Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/082a78-75dc-4de6-bc70-456de460c1b4/1/1xzUMiuCJ0y9Kut2WHrRF7sSxgU.roa
File: 1xzUMiuCJ0y9Kut2WHrRF7sSxgU.roa (raw, json)
Hash identifier: oBvUiABYe1VDTgFx3wzeqUjDJSnvG/HOwcCIXKL2lLI=
Subject key identifier: D7:1C:D4:32:2B:82:27:4C:BD:2A:EB:76:58:7A:D1:17:BB:12:C6:05
Certificate issuer: /CN=593ad8ec425e2e05ca6efa4f402eda973beb42c4
Certificate serial: 01857321BEBF35B52B1D897557BF002CBCBF
Authority key identifier: 59:3A:D8:EC:42:5E:2E:05:CA:6E:FA:4F:40:2E:DA:97:3B:EB:42:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WTrY7EJeLgXKbvpPQC7alzvrQsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/082a78-75dc-4de6-bc70-456de460c1b4/1/1xzUMiuCJ0y9Kut2WHrRF7sSxgU.roa
Signing time: Mon 02 Jan 2023 15:37:49 +0000
ROA not before: Mon 02 Jan 2023 15:37:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211528
IP address blocks: 185.251.37.0/24 maxlen: 24
2a10:ae40::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:21:be:bf:35:b5:2b:1d:89:75:57:bf:00:2c:bc:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=593ad8ec425e2e05ca6efa4f402eda973beb42c4
Validity
Not Before: Jan 2 15:37:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d71cd4322b82274cbd2aeb76587ad117bb12c605
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:6e:9a:96:c8:95:84:71:6b:42:a5:44:c4:32:
15:f6:42:c7:b7:50:9e:f3:ce:8c:55:ae:41:ff:d2:
77:3c:1e:25:7d:f2:67:f6:16:72:ce:94:ea:1c:10:
fe:19:5c:95:e6:e2:bc:78:4b:d1:b9:cc:86:42:e0:
1f:78:f2:24:c8:df:6a:a0:7c:73:ce:fb:20:12:80:
27:e3:15:28:66:5a:9c:a1:71:08:0f:b9:54:c9:5f:
14:00:61:39:d8:f3:63:23:77:94:23:1a:27:3c:05:
0a:98:0c:1a:81:e9:29:42:92:1c:5a:f5:87:2c:db:
94:ff:72:cd:69:6b:2e:6d:33:63:c1:3e:be:7e:35:
aa:7f:4e:89:2e:d6:0f:f0:0f:f4:f0:d8:3d:59:3a:
9c:34:68:46:80:57:af:57:10:d2:84:3f:a8:ee:86:
89:be:af:35:11:c2:90:e2:30:16:9c:dd:b4:b0:3d:
85:c4:d0:82:00:51:5b:e5:1c:f6:8e:d0:39:56:a7:
7b:4a:d3:63:53:9b:c8:8c:04:ec:03:2b:01:d1:93:
b2:0e:80:01:8e:d0:c1:fd:57:c8:25:32:04:8c:dd:
8d:7a:46:f9:44:87:da:2e:17:75:3b:87:cd:91:74:
9c:02:08:65:e0:74:d0:31:42:58:a0:56:87:f0:80:
26:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:1C:D4:32:2B:82:27:4C:BD:2A:EB:76:58:7A:D1:17:BB:12:C6:05
X509v3 Authority Key Identifier:
keyid:59:3A:D8:EC:42:5E:2E:05:CA:6E:FA:4F:40:2E:DA:97:3B:EB:42:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WTrY7EJeLgXKbvpPQC7alzvrQsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/082a78-75dc-4de6-bc70-456de460c1b4/1/1xzUMiuCJ0y9Kut2WHrRF7sSxgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/082a78-75dc-4de6-bc70-456de460c1b4/1/WTrY7EJeLgXKbvpPQC7alzvrQsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.37.0/24
IPv6:
2a10:ae40::/32
Signature Algorithm: sha256WithRSAEncryption
83:34:d6:19:8e:b9:f3:72:69:86:bb:23:34:0d:09:92:88:08:
35:9f:45:94:30:96:86:c6:4d:3c:4e:6c:22:ae:6c:1b:22:6f:
96:be:ad:d2:f7:54:05:cc:08:ed:9b:ef:ef:8d:57:f2:03:18:
32:64:79:09:ff:63:d0:fe:f0:02:d9:cb:50:55:e2:17:18:91:
bb:c8:17:39:1a:06:5e:98:cd:4a:a5:7e:70:ab:39:05:1a:d9:
79:0c:14:f8:de:8e:c9:cd:9d:3b:35:2f:44:16:7f:e9:45:0a:
40:7e:36:9e:6f:8d:d0:3d:56:e3:78:d1:de:73:b2:4d:a5:7d:
de:ce:e9:b4:94:f2:96:21:3f:74:25:ea:ea:4c:71:72:a7:25:
7b:94:ac:aa:6b:18:73:94:f0:70:75:bf:2d:1d:40:7c:d1:e0:
8e:86:d1:29:8e:4a:17:ec:12:91:a7:9c:d2:36:e4:cc:31:48:
6f:de:41:0a:13:dc:65:12:ae:98:2a:12:b9:0a:f5:ae:d8:3e:
8e:bd:b9:98:9e:fb:ca:42:d0:ee:6b:5e:89:e9:a9:03:8a:d1:
8f:cc:87:36:8e:79:06:fc:cb:a7:d2:56:70:87:b7:ec:90:a5:
f0:2b:bc:8f:b1:d2:64:96:26:82:3c:5c:3e:77:90:d5:66:0e:
1f:44:80:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:47 2023 by rpki-client on console.sobornost.net