Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/4df8f1-241d-4339-b0f6-d65ad430beb7/1/l2i1O4vYENRyIvdbU_DzJugm4Gk.roa
File: l2i1O4vYENRyIvdbU_DzJugm4Gk.roa (raw, json)
Hash identifier: wtFhpvWIOhNhkB8pNcne+hgVklLjDapduQlP5e5o8To=
Subject key identifier: 97:68:B5:3B:8B:D8:10:D4:72:22:F7:5B:53:F0:F3:26:E8:26:E0:69
Certificate issuer: /CN=0d291922587f750f78a19795cbd89bc729af17d5
Certificate serial: 018CC7274DD2CEE9E9C79B555B60DEADD963
Authority key identifier: 0D:29:19:22:58:7F:75:0F:78:A1:97:95:CB:D8:9B:C7:29:AF:17:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DSkZIlh_dQ94oZeVy9ibxymvF9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/4df8f1-241d-4339-b0f6-d65ad430beb7/1/l2i1O4vYENRyIvdbU_DzJugm4Gk.roa
Signing time: Mon 01 Jan 2024 22:31:30 +0000
ROA not before: Mon 01 Jan 2024 22:31:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39305
IP address blocks: 91.132.44.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:4d:d2:ce:e9:e9:c7:9b:55:5b:60:de:ad:d9:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d291922587f750f78a19795cbd89bc729af17d5
Validity
Not Before: Jan 1 22:31:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9768b53b8bd810d47222f75b53f0f326e826e069
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:fc:8f:55:77:cd:f3:15:26:35:46:48:4f:5d:
c9:61:97:b0:e4:0d:de:59:9d:fb:03:38:f8:47:de:
97:1c:9a:31:ee:b2:55:0a:98:3d:0c:4e:63:27:85:
aa:5f:87:1d:7a:77:14:dc:96:8e:76:c3:3e:a2:81:
ff:52:31:7b:06:ff:ab:b7:87:8b:2e:43:13:f4:9e:
2b:f2:7b:b2:0c:a4:90:db:92:6e:12:bf:81:47:13:
38:57:39:f2:95:97:33:6d:31:42:b2:e9:af:99:38:
b2:92:34:9e:11:73:42:c4:13:db:43:a7:5e:75:5c:
3d:bb:3d:32:29:21:5c:cd:63:88:c2:52:b9:f7:1d:
2e:8d:f2:01:a1:b6:99:64:81:0f:44:2c:d1:84:23:
bb:0c:92:ae:55:b8:11:31:ae:91:c1:f7:d7:67:30:
6f:3b:13:b9:54:f1:cb:dd:ef:9e:82:9b:b1:98:bd:
40:2c:cc:c9:10:2f:67:32:77:dd:c5:76:67:53:4d:
c9:88:36:c7:df:64:09:5c:30:81:bf:1f:06:e7:f2:
09:12:af:30:78:ed:20:9d:4d:43:3f:23:11:00:b3:
ea:8f:17:26:72:fd:4b:6d:82:77:3d:91:77:68:c8:
7c:de:67:20:7a:a2:d2:cd:86:a5:f6:c2:f5:ff:08:
5c:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:68:B5:3B:8B:D8:10:D4:72:22:F7:5B:53:F0:F3:26:E8:26:E0:69
X509v3 Authority Key Identifier:
keyid:0D:29:19:22:58:7F:75:0F:78:A1:97:95:CB:D8:9B:C7:29:AF:17:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DSkZIlh_dQ94oZeVy9ibxymvF9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4df8f1-241d-4339-b0f6-d65ad430beb7/1/l2i1O4vYENRyIvdbU_DzJugm4Gk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4df8f1-241d-4339-b0f6-d65ad430beb7/1/DSkZIlh_dQ94oZeVy9ibxymvF9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.44.0/22
Signature Algorithm: sha256WithRSAEncryption
89:e5:18:ad:20:4c:fe:39:14:67:9b:33:bc:f1:91:77:f4:3e:
15:33:e3:d6:5a:48:a2:9e:47:aa:3b:6a:5d:2c:a0:ed:76:f1:
f1:25:91:26:7f:ad:2b:ca:95:30:f4:ff:49:9b:65:29:3a:6b:
83:d0:6e:3f:24:e6:c0:26:a6:c3:5b:b1:6f:13:bc:ca:f5:8c:
c8:bc:04:bd:e8:a7:fb:ed:65:0c:e5:16:6f:42:15:54:4b:1c:
69:b6:61:00:cd:6a:86:51:2c:de:b5:dd:cc:ad:6b:c2:5b:8e:
81:7e:af:8e:fe:79:dd:0a:8b:3d:f7:96:fd:9d:37:7f:99:15:
46:38:cd:5b:25:60:74:47:f7:b1:e2:43:65:8f:ba:59:2c:33:
4b:83:3c:f8:7c:98:7a:67:37:44:48:3c:3c:21:97:df:74:89:
39:e5:cb:9b:32:09:dc:f5:ce:38:a8:09:c1:be:ea:1b:8e:48:
58:da:22:a1:e9:62:6b:10:8a:d5:d7:dd:64:ac:7c:69:bf:04:
d9:e0:36:0d:23:11:18:01:72:17:f4:2e:ae:28:4f:3c:c4:49:
9c:97:ba:74:d8:e5:6b:22:14:a7:81:1c:8c:9d:f1:d6:22:ca:
06:9f:d7:cc:8d:65:f5:5c:bf:2d:5a:1b:4c:5c:90:22:5e:1c:
32:10:4e:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:23 2024 by rpki-client on console.sobornost.net