Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/689d49-cdb3-4f0c-af8e-ca74279955ed/1/cvwqRt7H9IIg0nEMfSxQE0Bgrig.roa
File: cvwqRt7H9IIg0nEMfSxQE0Bgrig.roa (raw, json)
Hash identifier: Sv5AMewooWT4OgxhJwcSb0qWaBOIhhhjGsE6jjm9lo0=
Subject key identifier: 72:FC:2A:46:DE:C7:F4:82:20:D2:71:0C:7D:2C:50:13:40:60:AE:28
Certificate issuer: /CN=0c8ad5edccac85c8033248f555df7f6d8dcd71ab
Certificate serial: 07AAFAB4
Authority key identifier: 0C:8A:D5:ED:CC:AC:85:C8:03:32:48:F5:55:DF:7F:6D:8D:CD:71:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DIrV7cyshcgDMkj1Vd9_bY3Ncas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/689d49-cdb3-4f0c-af8e-ca74279955ed/1/cvwqRt7H9IIg0nEMfSxQE0Bgrig.roa
Signing time: Sat 01 Jan 2022 08:04:02 +0000
ROA not before: Sat 01 Jan 2022 08:04:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206852
IP address blocks: 193.27.198.0/24 maxlen: 24
193.27.199.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128645812 (0x7aafab4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c8ad5edccac85c8033248f555df7f6d8dcd71ab
Validity
Not Before: Jan 1 08:04:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=72fc2a46dec7f48220d2710c7d2c50134060ae28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:ca:7a:ae:7d:12:15:c2:9a:f5:63:3e:9b:01:
fb:c0:2c:54:16:c4:5b:7c:9a:32:6c:04:32:e7:ab:
3b:82:e0:6f:7a:32:7c:c3:34:51:fc:49:5b:b1:ca:
eb:5d:52:91:32:37:48:b3:5c:93:2e:74:0d:64:8c:
e9:c5:8a:08:6a:bd:e9:4f:95:a1:6d:dd:52:eb:12:
0a:0c:c1:57:e2:33:92:82:c5:3f:48:1c:3d:23:67:
16:c2:ac:9d:0e:3e:3c:c6:b7:c9:f5:b3:fb:99:bc:
17:04:3b:51:af:a1:11:a4:fc:e7:86:5e:92:91:de:
02:dd:d8:2d:0c:45:b9:af:e2:30:e4:df:c4:a3:84:
9e:d7:72:1f:78:fe:8e:9a:d6:a5:d0:87:62:8f:fc:
c6:30:00:51:4b:ec:a1:d0:83:06:fe:33:1a:62:71:
9a:34:37:cc:d0:cd:c7:a8:54:0f:40:6b:91:46:b4:
f8:63:fe:8b:b2:fa:a9:6a:43:31:64:b1:df:2f:42:
44:38:8b:95:bf:2e:16:29:4d:4a:37:27:f8:58:24:
26:08:c6:04:ed:d5:7c:71:55:4f:34:4b:3d:a0:c8:
dd:0c:67:d2:df:8e:52:ea:4b:dd:c1:28:aa:d5:fe:
af:68:91:9f:9a:81:8c:31:72:16:31:37:8e:74:9c:
ea:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:FC:2A:46:DE:C7:F4:82:20:D2:71:0C:7D:2C:50:13:40:60:AE:28
X509v3 Authority Key Identifier:
keyid:0C:8A:D5:ED:CC:AC:85:C8:03:32:48:F5:55:DF:7F:6D:8D:CD:71:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DIrV7cyshcgDMkj1Vd9_bY3Ncas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/689d49-cdb3-4f0c-af8e-ca74279955ed/1/cvwqRt7H9IIg0nEMfSxQE0Bgrig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/689d49-cdb3-4f0c-af8e-ca74279955ed/1/DIrV7cyshcgDMkj1Vd9_bY3Ncas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.27.198.0/23
Signature Algorithm: sha256WithRSAEncryption
3c:d8:db:65:a6:09:f7:a1:52:1f:7f:58:af:87:49:48:8f:e6:
99:10:84:52:05:d6:96:c8:c3:0a:73:7a:41:f4:a2:c7:a2:a5:
84:04:5a:50:27:59:db:8f:ac:d5:b1:f2:55:cd:b3:dd:92:97:
ef:bc:21:93:9c:72:3d:7d:23:67:15:6e:bb:31:ac:1d:e1:a7:
76:04:0e:e9:87:99:26:b3:b3:62:60:07:bc:26:3e:ce:cd:cd:
cb:57:ca:d6:a4:04:1e:1e:d8:80:5d:95:b8:3f:a4:3a:bc:6d:
44:02:7a:a9:b3:c9:db:4e:cd:ee:81:c4:26:d6:63:6a:2c:c1:
fb:94:df:df:3e:09:aa:10:ed:c9:0e:f7:ae:90:02:dc:42:2b:
3b:06:c7:05:11:0b:aa:e2:f2:1e:0d:73:07:4b:48:81:9b:ab:
b9:81:d9:19:08:e4:45:d3:55:f1:55:6b:cb:1c:5b:e7:02:43:
19:eb:ce:2d:9a:93:79:8d:ad:12:a9:b2:14:13:99:b5:13:bf:
e2:28:4c:51:31:62:62:0e:14:6c:ba:ca:0b:5e:d3:d9:41:c2:
51:33:4d:1c:4d:fa:11:37:a1:fb:85:b5:e0:ea:05:49:31:53:
50:e9:27:01:1e:ed:e4:4a:f7:80:a5:12:6a:49:04:19:ca:4b:
91:e4:ba:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:15 2023 by rpki-client on console.sobornost.net