Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f58645-00ae-43e2-a4df-015cb0b82d4c/1/LMpTa4K808TtK2BJKAXAN1tVCh8.roa
File: LMpTa4K808TtK2BJKAXAN1tVCh8.roa (raw, json)
Hash identifier: uTwk8bsYDiqSUEENS6LCL8UNW+y1wSp/E/786hVur2c=
Subject key identifier: 2C:CA:53:6B:82:BC:D3:C4:ED:2B:60:49:28:05:C0:37:5B:55:0A:1F
Certificate issuer: /CN=9766354188ee68dd038f8b90a6574cce8e95add3
Certificate serial: 01857102C520CBC46A0A9C9732F3F70904D2
Authority key identifier: 97:66:35:41:88:EE:68:DD:03:8F:8B:90:A6:57:4C:CE:8E:95:AD:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l2Y1QYjuaN0Dj4uQpldMzo6VrdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f58645-00ae-43e2-a4df-015cb0b82d4c/1/LMpTa4K808TtK2BJKAXAN1tVCh8.roa
Signing time: Mon 02 Jan 2023 05:44:44 +0000
ROA not before: Mon 02 Jan 2023 05:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 195.96.129.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:02:c5:20:cb:c4:6a:0a:9c:97:32:f3:f7:09:04:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9766354188ee68dd038f8b90a6574cce8e95add3
Validity
Not Before: Jan 2 05:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2cca536b82bcd3c4ed2b60492805c0375b550a1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d8:9d:95:9f:2e:55:a7:db:6f:8b:35:bf:6e:
47:fd:5f:06:d2:ab:7e:ad:2c:c6:f2:fa:da:08:b9:
bb:24:d2:88:a7:71:ad:bf:dc:ac:fd:25:e6:99:73:
6a:d0:05:c0:2f:d6:e7:1c:a2:79:3a:37:ad:3c:8e:
89:0a:71:13:20:b7:cd:f6:be:aa:08:04:84:bd:5b:
d8:5f:73:18:f0:e0:2e:e4:0d:e2:0c:75:cc:03:27:
9f:87:11:72:73:f8:55:23:e3:4f:77:02:1b:e3:61:
47:55:f8:b6:b6:38:2e:0a:dd:7e:e9:aa:62:9e:3e:
30:c4:64:27:79:4c:9f:30:bb:ac:b9:d7:83:3c:c4:
6d:43:1d:0a:13:e0:7c:fb:03:1b:56:bf:e2:4b:d5:
61:49:f3:da:3d:49:f1:36:d0:2e:60:82:74:32:62:
4f:b8:cb:23:a0:e3:46:00:17:53:4b:9b:cf:2b:4d:
95:f2:da:5b:7a:74:3b:79:63:e3:2d:57:ba:8f:2a:
f6:fa:4e:d2:f2:8e:cb:65:cd:05:01:2c:35:94:79:
f3:26:43:4f:ef:8c:d8:89:d8:60:c2:8b:09:d2:c5:
f0:a5:63:b4:c8:84:c0:0e:6a:28:a0:f8:e8:56:6e:
3c:bb:6e:26:f2:cd:6c:a3:fb:c2:54:46:d1:00:42:
ea:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:CA:53:6B:82:BC:D3:C4:ED:2B:60:49:28:05:C0:37:5B:55:0A:1F
X509v3 Authority Key Identifier:
keyid:97:66:35:41:88:EE:68:DD:03:8F:8B:90:A6:57:4C:CE:8E:95:AD:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l2Y1QYjuaN0Dj4uQpldMzo6VrdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f58645-00ae-43e2-a4df-015cb0b82d4c/1/LMpTa4K808TtK2BJKAXAN1tVCh8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f58645-00ae-43e2-a4df-015cb0b82d4c/1/l2Y1QYjuaN0Dj4uQpldMzo6VrdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.129.0/24
Signature Algorithm: sha256WithRSAEncryption
23:87:5c:8f:cd:8e:de:6b:34:8f:fa:8a:ae:4a:77:b9:4d:03:
91:6b:aa:ac:d2:4d:cd:d9:2d:f7:bb:0a:d0:b4:b7:b2:08:cc:
ed:75:b9:78:00:ba:81:15:fa:b8:54:f9:86:fe:74:ba:4a:0c:
ed:e3:5b:66:c8:1c:b1:40:90:5e:6d:96:75:a1:84:06:ba:c3:
a1:75:14:1f:09:3c:f9:5c:51:2c:3a:3e:6b:85:4c:55:6e:25:
d1:7f:7c:6f:fb:68:5c:c3:42:0e:0f:aa:c4:16:b8:83:bc:0c:
f1:42:16:9b:bd:b6:16:03:a3:68:17:54:3d:79:b8:e3:29:48:
33:74:e8:4a:2f:4c:82:77:27:05:b7:0b:76:89:7c:70:a2:ec:
46:5d:9b:c4:0c:05:37:5f:dc:98:41:fb:c1:76:c7:29:ac:5c:
86:a6:1e:e7:29:60:06:df:20:b5:26:5c:90:1c:ef:69:55:73:
3d:01:e5:d7:00:6f:08:55:88:f2:f7:a9:e5:cf:49:cc:b7:30:
35:4f:a8:d0:80:c0:91:6f:12:cf:df:0c:af:11:60:82:4b:6b:
ed:86:c4:d1:57:02:0b:71:ae:c9:8d:3b:87:e4:f1:ad:a9:8c:
3c:87:47:10:d1:a8:e5:c6:b7:88:fc:94:1b:c9:02:20:07:b9:
5c:90:88:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:57 2023 by rpki-client on console.sobornost.net