Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/a4280e-d094-4a74-b8f6-7e859ff4651c/1/g2JLbztP81aOcwM5GgUIWSNSwwQ.roa
File: g2JLbztP81aOcwM5GgUIWSNSwwQ.roa (raw, json)
Hash identifier: PEvx7ZJRewWRjS4cwv5abGY81hB6aabK7nWJ9jv3HGU=
Subject key identifier: 83:62:4B:6F:3B:4F:F3:56:8E:73:03:39:1A:05:08:59:23:52:C3:04
Certificate issuer: /CN=b93ca6fd00327aedf1d4e3275562cae733b4e743
Certificate serial: 018CC4923A36CD2957D1C9904B36F2473F7C
Authority key identifier: B9:3C:A6:FD:00:32:7A:ED:F1:D4:E3:27:55:62:CA:E7:33:B4:E7:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uTym_QAyeu3x1OMnVWLK5zO050M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/a4280e-d094-4a74-b8f6-7e859ff4651c/1/g2JLbztP81aOcwM5GgUIWSNSwwQ.roa
Signing time: Mon 01 Jan 2024 10:29:26 +0000
ROA not before: Mon 01 Jan 2024 10:29:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34301
IP address blocks: 195.242.88.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:92:3a:36:cd:29:57:d1:c9:90:4b:36:f2:47:3f:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b93ca6fd00327aedf1d4e3275562cae733b4e743
Validity
Not Before: Jan 1 10:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=83624b6f3b4ff3568e7303391a0508592352c304
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f3:f8:26:74:25:9d:d4:9b:23:7c:4c:f5:08:
93:f8:89:b3:0b:bb:76:44:cd:c5:c7:73:dc:1a:7f:
40:b0:db:08:81:65:48:1d:e5:67:22:61:3d:f2:ed:
e4:b0:d0:85:74:fa:bd:cc:9e:ba:46:26:f9:9c:53:
b7:8e:6c:3e:e1:57:64:dd:be:22:10:5a:82:ed:b9:
ba:10:8b:f5:6b:62:16:b2:c8:a9:c5:23:d6:18:3d:
06:ce:56:33:25:61:7f:e3:c2:80:83:ee:4c:33:af:
d2:62:1e:a1:ce:8b:0a:e9:0a:ec:06:ce:e5:54:60:
8d:4d:2a:8c:38:d4:14:40:27:f9:44:cd:56:ee:84:
8d:00:49:fc:06:43:5e:06:34:f6:bf:54:b1:25:32:
e6:2a:3d:a1:8a:df:8d:4b:5b:6e:e1:37:4a:a1:4a:
8c:6e:6b:19:f2:d0:24:65:43:1c:3e:86:eb:9b:1b:
04:0b:53:ec:fa:8c:f8:83:e3:52:b6:5e:8a:93:02:
92:2e:04:80:60:ec:0f:f1:29:7c:ba:7d:db:6b:27:
26:b5:41:cf:af:e9:10:85:79:11:dc:19:f4:e2:3c:
95:21:2a:4a:9d:a2:cc:91:eb:bf:ac:f9:12:46:2d:
d7:dd:8d:52:5b:a3:ff:8c:06:0f:8c:ac:35:bf:3e:
49:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:62:4B:6F:3B:4F:F3:56:8E:73:03:39:1A:05:08:59:23:52:C3:04
X509v3 Authority Key Identifier:
keyid:B9:3C:A6:FD:00:32:7A:ED:F1:D4:E3:27:55:62:CA:E7:33:B4:E7:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uTym_QAyeu3x1OMnVWLK5zO050M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/a4280e-d094-4a74-b8f6-7e859ff4651c/1/g2JLbztP81aOcwM5GgUIWSNSwwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/a4280e-d094-4a74-b8f6-7e859ff4651c/1/uTym_QAyeu3x1OMnVWLK5zO050M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.242.88.0/23
Signature Algorithm: sha256WithRSAEncryption
10:eb:9a:71:89:cf:7f:f9:51:b6:52:20:52:26:6a:6a:73:5d:
e6:08:81:b9:34:67:97:0a:e3:76:18:96:c0:d3:9b:e2:69:9e:
a9:75:4f:a0:9b:0b:38:b8:4a:84:c9:1e:b8:c6:a3:16:0f:b7:
55:cf:5f:f0:26:18:b8:6c:b2:dd:48:d7:ed:c2:02:87:ce:26:
f3:8a:e4:3a:6b:3f:94:5d:ae:fb:16:92:31:e2:83:86:06:5e:
03:f9:93:71:cb:ff:5a:6f:29:8b:3c:fd:41:16:80:9f:2d:ba:
31:08:f2:53:a9:91:0b:94:8e:7f:86:34:41:c9:0a:c5:60:a3:
a5:9d:02:c2:ff:5e:bd:33:72:37:d8:da:10:bf:75:bc:bd:cd:
41:d0:27:b4:ab:18:eb:4f:b3:08:6a:5b:ad:86:98:96:a3:26:
2b:0b:80:4a:90:ee:48:5d:49:9c:30:3c:30:07:c9:36:d6:ab:
48:4d:b4:82:56:61:ea:75:53:c9:4a:38:a4:b4:cd:a2:7a:13:
61:03:fb:33:4f:f4:86:7a:d7:89:86:1a:65:c7:58:f8:62:2a:
a5:96:a1:89:f7:aa:6a:6f:da:34:88:d8:18:a0:eb:33:27:bb:
69:f3:98:68:2d:94:32:b8:79:33:41:19:c0:27:b9:36:8e:5d:
c0:ec:6f:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:14 2024 by rpki-client on console.sobornost.net