Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/0e7b29-6297-42ca-8f33-5dfccd61a9b1/1/h0XWZ7OpkBpjRZIWS8-_GFrkJf0.roa
File: h0XWZ7OpkBpjRZIWS8-_GFrkJf0.roa (raw, json)
Hash identifier: iMyq3GFxzhjAldOMbewRX/s8uIluwqe55vMPjf4MRlg=
Subject key identifier: 87:45:D6:67:B3:A9:90:1A:63:45:92:16:4B:CF:BF:18:5A:E4:25:FD
Certificate issuer: /CN=54b48731e29f27d687576d6863adbda080709bfe
Certificate serial: 018FE4C8104AFCBD2A7622ED8AB41C3C6ECF
Authority key identifier: 54:B4:87:31:E2:9F:27:D6:87:57:6D:68:63:AD:BD:A0:80:70:9B:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VLSHMeKfJ9aHV21oY629oIBwm_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/0e7b29-6297-42ca-8f33-5dfccd61a9b1/1/h0XWZ7OpkBpjRZIWS8-_GFrkJf0.roa
Signing time: Tue 04 Jun 2024 19:44:27 +0000
ROA not before: Tue 04 Jun 2024 19:44:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209505
IP address blocks: 78.41.136.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e4:c8:10:4a:fc:bd:2a:76:22:ed:8a:b4:1c:3c:6e:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54b48731e29f27d687576d6863adbda080709bfe
Validity
Not Before: Jun 4 19:44:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8745d667b3a9901a634592164bcfbf185ae425fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:f2:fd:03:22:38:27:55:ab:b2:a7:69:47:dd:
38:ef:63:0f:a8:9d:10:d8:e0:cd:da:83:f6:26:d3:
bc:58:d1:57:13:25:6b:a5:42:eb:87:9e:b9:c3:5b:
49:7d:67:69:52:6a:1e:55:da:22:a3:17:3c:36:6e:
9d:00:3d:40:05:5b:24:40:66:53:d4:96:a2:30:f5:
32:b6:be:80:62:df:01:2b:14:0f:15:2f:c7:1c:b3:
a3:bd:d6:a9:a6:d2:fc:8b:32:e9:08:8d:34:e8:3b:
3a:f7:d2:55:9c:cd:ce:99:fb:77:f3:f7:47:c2:f0:
4b:38:a3:3f:b5:b4:0b:91:dc:6d:53:50:9d:71:7a:
c1:16:13:2f:86:8c:ca:60:0c:fd:b4:4f:7b:6c:cf:
bc:35:26:87:51:4c:2d:69:64:5d:d7:87:d2:db:20:
84:c7:95:57:93:20:1c:d7:49:2f:39:8e:81:7a:e9:
85:ba:c7:90:17:d6:79:00:52:fd:fe:b8:8c:1b:45:
17:89:a7:53:e7:a7:c8:96:02:a4:8c:e4:16:c2:69:
81:c1:ab:11:99:f6:d0:84:50:7c:70:93:dd:98:91:
ba:a4:ac:79:54:36:6a:a1:92:87:07:dd:ff:ac:f6:
fe:2e:ad:06:ed:28:19:60:6b:3b:e7:71:bd:a1:9a:
4b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:45:D6:67:B3:A9:90:1A:63:45:92:16:4B:CF:BF:18:5A:E4:25:FD
X509v3 Authority Key Identifier:
keyid:54:B4:87:31:E2:9F:27:D6:87:57:6D:68:63:AD:BD:A0:80:70:9B:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VLSHMeKfJ9aHV21oY629oIBwm_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/0e7b29-6297-42ca-8f33-5dfccd61a9b1/1/h0XWZ7OpkBpjRZIWS8-_GFrkJf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/0e7b29-6297-42ca-8f33-5dfccd61a9b1/1/VLSHMeKfJ9aHV21oY629oIBwm_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.41.136.0/24
Signature Algorithm: sha256WithRSAEncryption
46:87:d2:28:f6:80:b3:38:3c:f7:fe:46:26:f4:b8:7d:63:ab:
f7:7f:a1:79:d4:8d:98:01:9d:fd:63:c1:60:67:bf:1b:2b:dd:
a2:c2:9f:66:e5:e2:29:d7:6f:cc:51:38:22:7d:90:4b:4f:e4:
a6:d7:2e:98:94:72:34:97:f2:f8:88:bd:30:67:27:ca:c5:65:
a4:7c:56:cb:49:84:bd:82:9c:fc:e6:f1:9d:67:d9:3b:d3:08:
78:4f:47:ca:82:44:0b:44:1b:9b:70:1e:82:b4:12:e1:fb:2e:
a7:e0:9c:9d:ff:20:d0:60:6a:2e:2e:4b:9b:9c:32:7f:1f:0d:
3c:8b:de:b8:be:99:58:71:ae:0a:93:04:c9:14:5a:f0:e8:76:
47:71:d5:0e:84:45:4a:89:33:27:d2:a0:dc:e3:7b:55:93:94:
cf:35:36:f3:88:e6:2c:60:23:2a:7a:61:f0:67:4f:0c:79:3b:
6c:42:58:dc:e5:4a:d5:c9:98:9b:dd:c2:19:2d:92:5f:02:68:
6e:fd:55:1b:05:e7:f4:2b:75:51:43:0c:ea:4f:85:57:8a:d7:
b6:1b:f5:77:0b:06:2a:71:af:9c:e9:d8:f9:83:3b:f2:d0:22:
33:50:10:49:cc:75:8b:43:f2:62:fa:fe:60:7c:9a:a2:1f:63:
9b:91:c7:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:09 2024 by rpki-client on console.sobornost.net