Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/Qwqm5xibtAf_enq3o0COj6UVmKo.roa
File: Qwqm5xibtAf_enq3o0COj6UVmKo.roa (raw, json)
Hash identifier: U1dITKTxQx8ZrEELMomLryPtDC5xck13QFIaH/Jbn1c=
Subject key identifier: 43:0A:A6:E7:18:9B:B4:07:FF:7A:7A:B7:A3:40:8E:8F:A5:15:98:AA
Certificate issuer: /CN=0d722e4513a39678d8ab23b2d649775340518cb9
Certificate serial: 0193AAA3824C16C79758EA427365577A3159
Authority key identifier: 0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/Qwqm5xibtAf_enq3o0COj6UVmKo.roa
Signing time: Mon 09 Dec 2024 08:57:42 +0000
ROA not before: Mon 09 Dec 2024 08:57:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47741
IP address blocks: 212.42.208.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:aa:a3:82:4c:16:c7:97:58:ea:42:73:65:57:7a:31:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d722e4513a39678d8ab23b2d649775340518cb9
Validity
Not Before: Dec 9 08:57:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=430aa6e7189bb407ff7a7ab7a3408e8fa51598aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7b:23:6c:74:12:49:7e:e9:99:c8:12:d9:72:
82:7b:45:dd:00:f9:3b:23:96:02:63:9f:c8:39:08:
19:f4:ca:4f:09:05:5c:08:65:7b:61:0a:ca:c5:17:
16:fb:18:6e:d4:ba:0d:93:bb:0b:32:c8:da:5d:fd:
ef:96:91:e4:ac:08:c6:95:24:62:b4:6d:b1:3f:d7:
88:d4:d6:08:eb:58:77:7d:ed:e8:26:d8:77:d4:53:
4e:8f:7a:71:92:80:75:99:95:6b:68:7a:16:4e:6b:
18:46:56:5d:dd:f3:ee:50:02:de:28:8e:9c:41:61:
3b:64:43:f6:0d:79:ae:fb:41:16:3c:51:7e:3e:96:
16:b5:b9:c4:53:df:6e:94:84:f8:9c:5e:5a:95:cf:
11:2f:3c:f5:73:b1:4e:c9:e9:8b:08:89:db:c1:02:
de:2a:4c:80:64:57:88:db:87:05:5d:1f:f9:5e:7b:
9b:45:8d:d9:b6:5e:28:48:bf:98:0c:d3:c1:ee:b4:
d8:2d:9e:ca:1c:6d:f4:73:75:49:2e:4d:3a:73:7d:
3e:e7:d9:d7:ac:a8:72:b9:62:52:b5:ec:20:f7:95:
b1:8c:c9:1f:55:a5:e1:65:18:13:f3:5a:56:80:46:
95:58:3f:f7:8c:20:46:df:28:65:3e:d3:42:aa:23:
15:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:0A:A6:E7:18:9B:B4:07:FF:7A:7A:B7:A3:40:8E:8F:A5:15:98:AA
X509v3 Authority Key Identifier:
keyid:0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/Qwqm5xibtAf_enq3o0COj6UVmKo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/DXIuRROjlnjYqyOy1kl3U0BRjLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.42.208.0/20
Signature Algorithm: sha256WithRSAEncryption
94:ab:76:28:2b:80:97:71:21:4b:07:89:39:e3:73:7a:d5:13:
1c:f5:02:3c:a3:19:8d:7c:1a:6a:df:96:9d:77:c7:54:1d:a7:
67:8a:91:44:10:03:f6:31:d9:8a:f8:b6:cb:58:73:7d:c8:08:
c2:3f:6a:bc:db:3e:5e:ee:25:7e:23:0a:ec:bf:01:61:81:93:
7c:e8:31:a9:01:08:b4:24:fe:36:b2:10:8f:e3:0f:93:3b:ca:
c8:44:d8:a4:07:d6:ef:cd:bd:65:60:7d:2f:53:8a:9f:16:38:
e8:b7:43:56:2f:ae:45:c3:56:41:c6:02:58:f9:5a:9e:4a:a6:
8d:09:50:ab:cf:c0:63:ce:69:86:2e:c4:29:ac:2d:fd:86:f6:
5a:a3:15:40:b6:7d:64:e8:22:91:6e:28:b0:1c:c2:00:d1:ca:
cf:df:90:a3:54:0f:ac:82:6c:1c:0f:8a:95:9d:da:f6:08:3d:
45:3b:2f:31:f0:03:b4:11:34:b7:be:f2:60:ae:c8:b0:c0:fd:
27:b2:38:c1:9e:ee:84:b0:c2:58:8b:0c:e4:2a:e6:56:0d:c7:
07:64:5f:15:d7:69:63:e3:af:89:c3:a8:2c:66:08:2d:6b:6f:
bd:10:50:13:57:bc:02:8a:92:34:ba:e2:4d:f4:67:11:45:ad:
53:32:4b:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:09 2024 by rpki-client on console.sobornost.net