Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/0cc042-cf2b-4616-92e0-af0556c47a37/1/36raOuV8n3G_4N6sFrWO6GBbhMM.roa
File: 36raOuV8n3G_4N6sFrWO6GBbhMM.roa (raw, json)
Hash identifier: cvx1deATPkcJWsYv0nmGtGzqnovzkjmGGP5lD5pivrw=
Subject key identifier: DF:AA:DA:3A:E5:7C:9F:71:BF:E0:DE:AC:16:B5:8E:E8:60:5B:84:C3
Certificate issuer: /CN=e41bf78b70ac276cbf65bb909f9934082f4d2d79
Certificate serial: 018CCA2B8428B423B79142AF3A7CB027880A
Authority key identifier: E4:1B:F7:8B:70:AC:27:6C:BF:65:BB:90:9F:99:34:08:2F:4D:2D:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Bv3i3CsJ2y_ZbuQn5k0CC9NLXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/0cc042-cf2b-4616-92e0-af0556c47a37/1/36raOuV8n3G_4N6sFrWO6GBbhMM.roa
Signing time: Tue 02 Jan 2024 12:34:58 +0000
ROA not before: Tue 02 Jan 2024 12:34:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205237
IP address blocks: 193.104.25.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:84:28:b4:23:b7:91:42:af:3a:7c:b0:27:88:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e41bf78b70ac276cbf65bb909f9934082f4d2d79
Validity
Not Before: Jan 2 12:34:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dfaada3ae57c9f71bfe0deac16b58ee8605b84c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:94:e4:f1:4d:22:c5:76:57:4c:34:5c:ee:3f:
79:f8:57:93:c0:67:c3:11:ac:2b:08:fe:47:33:88:
3a:75:ff:86:72:69:ce:2c:5d:d3:e5:b5:6f:3f:df:
e2:6a:c3:d0:a3:0b:e5:73:ea:71:3e:ce:f4:bb:c3:
7a:e4:24:32:c6:2d:39:e7:48:47:08:2e:b1:8f:bc:
61:cf:16:a5:e7:3d:36:99:5f:4d:f0:1a:e4:da:1c:
30:f6:ed:f2:54:ad:20:8b:c4:41:dd:c0:2e:d5:c5:
80:2e:29:d1:fa:15:14:70:5b:c0:a6:95:e2:94:8a:
97:28:2b:16:23:f2:12:a3:97:84:f3:ad:61:50:81:
f4:2f:af:a6:53:d7:c8:56:89:4f:c4:87:75:56:dc:
58:51:8f:77:38:47:fc:87:15:d7:d6:dd:fa:bf:2a:
15:99:84:e8:2e:c0:f1:60:07:19:61:69:a8:bb:89:
c3:a2:7b:dc:71:c4:f5:f1:fa:ae:d5:3a:6f:58:2c:
12:0b:9d:8c:73:63:cd:cb:57:7f:a2:90:f5:43:3c:
46:7a:53:4f:ec:46:d3:b0:04:60:ae:5a:cc:a0:43:
69:5c:bd:82:65:5a:dd:9a:b4:46:3f:07:90:e2:fd:
86:57:22:8a:52:e3:81:4e:a2:68:03:20:72:57:93:
54:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:AA:DA:3A:E5:7C:9F:71:BF:E0:DE:AC:16:B5:8E:E8:60:5B:84:C3
X509v3 Authority Key Identifier:
keyid:E4:1B:F7:8B:70:AC:27:6C:BF:65:BB:90:9F:99:34:08:2F:4D:2D:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Bv3i3CsJ2y_ZbuQn5k0CC9NLXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/0cc042-cf2b-4616-92e0-af0556c47a37/1/36raOuV8n3G_4N6sFrWO6GBbhMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/0cc042-cf2b-4616-92e0-af0556c47a37/1/5Bv3i3CsJ2y_ZbuQn5k0CC9NLXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.25.0/24
Signature Algorithm: sha256WithRSAEncryption
49:57:f0:69:14:94:70:ae:1e:58:3b:9b:9b:70:96:22:0b:1f:
40:76:9e:eb:26:1b:f3:4f:6e:f5:47:fa:06:05:ee:66:d5:bb:
6c:c2:fb:8f:04:46:34:09:9b:e4:6d:47:63:59:04:54:d9:09:
13:41:57:03:f3:29:1a:77:c3:b8:b3:b0:61:a7:de:4f:61:d1:
e3:7b:43:b0:31:83:cc:07:ea:49:01:24:fc:97:b1:f9:89:a8:
f3:d6:ba:3e:91:71:13:ee:39:6d:0c:d1:4d:27:e5:64:66:69:
cf:24:6f:18:3b:45:e6:09:2e:ef:33:c8:ef:04:58:ce:d2:b7:
c8:c8:54:3d:af:5d:08:e9:bd:f7:64:b2:fa:a7:1b:ef:66:91:
fb:f9:aa:8c:c4:f8:1e:d0:6a:d5:8a:bb:fa:94:99:4c:2a:43:
27:d2:07:83:c1:b2:f5:fc:4b:3b:b6:32:bf:d3:ab:c7:12:9b:
d5:51:2f:29:c7:38:e7:99:18:d4:22:e7:26:d1:59:ba:16:7b:
cb:2f:65:3f:0b:30:26:6f:06:6e:80:f8:83:c5:18:a7:2d:ac:
70:b9:15:50:df:d4:63:42:e3:34:e5:ab:16:27:2c:84:b3:7e:
68:f5:f0:0f:cb:d8:f4:e2:f2:b1:7c:08:cf:84:f8:97:17:0e:
1b:cf:fc:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:22 2024 by rpki-client on console.sobornost.net