Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/8d1e2b-319f-44ac-b969-e4a50f71da0c/1/wxT3hdztvnJZZhFzJc7q4vb0ToI.roa
File: wxT3hdztvnJZZhFzJc7q4vb0ToI.roa (raw, json)
Hash identifier: Um93W8HqXMC7UWTDdG3IG5UNkINq9g2tW1UIW8uXHCc=
Subject key identifier: C3:14:F7:85:DC:ED:BE:72:59:66:11:73:25:CE:EA:E2:F6:F4:4E:82
Certificate issuer: /CN=208fa2b8733f5318267ad13bec0794346277cf25
Certificate serial: 0190FF2D69A97F6320774730D3240731DAF3
Authority key identifier: 20:8F:A2:B8:73:3F:53:18:26:7A:D1:3B:EC:07:94:34:62:77:CF:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/II-iuHM_UxgmetE77AeUNGJ3zyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/8d1e2b-319f-44ac-b969-e4a50f71da0c/1/wxT3hdztvnJZZhFzJc7q4vb0ToI.roa
Signing time: Mon 29 Jul 2024 15:48:04 +0000
ROA not before: Mon 29 Jul 2024 15:48:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215921
IP address blocks: 195.28.188.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ff:2d:69:a9:7f:63:20:77:47:30:d3:24:07:31:da:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=208fa2b8733f5318267ad13bec0794346277cf25
Validity
Not Before: Jul 29 15:48:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c314f785dcedbe725966117325ceeae2f6f44e82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f9:0d:ca:6e:5c:4a:ab:fb:21:6d:9e:0d:5d:
66:0b:e0:02:cb:60:55:38:28:d0:4a:fe:11:a5:d5:
4b:b2:20:3e:83:c9:6f:37:d8:cc:19:fa:bc:71:bb:
50:70:2d:20:9d:99:25:28:61:68:2b:cf:11:0a:17:
ba:7c:08:11:01:05:67:4f:c1:16:f4:57:04:2e:b7:
9d:c1:25:79:6a:21:59:e1:74:ad:b8:de:52:10:5a:
89:9e:31:2b:d0:74:d5:04:d9:2b:1e:e6:13:23:27:
59:d8:7a:41:35:36:8f:0a:61:0f:e6:f2:6c:43:ca:
41:65:7c:c9:41:74:cc:46:99:c1:e0:91:61:5b:dc:
18:19:bf:e0:04:38:f7:7d:b2:28:e0:e3:4a:eb:83:
94:ca:8a:49:fe:3c:9d:f7:a4:08:8c:2c:6d:c1:d5:
ef:96:48:04:51:f0:74:b7:cd:d1:18:56:22:3b:c7:
80:ef:d4:88:fc:64:3e:38:bd:60:af:b1:56:41:77:
11:76:3e:0a:6b:99:6b:fc:7d:31:c5:c6:c4:50:5c:
00:72:a6:df:f6:84:fd:ea:32:42:01:2d:b0:e6:2c:
4c:2d:bb:8a:a1:40:8b:29:5d:c3:03:c0:c2:ba:62:
29:ba:b8:c9:2f:0e:8e:d8:c3:07:74:4c:2b:8f:8f:
84:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:14:F7:85:DC:ED:BE:72:59:66:11:73:25:CE:EA:E2:F6:F4:4E:82
X509v3 Authority Key Identifier:
keyid:20:8F:A2:B8:73:3F:53:18:26:7A:D1:3B:EC:07:94:34:62:77:CF:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/II-iuHM_UxgmetE77AeUNGJ3zyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/8d1e2b-319f-44ac-b969-e4a50f71da0c/1/wxT3hdztvnJZZhFzJc7q4vb0ToI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/8d1e2b-319f-44ac-b969-e4a50f71da0c/1/II-iuHM_UxgmetE77AeUNGJ3zyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.28.188.0/24
Signature Algorithm: sha256WithRSAEncryption
69:1a:e2:d4:c0:7b:b6:d8:f3:a0:3e:8b:f4:c9:45:5c:31:cc:
2c:81:af:44:09:e2:49:81:43:d0:85:d5:8c:bb:53:00:31:39:
5e:23:5d:c9:da:dd:58:a9:81:63:30:66:8c:a2:30:c6:1e:81:
65:7f:e3:a3:53:28:25:bc:bd:b0:66:f3:a3:e1:dd:74:29:1b:
04:e8:48:4d:c2:79:5a:ef:12:e8:3f:03:a9:a6:b2:15:2f:76:
f1:b7:a7:b8:bd:c2:27:82:4d:6d:5b:e8:a8:74:bb:2c:fb:88:
1e:99:89:57:6f:1f:b9:85:cf:6c:d8:21:4a:d9:e0:12:67:20:
31:fa:61:c7:1a:ff:00:6a:ce:a6:fb:87:cf:0d:a5:02:6f:16:
00:58:dc:d0:ae:7a:ff:e2:00:b4:9e:ba:76:28:70:0a:5d:99:
7f:82:f0:70:db:fe:29:24:ea:b4:21:1a:28:66:95:e1:7b:78:
06:ed:80:d5:62:cd:f1:01:ed:ee:08:96:d6:ea:83:c6:ee:22:
22:87:de:70:e7:da:98:34:75:39:6b:1e:1c:79:7d:c3:42:de:
2d:b0:17:7e:66:f1:97:95:5c:f0:bb:a8:73:86:c2:48:5b:42:
8c:02:51:e3:a1:74:6a:b8:4e:21:4c:59:4c:7b:f7:40:f3:bf:
8c:65:27:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 19:18:12 2024 by rpki-client on console.sobornost.net