Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/c5be83-48dd-4c7b-8445-31a9c59fad28/1/dwLX0JWRjwMxsU-65_TuKhYCBJQ.roa
File: dwLX0JWRjwMxsU-65_TuKhYCBJQ.roa (raw, json)
Hash identifier: eVfLF1w8xvGJcAPJ7X/uUFQxaixT048ipJYvScjF/Gg=
Subject key identifier: 77:02:D7:D0:95:91:8F:03:31:B1:4F:BA:E7:F4:EE:2A:16:02:04:94
Certificate issuer: /CN=ac691b5b3bdd11f2d99889fa903fb92da922d3b2
Certificate serial: 85BA41
Authority key identifier: AC:69:1B:5B:3B:DD:11:F2:D9:98:89:FA:90:3F:B9:2D:A9:22:D3:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rGkbWzvdEfLZmIn6kD-5Laki07I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/c5be83-48dd-4c7b-8445-31a9c59fad28/1/dwLX0JWRjwMxsU-65_TuKhYCBJQ.roa
Signing time: Sat 01 Jan 2022 03:01:29 +0000
ROA not before: Sat 01 Jan 2022 03:01:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50340
IP address blocks: 195.96.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8763969 (0x85ba41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac691b5b3bdd11f2d99889fa903fb92da922d3b2
Validity
Not Before: Jan 1 03:01:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7702d7d095918f0331b14fbae7f4ee2a16020494
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a4:6d:52:86:a9:ab:60:29:bb:0d:9b:b4:fa:
5f:ba:b1:88:5e:4e:c4:d3:7c:36:23:d9:3b:e8:8c:
93:85:f9:be:81:ef:ee:ce:22:be:e8:c1:d6:b1:04:
92:64:5e:b5:1d:41:73:5b:71:14:b4:b6:cc:3a:0e:
14:4f:32:44:22:e1:cb:07:87:43:7f:74:07:91:24:
c1:3b:37:ae:c7:33:21:00:de:32:b4:54:28:5f:67:
d7:16:b2:94:1f:19:f6:f7:4a:44:a2:ee:a0:de:dd:
58:dd:30:5c:91:28:6a:4d:95:83:2c:62:c6:c3:b0:
41:29:03:5e:14:0b:6b:19:f7:b5:c4:ce:b1:5f:d3:
08:6b:77:9c:cc:f3:8c:26:50:40:75:40:db:1e:51:
5d:9b:b3:f7:5b:79:1d:19:d4:a6:2f:25:82:10:33:
1f:b1:bc:0c:b8:6a:78:c7:74:59:24:8f:e6:52:ea:
7e:57:95:3e:f8:91:1f:c3:fd:9b:c2:91:ee:21:e3:
08:60:cf:0b:b4:1f:ac:2e:28:a1:05:b6:e8:28:d8:
15:cf:a8:88:c0:43:5e:5d:50:e5:47:e1:7f:85:01:
08:2e:b2:29:5b:a6:e7:a4:ae:47:0c:71:28:d0:54:
50:69:27:49:bd:28:b6:f4:a7:cf:f6:98:0c:da:ab:
94:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:02:D7:D0:95:91:8F:03:31:B1:4F:BA:E7:F4:EE:2A:16:02:04:94
X509v3 Authority Key Identifier:
keyid:AC:69:1B:5B:3B:DD:11:F2:D9:98:89:FA:90:3F:B9:2D:A9:22:D3:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rGkbWzvdEfLZmIn6kD-5Laki07I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/c5be83-48dd-4c7b-8445-31a9c59fad28/1/dwLX0JWRjwMxsU-65_TuKhYCBJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/c5be83-48dd-4c7b-8445-31a9c59fad28/1/rGkbWzvdEfLZmIn6kD-5Laki07I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.144.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:09:d5:b1:ef:ca:15:49:b8:55:10:0f:8a:82:65:12:3a:85:
79:aa:0f:31:79:e8:2e:8c:9d:b2:35:e8:04:01:4f:ed:10:5b:
8e:4c:a6:d2:3e:41:ca:99:0a:4e:5b:54:e3:56:03:40:ff:eb:
b9:58:3d:82:8e:aa:23:68:f1:56:84:6a:7a:1a:12:df:0c:cf:
dd:dd:b8:55:71:40:6e:bb:50:0b:6e:8c:6e:9a:e3:c6:a0:27:
1f:07:9b:7a:58:b3:97:b3:f8:31:cd:21:6e:c7:f2:14:47:ec:
f2:f6:74:07:f3:d1:32:79:ba:5f:70:bc:8b:62:f1:a2:59:9e:
34:fb:88:72:40:d2:d3:4d:cd:94:24:af:ff:6a:a7:03:b1:5d:
11:69:04:a7:10:1b:ed:3e:95:59:b1:b7:ab:17:bc:8d:b7:30:
b2:ad:58:a1:c9:91:2d:c5:89:8a:a9:a0:ec:9d:4b:aa:64:ec:
4e:3e:53:50:49:cf:19:09:e0:2c:c3:98:62:de:8b:c4:4a:16:
f1:02:1e:21:30:f0:b8:17:ce:5e:a6:7e:f6:a7:c2:4e:2c:15:
68:3a:87:11:c5:01:df:c0:f7:96:35:ba:a9:b8:6b:3a:f2:e6:
ce:4a:47:47:b7:d3:f1:3f:d1:eb:ca:91:e7:74:99:d3:b9:36:
09:90:a9:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:59 2023 by rpki-client on console.sobornost.net