Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/QcelBRkISEeRCr6gifJ5KaFDmCg.roa
File: QcelBRkISEeRCr6gifJ5KaFDmCg.roa (raw, json)
Hash identifier: vdu8qzxKhsu//62wFexYzYG4fO7cBpZkwOXKg+lJlUw=
Subject key identifier: 41:C7:A5:05:19:08:48:47:91:0A:BE:A0:89:F2:79:29:A1:43:98:28
Certificate issuer: /CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Certificate serial: 0193B12E9D61CBBF1E15E86F5FCDA5C22EA3
Authority key identifier: A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/QcelBRkISEeRCr6gifJ5KaFDmCg.roa
Signing time: Tue 10 Dec 2024 15:27:22 +0000
ROA not before: Tue 10 Dec 2024 15:27:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44391
IP address blocks: 81.19.128.0/23 maxlen: 23
81.19.130.0/24 maxlen: 24
81.19.142.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b1:2e:9d:61:cb:bf:1e:15:e8:6f:5f:cd:a5:c2:2e:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Validity
Not Before: Dec 10 15:27:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=41c7a50519084847910abea089f27929a1439828
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:3a:ca:b9:1a:15:c8:23:43:12:ca:90:c7:d9:
39:b6:a3:0e:c4:96:23:d6:16:2d:fb:c9:c5:2d:04:
f6:24:3b:75:77:3e:c0:a3:58:39:b1:d6:20:68:32:
bd:2a:09:ba:47:bd:0f:59:39:55:ed:e2:2f:ff:62:
82:f2:ba:41:be:ba:36:e6:23:fc:df:27:9f:00:81:
46:3e:f6:ce:5e:3e:1c:bb:0c:29:2e:be:da:7b:d0:
67:8e:fc:a8:89:c5:83:11:5c:65:2a:cf:52:f9:44:
ec:86:d5:72:81:98:64:43:63:ac:fc:da:d9:d8:a3:
18:dd:d7:51:17:b5:51:15:aa:d0:6e:6b:f0:42:fd:
8b:7a:70:b0:f8:b1:7b:36:21:87:b4:03:26:a8:04:
a7:76:df:41:c2:36:40:14:09:5d:10:f5:c3:df:e0:
8c:91:45:ac:cc:f5:a1:80:c3:6b:4e:e7:a2:e1:7d:
e8:a1:b3:e8:ba:a7:82:1a:89:ba:ce:86:a8:27:c2:
8c:35:de:d6:d3:9b:c0:b7:fe:22:92:f7:2a:3e:c6:
52:81:9a:98:2f:a6:4e:4b:6c:da:b7:3d:9c:6b:aa:
22:e7:71:5f:cb:16:80:c1:bb:a2:ac:77:f4:d6:c3:
13:14:d4:b4:b8:90:d2:8f:2a:ee:e1:a4:7f:37:34:
f4:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:C7:A5:05:19:08:48:47:91:0A:BE:A0:89:F2:79:29:A1:43:98:28
X509v3 Authority Key Identifier:
keyid:A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/QcelBRkISEeRCr6gifJ5KaFDmCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.128.0-81.19.130.255
81.19.142.0/23
Signature Algorithm: sha256WithRSAEncryption
75:3f:db:fb:89:6e:0e:96:bb:91:81:94:6b:81:79:1d:3c:23:
8e:40:3e:81:01:72:e1:99:36:2e:97:08:ac:bd:30:a8:33:6d:
dd:2d:8b:af:5a:65:3b:0f:17:0a:c3:ee:61:74:3d:29:c3:42:
56:71:2d:60:6c:d6:24:0f:48:86:f7:c4:b3:81:0b:a9:6e:63:
5f:42:ff:06:a5:30:a0:4d:3c:84:86:08:e6:94:4d:eb:ab:f5:
b0:c9:b0:51:7c:a3:f8:8d:15:20:5e:d7:c7:b3:cd:62:31:c3:
68:3a:49:9d:c0:4e:64:4f:df:ae:82:63:3d:f9:77:82:eb:58:
7b:ae:61:27:a8:30:c9:77:82:d0:d9:0a:f0:9a:66:94:4d:3e:
cc:69:85:3f:55:e5:f3:e4:88:df:7c:f0:1f:52:d0:22:93:26:
26:32:00:f5:a4:b0:ef:ce:e7:45:3c:b3:9e:02:e7:91:46:b3:
4f:38:77:0f:b6:67:24:fc:df:bd:e2:b5:6d:d9:46:da:f7:24:
e3:ed:14:79:39:b5:1c:2a:11:a9:bf:fd:0c:19:f4:56:72:39:
a6:36:43:3c:3a:b0:9e:47:61:08:06:42:02:d5:ac:0c:ae:14:
a2:e0:93:b4:6f:9c:10:cd:d6:c4:85:b2:b9:66:0a:62:3c:bd:
7e:dc:50:9b
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:27 2024 by rpki-client on console.sobornost.net