Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/529414-d7a5-49eb-9bd6-cbf1bbb0fd18/1/SRyp8Pv399Ya__IPzYEfB-as9X0.roa
File: SRyp8Pv399Ya__IPzYEfB-as9X0.roa (raw, json)
Hash identifier: l1nUQ60lA8pu0L9aAycuX5TRRh4L6YCqbx0AAEv+p9s=
Subject key identifier: 49:1C:A9:F0:FB:F7:F7:D6:1A:FF:F2:0F:CD:81:1F:07:E6:AC:F5:7D
Certificate issuer: /CN=ff40503cb21a922897971726f6b7eecc253f1193
Certificate serial: 04DE667C
Authority key identifier: FF:40:50:3C:B2:1A:92:28:97:97:17:26:F6:B7:EE:CC:25:3F:11:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_0BQPLIakiiXlxcm9rfuzCU_EZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/529414-d7a5-49eb-9bd6-cbf1bbb0fd18/1/SRyp8Pv399Ya__IPzYEfB-as9X0.roa
Signing time: Sat 01 Jan 2022 12:01:53 +0000
ROA not before: Sat 01 Jan 2022 12:01:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3332
IP address blocks: 193.40.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81684092 (0x4de667c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff40503cb21a922897971726f6b7eecc253f1193
Validity
Not Before: Jan 1 12:01:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=491ca9f0fbf7f7d61afff20fcd811f07e6acf57d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:54:60:85:6d:54:0c:31:c0:e3:6a:0e:64:ed:
f0:99:81:26:2f:cb:0d:0d:5c:d9:b4:23:ea:5c:71:
10:81:71:25:bd:80:28:26:2c:98:b5:72:68:fd:11:
f5:6b:52:31:52:1e:91:97:a7:1a:91:3c:a8:db:f0:
74:26:bd:87:8e:22:49:af:8a:0a:4f:93:35:f9:c5:
7f:d3:41:86:5e:9a:64:19:5b:3b:25:bf:30:7f:31:
e2:73:09:90:ae:f6:89:90:64:62:26:e3:7c:4e:28:
c5:db:4f:e3:5a:90:19:ca:1d:87:cb:35:d6:a4:e6:
7a:cb:e6:2c:8c:34:92:a9:46:2b:d3:58:5a:a9:73:
21:3d:0c:ad:4b:a6:22:c3:0c:9a:68:1c:d8:42:b3:
79:26:7a:85:bc:b6:22:ea:09:44:43:45:5c:0c:8e:
65:d4:60:11:3b:1e:6a:37:aa:cf:b6:4c:eb:b4:6e:
4f:63:c9:98:7c:6b:c3:3e:a0:67:31:01:e7:e3:fc:
71:5b:3f:c4:16:8c:8b:0c:6d:87:4a:b1:10:1d:ef:
b2:85:a9:a1:bd:23:d6:f7:6c:21:e3:4e:46:55:f1:
96:b7:c7:58:b7:af:a3:98:83:9d:7f:4b:99:43:bd:
39:00:7c:2a:83:45:41:d9:e2:dc:05:cf:84:a0:af:
18:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:1C:A9:F0:FB:F7:F7:D6:1A:FF:F2:0F:CD:81:1F:07:E6:AC:F5:7D
X509v3 Authority Key Identifier:
keyid:FF:40:50:3C:B2:1A:92:28:97:97:17:26:F6:B7:EE:CC:25:3F:11:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_0BQPLIakiiXlxcm9rfuzCU_EZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/529414-d7a5-49eb-9bd6-cbf1bbb0fd18/1/SRyp8Pv399Ya__IPzYEfB-as9X0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/529414-d7a5-49eb-9bd6-cbf1bbb0fd18/1/_0BQPLIakiiXlxcm9rfuzCU_EZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.40.195.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:9b:12:51:3d:82:74:55:00:6e:98:8a:83:a5:bc:57:fb:52:
78:f9:11:67:8d:eb:5f:38:8f:46:ce:40:7c:3c:a1:ec:55:dc:
59:3e:42:2c:5c:2f:15:fb:54:18:56:c2:c8:27:f0:2b:e3:26:
e9:0d:eb:0c:61:4e:25:1a:d7:1a:1f:90:67:52:e5:16:7e:3b:
11:a6:11:ed:70:c1:a1:f4:78:53:e2:a1:67:cf:43:4a:b7:7f:
b0:76:6d:88:49:01:59:85:01:e2:39:90:62:e5:8c:a6:1c:72:
b8:45:9f:a3:53:5b:8b:9c:81:91:3f:c0:e3:a5:02:f1:a5:57:
16:dd:39:e0:e7:04:b2:bb:b2:63:eb:e2:15:9b:34:b1:e3:93:
4b:cb:e3:0e:65:a7:7b:45:12:d4:ec:e4:61:90:d4:37:f4:11:
f5:ee:61:28:60:38:c4:d5:75:40:25:5e:2a:8c:d2:fa:41:e4:
15:0a:41:ba:9a:86:aa:ba:54:d6:55:f1:c9:79:67:89:23:d0:
c0:76:74:d2:42:6b:6e:d2:91:78:64:ba:f0:2a:a2:b9:04:0a:
5f:d0:03:fb:19:81:82:41:3a:12:19:4e:e8:c4:7d:1b:81:6d:
99:6d:98:f4:63:db:43:d5:9c:b8:5e:b7:b4:57:bd:50:56:80:
3f:9e:4b:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:22 2023 by rpki-client on console.sobornost.net