Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/8d1e2b-319f-44ac-b969-e4a50f71da0c/1/beFYbzXJLJ2tOxVYVRVjI8V42mc.roa
File: beFYbzXJLJ2tOxVYVRVjI8V42mc.roa (raw, json)
Hash identifier: VaWVbo54kBVB1vLxDpIH+M5Byh6+KZpoILfErMtfRqY=
Subject key identifier: 6D:E1:58:6F:35:C9:2C:9D:AD:3B:15:58:55:15:63:23:C5:78:DA:67
Certificate issuer: /CN=208fa2b8733f5318267ad13bec0794346277cf25
Certificate serial: 0192E6617D179EBF8FDA09C96F4542744B11
Authority key identifier: 20:8F:A2:B8:73:3F:53:18:26:7A:D1:3B:EC:07:94:34:62:77:CF:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/II-iuHM_UxgmetE77AeUNGJ3zyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/8d1e2b-319f-44ac-b969-e4a50f71da0c/1/beFYbzXJLJ2tOxVYVRVjI8V42mc.roa
Signing time: Fri 01 Nov 2024 06:20:01 +0000
ROA not before: Fri 01 Nov 2024 06:20:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215921
IP address blocks: 195.28.188.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e6:61:7d:17:9e:bf:8f:da:09:c9:6f:45:42:74:4b:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=208fa2b8733f5318267ad13bec0794346277cf25
Validity
Not Before: Nov 1 06:20:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6de1586f35c92c9dad3b155855156323c578da67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f1:73:eb:5a:c6:7b:be:4b:be:1c:50:52:3e:
39:5b:ba:88:ed:43:f5:20:cc:71:af:4d:00:dc:6b:
01:b5:da:72:59:b8:34:2c:43:19:bd:c5:06:e5:70:
01:7b:e8:e6:8a:98:3b:75:70:8f:da:94:fd:f0:47:
ea:04:16:44:f8:0f:d2:f3:32:d7:0b:2a:f2:68:f2:
82:99:8b:b2:5d:48:04:82:83:bf:3d:c9:ea:00:48:
ef:12:d2:6d:26:07:ce:af:15:15:98:6c:ce:43:fe:
1a:78:6c:d8:32:91:ff:56:40:1b:69:ae:68:45:5e:
a0:5f:f8:38:c5:67:84:f0:6c:70:3f:c2:40:67:44:
c7:ae:a5:7e:ed:85:01:05:94:a1:f5:73:62:57:da:
9e:7b:38:6a:2d:9f:de:56:58:28:9a:11:02:ac:cb:
48:d3:11:9f:c1:54:7e:9a:2a:c7:18:14:46:8c:7e:
79:5d:8f:46:60:53:54:d7:46:a2:b8:d2:20:7a:f8:
88:69:5e:52:71:1c:60:b7:4f:cd:58:e9:79:19:a3:
7a:ff:6c:b2:ef:73:e1:51:3e:6e:12:45:7c:28:44:
84:6c:9d:b5:ff:76:e3:d4:3f:6e:54:08:35:26:0d:
11:d0:60:22:89:36:1c:35:a6:01:a0:b2:a6:67:e9:
40:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:E1:58:6F:35:C9:2C:9D:AD:3B:15:58:55:15:63:23:C5:78:DA:67
X509v3 Authority Key Identifier:
keyid:20:8F:A2:B8:73:3F:53:18:26:7A:D1:3B:EC:07:94:34:62:77:CF:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/II-iuHM_UxgmetE77AeUNGJ3zyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/8d1e2b-319f-44ac-b969-e4a50f71da0c/1/beFYbzXJLJ2tOxVYVRVjI8V42mc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/8d1e2b-319f-44ac-b969-e4a50f71da0c/1/II-iuHM_UxgmetE77AeUNGJ3zyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.28.188.0/24
Signature Algorithm: sha256WithRSAEncryption
83:c8:15:65:ad:0f:bf:a7:f1:29:b1:e8:06:44:d8:20:6a:49:
a1:51:01:df:05:64:d7:3b:45:b0:e8:ab:d8:84:5c:82:b2:bc:
85:8a:12:86:62:b5:f6:10:51:a0:e0:ae:4d:ea:18:76:56:5b:
84:49:bf:02:70:3a:60:98:d1:98:3e:5a:ed:2d:0b:52:f9:3a:
c7:0c:55:59:58:b0:b9:f8:b2:27:81:78:4b:da:b9:1a:f8:f8:
fd:ac:e6:f4:64:2c:df:6d:a2:65:95:8f:71:d7:af:5c:af:38:
fd:a0:97:96:81:fd:da:ea:40:66:57:9e:fc:59:86:0a:3d:ba:
fb:5e:9e:6c:02:c2:9d:67:34:da:8b:26:8f:4c:87:41:e8:1a:
b7:44:07:51:75:a5:9d:c2:dd:21:e4:a9:40:14:84:fe:6e:e2:
f0:96:c4:f1:1f:8d:67:38:d5:40:4c:2d:38:d1:37:b3:9d:ad:
78:f8:a9:08:99:31:43:38:a9:40:f5:3d:09:df:3b:15:f0:e8:
59:bb:5c:80:a1:24:5e:48:70:51:d7:73:74:42:8a:68:49:b8:
55:14:36:ff:8b:18:d1:09:59:11:dc:31:f5:ae:7a:1a:69:4f:
06:6e:80:0e:92:37:37:5a:c2:48:53:19:d5:cb:4c:d9:8c:2c:
9d:da:46:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 14 16:47:32 2024 by rpki-client on console.sobornost.net