86:87:49:e3:32:32:f2:5f:02:12:0b:
87:b8:d7:af:c9:0a:71:7a:50:d5:a3:36:c1:a0:e7:0f:e4:8b:
a0:d7:34:b6:3a:e1:99:de:2e:46:f1:86:c2:4e:c7:d4:a5:c1:
5f:85:9a:51:0c:74:74:bc:50:49:0f:cd:eb:b9:6c:7d:78:46:
6f:ea:fa:42:54:9a:a4:3f:32:fb:72:1b:2c:9e:66:9f:c5:b1:
21:d6:3d:b8:d3:30:0c:f8:60:02:44:03:fc:2b:f2:7c:2d:e0:
ef:a5:98:65:b1:42:03:5f:c0:75:f3:f0:f7:16:ea:a5:40:18:
f5:cf:5e:89:7c:7c:d0:f5:2f:3b:b6:df:62:51:61:d5:93:88:
a5:fd:05:f3:e1:ba:49:19:c2:2f:01:86:9d:59:16:90:e1:e9:
0d:2f:53:40:b4:45:c6:24:6f:ca:fd:44:da:11:13:0d:32:2b:
5e:20:64:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:50 2023 by rpki-client on console.sobornost.net