Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/rKNXi_i5LxSPfjjc6GXVQt6C2D8.roa
File: rKNXi_i5LxSPfjjc6GXVQt6C2D8.roa (raw, json)
Hash identifier: Y5ePgqWSzrTztum1bUalMS8cox13/RZMPPLElCxC0aQ=
Subject key identifier: AC:A3:57:8B:F8:B9:2F:14:8F:7E:38:DC:E8:65:D5:42:DE:82:D8:3F
Certificate issuer: /CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Certificate serial: 0193DE5A5C13CB9001BCDDEAD157B0670DA5
Authority key identifier: 88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/rKNXi_i5LxSPfjjc6GXVQt6C2D8.roa
Signing time: Thu 19 Dec 2024 09:58:03 +0000
ROA not before: Thu 19 Dec 2024 09:58:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7029
IP address blocks: 94.103.60.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:de:5a:5c:13:cb:90:01:bc:dd:ea:d1:57:b0:67:0d:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Validity
Not Before: Dec 19 09:58:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aca3578bf8b92f148f7e38dce865d542de82d83f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:40:04:12:09:0b:59:c7:53:fa:13:83:72:57:
6f:e4:27:ff:b8:f4:42:cd:db:13:eb:da:d2:82:fd:
c3:b6:fd:c9:a5:06:f2:12:fa:e2:52:4d:92:9c:3e:
e4:8a:50:a8:83:dc:e0:31:61:97:03:b7:9f:5d:cf:
cf:68:6f:b5:81:6a:ad:68:a2:6b:74:67:72:7f:32:
34:6a:8b:a2:42:df:51:57:1d:08:2c:cd:fa:07:b0:
3d:f7:6a:da:76:5d:e5:d8:3f:13:58:24:1e:b4:fd:
8b:4f:34:15:20:80:82:94:e0:81:84:1b:ea:5d:fe:
34:4b:d1:e9:05:36:95:ba:21:6a:40:9f:98:89:02:
f4:e6:3f:02:0b:88:e1:8a:7c:b5:13:b3:6d:f6:41:
0a:9b:32:97:6e:1e:8d:4f:6c:55:3f:32:a7:0b:99:
e0:7d:c7:0e:8f:2a:2e:fd:bd:53:8b:d5:4d:5a:17:
2e:7c:c1:3a:7b:83:6f:71:e2:72:2f:91:76:be:f5:
0d:ea:7d:c5:6c:e1:5c:6a:29:35:67:75:4e:b1:48:
23:11:91:37:7f:24:73:8d:62:59:4c:0c:0d:bc:11:
5e:7e:45:3d:8c:9e:8d:2c:4b:c1:89:fd:2b:12:96:
f3:f8:05:76:e9:33:63:66:0d:b8:ce:91:2b:43:58:
41:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:A3:57:8B:F8:B9:2F:14:8F:7E:38:DC:E8:65:D5:42:DE:82:D8:3F
X509v3 Authority Key Identifier:
keyid:88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/rKNXi_i5LxSPfjjc6GXVQt6C2D8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/iK3ZtnH3o26yNn40_uS8sTuPZsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.103.60.0/22
Signature Algorithm: sha256WithRSAEncryption
33:00:ae:65:75:da:43:cf:61:49:b8:79:d2:cd:08:c9:c9:a7:
02:2c:ab:56:43:e2:10:d4:76:67:4e:75:3e:6b:a1:57:fd:bb:
d4:31:d2:e0:f1:46:3b:4f:f4:70:71:5b:1c:b6:9c:12:b3:93:
5a:2c:59:f2:87:23:63:cd:78:e6:8f:b7:3f:07:c4:a6:8c:46:
de:c6:e5:26:1a:20:65:c8:fc:26:e5:e8:3c:79:80:fc:99:2f:
89:e1:38:bf:c7:4a:57:cc:28:97:fd:e9:37:0b:c9:f2:33:a3:
3d:21:af:1a:f7:74:05:1a:a9:46:bc:a0:86:c2:8e:a0:78:22:
a9:e4:41:fa:bc:2e:b5:7e:a1:2b:ed:49:ab:14:18:d5:ff:42:
b0:e3:d2:93:13:9b:9b:0d:41:92:03:3d:8c:42:43:c3:c3:1e:
29:68:20:db:a7:d8:f1:7a:00:86:54:58:aa:af:6f:e6:75:86:
28:70:72:ce:d2:f1:58:4c:28:a9:ae:87:df:81:7c:fc:61:56:
13:02:7f:ce:65:ea:7a:69:ee:59:23:c3:72:bc:18:42:8e:a6:
ec:2f:23:dd:7b:d5:82:6c:4d:ad:4f:10:43:f8:65:24:d0:8e:
a0:86:e0:5d:7d:9e:2e:53:c8:4f:d8:79:eb:b4:7e:a0:8b:0c:
92:90:bb:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:09 2024 by rpki-client on console.sobornost.net