Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/a34c1e-1881-4d6c-aad6-5070258dbf2f/1/ATjqRnw9q29VGF6qMDoRACWgXls.roa
File: ATjqRnw9q29VGF6qMDoRACWgXls.roa (raw, json)
Hash identifier: xUdx18sHzWq79eNVwNmSgSJiJDS6ZZZ94tRi2KP0GQo=
Subject key identifier: 01:38:EA:46:7C:3D:AB:6F:55:18:5E:AA:30:3A:11:00:25:A0:5E:5B
Certificate issuer: /CN=27189ab53f32eff65726fd49d08d42ff812c6db3
Certificate serial: 0193CF0C30300442FF1A757CEA4CD1BDB7D0
Authority key identifier: 27:18:9A:B5:3F:32:EF:F6:57:26:FD:49:D0:8D:42:FF:81:2C:6D:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JxiatT8y7_ZXJv1J0I1C_4EsbbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/a34c1e-1881-4d6c-aad6-5070258dbf2f/1/ATjqRnw9q29VGF6qMDoRACWgXls.roa
Signing time: Mon 16 Dec 2024 10:38:22 +0000
ROA not before: Mon 16 Dec 2024 10:38:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209173
IP address blocks: 2.56.36.0/23 maxlen: 23
2.56.38.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:cf:0c:30:30:04:42:ff:1a:75:7c:ea:4c:d1:bd:b7:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27189ab53f32eff65726fd49d08d42ff812c6db3
Validity
Not Before: Dec 16 10:38:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0138ea467c3dab6f55185eaa303a110025a05e5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1e:77:f5:4d:e6:d4:c4:94:0a:48:97:ed:3c:
53:63:9f:07:da:bf:84:69:7f:0f:58:a8:96:81:c6:
11:19:15:8b:10:ee:b8:11:13:37:a5:82:5a:32:80:
04:e6:d8:10:96:8e:20:90:8b:74:1f:64:9f:9c:78:
1e:78:7d:59:c8:a5:2e:fa:ce:47:23:31:79:ed:d1:
1b:df:86:7f:06:c4:d1:23:0c:8d:35:47:f0:8a:5e:
cc:29:33:f4:43:5b:91:66:25:84:9c:25:d3:1e:9c:
f9:05:d0:b2:72:b2:58:44:ed:bb:3b:bc:0c:cd:14:
28:f7:8a:8c:19:f7:cc:42:9c:f4:77:f0:47:27:80:
60:5a:51:37:b4:84:a8:d6:5b:92:eb:5e:74:cd:88:
ed:03:c1:99:e4:e9:b5:bc:6c:f9:f7:44:3f:ed:50:
a0:26:99:50:34:65:ea:2f:f9:01:28:a8:6f:5e:3d:
0b:3f:1c:fb:d5:49:fe:00:04:d1:69:f1:6f:e6:b0:
35:34:39:1f:2c:7c:17:8a:c6:78:6b:1d:67:00:ad:
e4:68:97:e2:5a:e6:4a:d7:f2:d5:55:0d:f9:73:1f:
47:c5:ee:b9:bb:40:af:0f:20:86:fc:2c:e3:db:74:
6f:f8:e0:63:08:e1:e2:19:40:94:9d:76:5f:3a:72:
3c:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:38:EA:46:7C:3D:AB:6F:55:18:5E:AA:30:3A:11:00:25:A0:5E:5B
X509v3 Authority Key Identifier:
keyid:27:18:9A:B5:3F:32:EF:F6:57:26:FD:49:D0:8D:42:FF:81:2C:6D:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JxiatT8y7_ZXJv1J0I1C_4EsbbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/a34c1e-1881-4d6c-aad6-5070258dbf2f/1/ATjqRnw9q29VGF6qMDoRACWgXls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/a34c1e-1881-4d6c-aad6-5070258dbf2f/1/JxiatT8y7_ZXJv1J0I1C_4EsbbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.36.0-2.56.38.255
Signature Algorithm: sha256WithRSAEncryption
66:5d:47:e2:0e:da:86:53:a5:87:14:cb:4e:82:86:40:52:9e:
a1:ca:78:70:37:94:86:d2:55:62:c9:07:a5:e7:06:42:ef:ad:
11:e8:bf:94:c0:56:67:e1:eb:e3:77:7e:19:89:24:6e:f4:77:
e8:b8:cc:8c:f6:ea:05:b5:65:6d:cd:af:96:49:6e:79:94:0d:
97:bb:56:57:b7:f5:1c:d2:6b:a3:5d:a0:1a:67:61:71:cd:20:
39:39:fa:b0:7a:7a:2e:0c:f4:a2:00:be:a9:56:bc:0a:3d:4d:
0a:fd:26:c7:7b:86:da:67:e1:b7:6a:ea:b0:f6:e7:30:e9:75:
cc:79:3e:dd:0f:9d:32:30:c8:d2:db:5c:c9:34:22:70:2f:5d:
4b:41:02:13:fe:ce:b1:ee:97:d7:6c:90:31:05:70:bc:d2:ea:
11:32:0f:82:53:5e:9c:4b:dc:e1:e2:6f:c7:21:cd:09:34:e3:
70:1b:ce:8f:66:3d:06:02:67:0e:49:bf:b0:a0:64:e8:30:d2:
77:9c:c7:0b:51:03:e8:85:eb:f1:fa:4e:ae:46:fa:e7:32:a7:
bf:c9:8d:8a:af:28:d9:ee:09:f3:1b:d1:4e:dc:f9:42:1c:37:
ac:a2:38:51:25:2b:fc:01:d2:32:5f:f4:78:c6:d3:c7:1c:e6:
f8:c0:ce:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:08 2024 by rpki-client on console.sobornost.net