Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/b67eb7-e496-4c31-9f67-97902d8a7fa6/1/o7TyJu6G9NOMl36v2kP1qYBks2Q.roa
File: o7TyJu6G9NOMl36v2kP1qYBks2Q.roa (raw, json)
Hash identifier: 1GB11tJM0KXbebKoV8VMatebu4rCpfenDYSsj69hxjY=
Subject key identifier: A3:B4:F2:26:EE:86:F4:D3:8C:97:7E:AF:DA:43:F5:A9:80:64:B3:64
Certificate issuer: /CN=84bbaeb70b3f1d06716358ad9a2ecfef7d2126fb
Certificate serial: 01938CE491635AAAE8634E49BCC2AE28DC31
Authority key identifier: 84:BB:AE:B7:0B:3F:1D:06:71:63:58:AD:9A:2E:CF:EF:7D:21:26:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLuutws_HQZxY1itmi7P730hJvs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/b67eb7-e496-4c31-9f67-97902d8a7fa6/1/o7TyJu6G9NOMl36v2kP1qYBks2Q.roa
Signing time: Tue 03 Dec 2024 14:20:09 +0000
ROA not before: Tue 03 Dec 2024 14:20:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203248
IP address blocks: 185.165.46.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:8c:e4:91:63:5a:aa:e8:63:4e:49:bc:c2:ae:28:dc:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84bbaeb70b3f1d06716358ad9a2ecfef7d2126fb
Validity
Not Before: Dec 3 14:20:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a3b4f226ee86f4d38c977eafda43f5a98064b364
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:9a:53:91:54:bb:71:c2:cb:56:46:0f:27:2a:
cc:e4:6e:25:23:fe:57:ad:dc:71:62:7e:b4:77:ec:
23:e5:bc:7c:0e:62:05:d6:2e:7e:52:a5:04:fc:3c:
14:40:06:b2:30:c3:02:1e:5d:9e:bd:8f:22:22:83:
3c:d2:cd:d2:64:a4:fc:39:e5:a5:62:f5:ee:79:82:
1d:08:aa:5f:de:23:ef:5f:d7:ae:db:7e:a7:7f:63:
32:c5:33:65:bb:e3:f4:27:8f:7d:74:9d:7d:d3:15:
a5:ec:90:98:ab:0f:65:d7:40:fc:e1:94:a5:4b:d9:
3b:d8:f6:2d:8e:97:b0:b2:83:f9:20:2f:07:fd:6a:
7f:d1:38:27:c0:9c:2a:7b:71:bd:d0:0d:d0:c3:ef:
1a:c0:6f:f0:fd:06:13:d1:fa:b2:d3:00:9d:a6:a6:
56:1e:31:4f:b7:a3:34:e2:1b:f5:f0:2e:60:17:4d:
36:be:64:49:a9:f0:35:cd:c0:85:a1:b3:55:0f:ca:
20:4c:4b:1a:73:e9:02:20:a7:a5:a9:1c:06:6e:e8:
92:90:e2:23:51:64:ce:d7:cf:e6:0d:8b:37:33:82:
af:b8:7f:90:7b:0e:48:89:2e:d4:94:13:0a:17:25:
c9:b1:9b:08:dd:85:6d:6b:4e:aa:19:da:55:72:78:
75:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:B4:F2:26:EE:86:F4:D3:8C:97:7E:AF:DA:43:F5:A9:80:64:B3:64
X509v3 Authority Key Identifier:
keyid:84:BB:AE:B7:0B:3F:1D:06:71:63:58:AD:9A:2E:CF:EF:7D:21:26:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLuutws_HQZxY1itmi7P730hJvs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b67eb7-e496-4c31-9f67-97902d8a7fa6/1/o7TyJu6G9NOMl36v2kP1qYBks2Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b67eb7-e496-4c31-9f67-97902d8a7fa6/1/hLuutws_HQZxY1itmi7P730hJvs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.46.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:2c:fc:87:6e:e9:29:e4:6b:9b:91:b7:01:99:1b:50:cd:f1:
92:71:05:8f:8f:e5:b3:b9:01:7f:54:d0:32:36:7e:f3:31:c0:
1c:7f:20:3e:ee:7b:3f:c3:6b:48:fc:04:10:4b:27:b3:fe:25:
21:3b:8c:98:f3:fe:f6:dc:40:bf:60:6d:72:a5:db:11:8c:ba:
21:37:52:51:a0:52:dd:ff:ff:20:d2:bd:02:51:79:f5:cb:26:
c5:98:bb:86:74:4b:84:bf:ef:66:79:aa:77:3c:ee:d8:86:5f:
78:18:0f:f5:49:2f:3c:67:5f:28:cf:bf:79:15:ab:97:3b:be:
61:f3:8a:83:64:4d:76:ea:02:ce:3c:80:19:f1:3d:96:d9:5c:
f0:2e:c6:17:23:29:b8:15:cb:85:11:7d:75:00:5a:94:32:70:
de:d6:69:14:ae:a8:79:57:e3:15:78:3c:4e:a2:1a:26:f2:9e:
81:80:ed:00:a5:93:17:ba:19:a2:79:29:47:49:8d:06:9a:be:
c6:62:44:9f:0f:08:46:2e:86:17:80:46:f3:2e:25:53:46:89:
4d:fd:2e:f6:90:9f:fb:bc:a5:65:a4:ce:ad:71:a0:a7:9f:f7:
b3:fc:13:5e:7b:aa:73:db:c2:b2:b3:12:2a:69:7c:d0:64:a0:
ee:40:5b:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:38 2024 by rpki-client on console.sobornost.net