Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/e64400-09c9-4135-8a80-187e99dcd66b/1/QGGEnEdNEQ6bhubrM98i71AMBkk.roa
File: QGGEnEdNEQ6bhubrM98i71AMBkk.roa (raw, json)
Hash identifier: +RtYY2h2iYN7j5T7v0ksB2L4ewA8xVpaXsRgylGW6qk=
Subject key identifier: 40:61:84:9C:47:4D:11:0E:9B:86:E6:EB:33:DF:22:EF:50:0C:06:49
Certificate issuer: /CN=4929c20d7ab48b60f3d8fe1275ec80cb01289404
Certificate serial: B29669
Authority key identifier: 49:29:C2:0D:7A:B4:8B:60:F3:D8:FE:12:75:EC:80:CB:01:28:94:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SSnCDXq0i2Dz2P4SdeyAywEolAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/e64400-09c9-4135-8a80-187e99dcd66b/1/QGGEnEdNEQ6bhubrM98i71AMBkk.roa
Signing time: Sat 01 Jan 2022 01:58:44 +0000
ROA not before: Sat 01 Jan 2022 01:58:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 185.240.24.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11703913 (0xb29669)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4929c20d7ab48b60f3d8fe1275ec80cb01289404
Validity
Not Before: Jan 1 01:58:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4061849c474d110e9b86e6eb33df22ef500c0649
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d3:07:8e:a5:50:59:a7:c8:d0:e7:d1:b8:ce:
57:17:e4:c4:fa:cf:46:78:5a:81:6a:e8:51:dc:8c:
88:ae:d3:07:2f:14:4e:9c:0f:06:e2:d3:61:2a:f3:
0f:71:ae:2e:93:3e:d7:11:0d:dd:9e:56:c2:28:b9:
e8:59:a4:fd:29:6d:59:b4:72:90:87:02:b9:0d:e3:
fe:74:e6:92:59:f6:e3:af:f2:82:fa:a9:83:7c:1c:
15:8b:4c:18:07:de:b1:6d:d5:a3:26:df:03:a8:fb:
3a:b7:7b:d3:ff:3d:dd:7f:b1:37:c6:8c:6b:20:59:
00:cb:35:44:72:17:34:0f:9b:6c:a0:1b:ea:2d:d5:
d8:31:c2:fa:9d:c8:0c:97:5d:c8:45:be:cb:21:b0:
01:71:2e:b6:d3:45:4b:bc:02:23:c9:8d:2a:c0:d9:
25:fb:04:e2:cb:5d:06:20:6d:47:0c:dd:90:80:0f:
6b:e1:03:c9:a4:90:01:90:c5:1e:68:ff:07:68:11:
8a:49:40:67:96:44:72:fa:df:62:ba:71:f0:ba:3c:
59:26:9b:fa:55:a3:71:af:08:6a:4e:bd:11:17:1f:
67:c8:58:a0:09:2d:0c:86:47:ec:e7:76:b4:58:73:
fa:10:58:30:12:da:3b:2e:d9:33:31:a5:9d:75:2c:
e0:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:61:84:9C:47:4D:11:0E:9B:86:E6:EB:33:DF:22:EF:50:0C:06:49
X509v3 Authority Key Identifier:
keyid:49:29:C2:0D:7A:B4:8B:60:F3:D8:FE:12:75:EC:80:CB:01:28:94:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SSnCDXq0i2Dz2P4SdeyAywEolAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/e64400-09c9-4135-8a80-187e99dcd66b/1/QGGEnEdNEQ6bhubrM98i71AMBkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/e64400-09c9-4135-8a80-187e99dcd66b/1/SSnCDXq0i2Dz2P4SdeyAywEolAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.24.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:ba:3b:e4:57:0d:fb:44:ba:c0:a1:0f:bf:2f:22:5c:87:87:
c1:5d:91:43:5c:bd:86:3a:26:d5:8e:43:df:63:17:a5:99:2f:
ac:79:f5:09:8d:97:87:4f:00:02:b3:9b:1d:ff:49:88:9c:e5:
73:1e:28:a5:43:5b:26:8e:e0:13:74:0e:c5:70:b7:98:4d:f2:
47:55:0f:2f:82:93:67:b7:b3:bc:a3:2f:08:8e:fa:3c:d4:84:
7b:e4:f8:0f:fc:e3:1e:99:a4:37:5e:1c:b2:e9:e0:74:14:3f:
8f:f2:11:e8:de:06:fb:e7:ab:2a:8c:d5:aa:40:3d:58:9c:7d:
79:b8:52:2a:ee:6b:ab:07:df:f1:fd:3f:60:c7:a5:a7:3b:0e:
bc:3e:c7:d4:81:b4:81:5d:df:58:6b:32:61:7e:29:3a:77:eb:
45:01:1a:64:7f:26:6a:4b:b4:e9:c1:18:f4:06:63:2f:68:70:
13:87:3d:c7:d7:98:02:58:13:98:7e:02:b6:df:d5:b9:98:c8:
4c:3f:7d:2a:15:68:89:e6:32:35:7d:17:09:c3:55:39:3b:fa:
8a:72:a5:5a:c2:67:af:fb:ad:56:07:20:91:b2:c1:bb:d2:5e:
37:c9:32:2b:da:35:97:33:a9:ee:93:64:81:80:65:f5:8b:36:
9c:97:ca:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:08 2023 by rpki-client on console.sobornost.net