Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/_L2ZgzZ9MjTQ6_dUi_yee7eS-sc.roa
File: _L2ZgzZ9MjTQ6_dUi_yee7eS-sc.roa (raw, json)
Hash identifier: ovkUqKJ1Dsn2wakahcHq07tUijDzIUcf/iTNrs4YXhk=
Subject key identifier: FC:BD:99:83:36:7D:32:34:D0:EB:F7:54:8B:FC:9E:7B:B7:92:FA:C7
Certificate issuer: /CN=5d86c47da6d9079347b60f04ed5c5557fe983eb8
Certificate serial: 0193E86E904A20D1673475A58C199CFDAD52
Authority key identifier: 5D:86:C4:7D:A6:D9:07:93:47:B6:0F:04:ED:5C:55:57:FE:98:3E:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYbEfabZB5NHtg8E7VxVV_6YPrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/_L2ZgzZ9MjTQ6_dUi_yee7eS-sc.roa
Signing time: Sat 21 Dec 2024 08:56:20 +0000
ROA not before: Sat 21 Dec 2024 08:56:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16125
IP address blocks: 5.253.191.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:e8:6e:90:4a:20:d1:67:34:75:a5:8c:19:9c:fd:ad:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d86c47da6d9079347b60f04ed5c5557fe983eb8
Validity
Not Before: Dec 21 08:56:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fcbd9983367d3234d0ebf7548bfc9e7bb792fac7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:89:2b:23:6e:e4:26:19:2a:2e:76:5b:7d:ff:
6e:4b:7c:1b:fe:61:0b:d7:ea:31:a7:e9:bb:01:a8:
7e:cd:a0:d7:4d:7d:4d:18:5d:26:58:98:3e:dc:f4:
37:b7:e4:0d:23:90:ad:f3:98:42:30:ad:19:d4:f2:
7d:97:7f:6c:04:e2:46:ac:13:de:e5:1e:83:29:6a:
44:bf:9b:53:54:d4:2a:5c:60:3e:e2:8a:84:b6:4d:
a9:2a:ad:2e:ca:00:ad:fd:5f:0a:c1:2c:e1:94:ca:
ed:b2:ed:91:ae:9a:e2:e5:6f:f5:b5:40:5c:08:cb:
4a:81:1b:69:95:e9:e6:e6:ec:b8:5d:48:9d:7e:1e:
96:7e:08:5f:8e:ca:ee:d3:47:e3:d0:58:71:42:fc:
91:31:28:dd:17:92:83:91:15:50:8e:28:e6:ec:02:
12:12:9e:dd:42:35:7d:00:e4:0b:71:fd:a2:9c:79:
ea:eb:b8:df:b3:e1:6b:26:30:17:89:a4:8b:7b:c2:
b2:be:cf:32:4a:2b:15:ab:9f:e8:51:e2:06:3e:3e:
9e:ea:29:7c:58:58:05:34:12:ec:89:21:0f:5a:c1:
49:28:26:f5:bb:dc:f5:2c:71:75:f9:93:79:db:93:
05:24:49:f9:8e:16:80:f6:82:c9:9c:7d:50:c4:72:
65:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:BD:99:83:36:7D:32:34:D0:EB:F7:54:8B:FC:9E:7B:B7:92:FA:C7
X509v3 Authority Key Identifier:
keyid:5D:86:C4:7D:A6:D9:07:93:47:B6:0F:04:ED:5C:55:57:FE:98:3E:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYbEfabZB5NHtg8E7VxVV_6YPrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/_L2ZgzZ9MjTQ6_dUi_yee7eS-sc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/XYbEfabZB5NHtg8E7VxVV_6YPrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.191.0/24
Signature Algorithm: sha256WithRSAEncryption
04:a7:55:61:f2:07:26:d3:27:49:ec:64:ff:d6:ba:bd:04:16:
df:be:17:ba:ea:51:6b:ba:08:d5:e5:a5:c0:b7:46:90:8e:e5:
71:0e:e1:57:77:93:b5:24:6d:2a:19:32:ac:70:a5:81:64:5b:
74:11:c1:30:be:c7:14:03:21:89:c4:97:3c:e9:b3:9b:db:a1:
cc:f0:7d:3d:be:68:17:cd:63:6a:10:1e:8f:21:6b:f7:d1:19:
3a:04:30:27:e5:6a:99:fa:d8:4d:66:ab:ba:f6:f9:a5:03:fe:
4c:0b:36:a9:df:26:c3:e6:ab:18:a7:8c:cc:a4:08:12:5a:29:
fd:f4:35:1d:d6:71:30:4e:23:63:38:be:2c:17:51:99:45:e3:
13:f0:0d:44:34:bf:98:a1:74:7f:58:6d:37:a6:c6:ba:8e:a0:
71:37:c0:e8:4e:bb:a8:af:16:c4:17:77:9c:58:d9:fa:65:ea:
83:07:8f:6f:2b:1d:05:9e:79:6e:dd:de:ed:a5:3b:a7:ba:ef:
8f:c6:26:9c:e2:78:9d:7d:9e:cf:fe:5d:35:62:4a:6d:a5:55:
7e:9a:d1:59:01:13:8e:ac:7b:3f:a3:c3:05:c6:4c:2a:0e:d2:
ad:76:e3:39:44:27:d7:bb:d1:5d:b6:43:bd:b1:56:ce:59:df:
ca:4e:3c:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:12 2024 by rpki-client on console.sobornost.net