Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e9e798-4ef3-4aa8-81f0-305658f91635/1/moS_gqd8BV1ovDmAobNPqm1MRno.roa
File: moS_gqd8BV1ovDmAobNPqm1MRno.roa (raw, json)
Hash identifier: qp+qJbBDO36kGTtGbU2DbTRpJOd0Y8RZFfwAmWquRss=
Subject key identifier: 9A:84:BF:82:A7:7C:05:5D:68:BC:39:80:A1:B3:4F:AA:6D:4C:46:7A
Certificate issuer: /CN=c875f76e8f894247923c0e276234d98a4c3ec5c2
Certificate serial: 018CC501157342C003ED33CB21987F5F4ECC
Authority key identifier: C8:75:F7:6E:8F:89:42:47:92:3C:0E:27:62:34:D9:8A:4C:3E:C5:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yHX3bo-JQkeSPA4nYjTZikw-xcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e9e798-4ef3-4aa8-81f0-305658f91635/1/moS_gqd8BV1ovDmAobNPqm1MRno.roa
Signing time: Mon 01 Jan 2024 12:30:31 +0000
ROA not before: Mon 01 Jan 2024 12:30:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61207
IP address blocks: 185.41.148.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:15:73:42:c0:03:ed:33:cb:21:98:7f:5f:4e:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c875f76e8f894247923c0e276234d98a4c3ec5c2
Validity
Not Before: Jan 1 12:30:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9a84bf82a77c055d68bc3980a1b34faa6d4c467a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:fd:d1:ae:1d:ef:c5:57:ff:c2:9a:95:ee:7d:
51:2f:72:d3:20:6b:38:58:df:04:6f:ec:65:2c:e8:
86:46:d6:01:c0:41:0f:be:2e:78:0a:a2:34:16:3e:
af:70:42:bc:8d:d4:54:43:db:ec:23:82:8c:42:72:
92:44:a8:11:d8:76:57:61:ae:f6:06:c1:22:75:e8:
1d:57:ba:80:c8:9e:07:39:89:40:22:f4:77:6d:9a:
00:4f:6a:05:cb:91:93:12:cd:2b:c9:c9:cd:9d:95:
8e:4d:91:7f:57:df:f4:8a:8e:4b:7b:94:f6:7b:89:
33:71:92:0e:a1:e4:3e:4a:3d:0d:f9:76:b2:e7:92:
1d:a1:6c:c6:d2:b9:7a:51:c9:2f:6c:0e:ff:7e:d0:
52:ac:8f:0f:83:b2:f4:00:fd:ab:0f:68:8f:7b:00:
ae:57:56:9e:d2:0d:09:bb:9d:e0:1b:93:ed:2f:54:
b2:5a:82:66:e2:16:9f:19:69:07:d4:98:00:1c:15:
4c:3b:fa:94:77:36:26:3d:76:80:86:af:fa:cb:c6:
c1:c1:0e:7d:f0:02:02:3c:94:4c:88:96:a6:27:3b:
ab:75:ac:6e:f8:8e:a9:66:74:b7:ae:d7:cb:e0:76:
55:48:68:a2:8f:13:0d:49:bb:98:65:18:bf:ed:86:
d0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:84:BF:82:A7:7C:05:5D:68:BC:39:80:A1:B3:4F:AA:6D:4C:46:7A
X509v3 Authority Key Identifier:
keyid:C8:75:F7:6E:8F:89:42:47:92:3C:0E:27:62:34:D9:8A:4C:3E:C5:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHX3bo-JQkeSPA4nYjTZikw-xcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e9e798-4ef3-4aa8-81f0-305658f91635/1/moS_gqd8BV1ovDmAobNPqm1MRno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e9e798-4ef3-4aa8-81f0-305658f91635/1/yHX3bo-JQkeSPA4nYjTZikw-xcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.41.148.0/24
Signature Algorithm: sha256WithRSAEncryption
52:a3:ba:c2:9e:3e:51:02:1d:b0:7a:c2:d3:e6:37:8c:d5:0c:
a3:4a:98:91:64:75:23:4f:69:ae:49:6f:ba:38:04:b3:73:4c:
21:34:b3:2a:73:e8:9e:48:2c:f8:6d:b1:ad:41:3a:24:66:8a:
8f:f8:95:fe:a8:06:8e:75:80:b1:0e:b4:51:7a:1e:88:00:2f:
c1:2b:f9:93:c6:3c:1f:ae:26:57:7e:8b:a2:77:a5:d4:fc:2e:
d0:e4:c9:87:c9:a5:46:8e:ad:2d:16:b8:af:5d:11:02:36:a0:
bf:ff:a7:d5:a9:c9:71:47:59:9a:04:fe:50:15:a7:81:62:38:
47:f1:08:f8:8a:29:2d:98:59:78:c0:62:55:06:81:0f:df:49:
28:16:f1:b6:22:f8:12:df:b8:a0:c6:20:1c:9b:15:d6:fa:7f:
90:14:f1:9d:e0:b1:78:02:f4:39:2a:71:b9:2e:63:40:a8:7d:
45:d2:db:08:73:87:30:31:f5:3c:df:8b:4f:1a:af:72:d5:a4:
ab:09:ea:9d:31:45:08:f9:c4:6b:1f:29:af:b3:35:31:87:82:
cd:70:63:09:8a:85:1b:ec:2a:23:fd:77:43:67:52:b2:e8:0f:
d5:24:97:e5:c0:48:8f:d7:a9:06:ba:7b:6b:f6:a1:09:c8:c6:
eb:bf:46:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:10 2024 by rpki-client on console.sobornost.net