Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/19e5d8-8d29-4d81-b52d-4cd6de9fa902/1/1-xnNRLkiiTUjy1iufZb0PAkTybc.roa
File: 1-xnNRLkiiTUjy1iufZb0PAkTybc.roa (raw, json)
Hash identifier: aRsNr2yFGlOfTAa9/Ql3Ne25yfnlO7Pr2mscbkxK+Os=
Subject key identifier: FB:19:CD:44:B9:22:89:35:23:CB:58:AE:7D:96:F4:3C:09:13:C9:B7
Certificate issuer: /CN=009361c22d26a22a8b3b2c53ab5c57a77032f36e
Certificate serial: 053209E7
Authority key identifier: 00:93:61:C2:2D:26:A2:2A:8B:3B:2C:53:AB:5C:57:A7:70:32:F3:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AJNhwi0moiqLOyxTq1xXp3Ay824.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/19e5d8-8d29-4d81-b52d-4cd6de9fa902/1/1-xnNRLkiiTUjy1iufZb0PAkTybc.roa
Signing time: Sat 01 Jan 2022 11:58:59 +0000
ROA not before: Sat 01 Jan 2022 11:58:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8860
IP address blocks: 194.145.63.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87165415 (0x53209e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=009361c22d26a22a8b3b2c53ab5c57a77032f36e
Validity
Not Before: Jan 1 11:58:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb19cd44b922893523cb58ae7d96f43c0913c9b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:24:ee:63:8f:ab:b1:34:9a:96:71:24:f8:d5:
17:07:ea:89:57:e3:f1:6d:58:9b:aa:1c:08:11:ac:
03:0c:32:40:5b:74:e6:b6:84:cc:b5:f7:2f:95:41:
aa:90:dd:75:89:de:26:69:68:85:b4:24:f2:83:73:
31:d3:88:ed:76:65:e9:57:a4:db:40:14:dd:53:9b:
c2:ee:0f:26:4f:bd:ca:1b:7a:f7:71:35:bb:90:db:
b5:4e:4c:eb:c4:33:b9:4a:fa:6b:27:43:b4:a2:60:
bf:fd:5d:7d:b7:d0:14:72:1e:b7:73:d7:bc:7d:e6:
01:21:e2:e1:fb:24:27:ba:99:c3:89:a6:9b:8e:f0:
09:ea:ad:12:a5:b9:f4:19:30:cc:c5:c2:0c:0d:48:
8f:f6:80:40:7a:9e:14:ba:be:e2:1e:0c:f6:51:2c:
ba:7a:f8:08:c2:03:f9:9a:02:b9:62:36:dd:6b:d9:
75:3d:f1:7b:78:59:1e:a2:97:62:50:9f:bd:9d:ee:
27:e3:5d:e3:26:56:16:7a:c4:7b:86:64:65:32:c4:
dd:ad:ac:b2:e4:88:ed:62:1f:9a:e4:5c:2a:11:0a:
c8:d7:f0:04:4e:77:e3:c4:5a:0f:54:64:6e:8a:58:
83:36:e1:1a:9c:a8:a9:1a:de:07:1c:49:24:63:2b:
0b:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:19:CD:44:B9:22:89:35:23:CB:58:AE:7D:96:F4:3C:09:13:C9:B7
X509v3 Authority Key Identifier:
keyid:00:93:61:C2:2D:26:A2:2A:8B:3B:2C:53:AB:5C:57:A7:70:32:F3:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AJNhwi0moiqLOyxTq1xXp3Ay824.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/19e5d8-8d29-4d81-b52d-4cd6de9fa902/1/1-xnNRLkiiTUjy1iufZb0PAkTybc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/19e5d8-8d29-4d81-b52d-4cd6de9fa902/1/AJNhwi0moiqLOyxTq1xXp3Ay824.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.145.63.0/24
Signature Algorithm: sha256WithRSAEncryption
68:52:63:13:a1:90:dd:fe:e2:13:bf:10:d7:37:25:05:3f:5b:
c5:b7:5a:83:42:47:55:c7:f9:d6:88:b8:61:ab:eb:59:60:59:
c2:14:fc:ed:52:f5:27:fe:ac:ee:74:80:85:e5:7f:ce:c4:e0:
f7:77:7c:40:24:a0:e8:dc:19:fd:3b:32:0f:29:8c:ec:91:cf:
e7:93:1d:cc:ef:57:0c:18:c6:eb:14:35:a8:e2:e9:99:d9:24:
41:50:42:5c:e2:1e:5f:92:56:5d:cd:a0:15:32:3e:5f:1b:1c:
4d:66:23:40:b7:b2:0a:55:08:a4:87:86:96:b1:15:a3:44:6f:
b8:26:df:32:d8:c1:c2:79:ed:d7:21:c9:2d:3b:d7:84:1e:23:
51:37:d0:18:3c:b0:18:e4:7f:4b:bc:8b:96:7f:a1:c9:bb:df:
bc:28:15:25:c2:2a:3f:62:64:9e:1e:58:24:04:78:a9:5c:f9:
b1:a6:39:5c:2d:c2:88:fa:76:00:11:19:2d:67:d2:a0:c6:3f:
68:44:42:81:3f:9a:52:04:87:a2:90:db:09:8b:45:3a:46:75:
60:6d:e6:c6:9e:86:c7:bb:bb:26:50:0d:72:cd:22:ba:ec:b2:
ac:0b:19:01:5a:5e:f7:04:b8:23:ca:c2:b0:82:c2:c2:34:8e:
de:52:42:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:21 2023 by rpki-client on console.sobornost.net