Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YS9CjZOB36MKf18TL5Z8qmuXTc4.roa
File: YS9CjZOB36MKf18TL5Z8qmuXTc4.roa (raw, json)
Hash identifier: fGvkiONUplagOI6J5S9HL0PUSnR3jU6V7hKcR2aNncA=
Subject key identifier: 61:2F:42:8D:93:81:DF:A3:0A:7F:5F:13:2F:96:7C:AA:6B:97:4D:CE
Certificate issuer: /CN=60dc5a00368d8ae1fba995431f03a4131add8a9a
Certificate serial: 019081C792FD1C9228008E291A7AAEB370BA
Authority key identifier: 60:DC:5A:00:36:8D:8A:E1:FB:A9:95:43:1F:03:A4:13:1A:DD:8A:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YNxaADaNiuH7qZVDHwOkExrdipo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YS9CjZOB36MKf18TL5Z8qmuXTc4.roa
Signing time: Fri 05 Jul 2024 07:24:18 +0000
ROA not before: Fri 05 Jul 2024 07:24:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41085
IP address blocks: 195.189.100.0/22 maxlen: 22
195.189.100.0/23 maxlen: 23
195.189.102.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:81:c7:92:fd:1c:92:28:00:8e:29:1a:7a:ae:b3:70:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60dc5a00368d8ae1fba995431f03a4131add8a9a
Validity
Not Before: Jul 5 07:24:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=612f428d9381dfa30a7f5f132f967caa6b974dce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:42:77:f1:8b:c8:4d:bb:1d:c7:a2:7d:c6:df:
c9:27:9c:67:bd:ca:1a:0b:a5:c0:a4:89:3c:15:fd:
38:8e:c1:4b:04:b7:26:65:f8:ec:49:ce:3c:5e:c9:
89:99:93:50:f7:17:82:25:db:4d:5e:7e:60:ad:23:
98:f4:4e:56:24:33:60:58:4b:76:4e:cd:fe:f1:9b:
ee:4c:7a:2a:1d:6e:94:6f:71:16:8d:ab:23:ab:42:
b2:13:69:4e:40:5f:15:7d:6a:0a:50:da:44:05:21:
1d:4c:a8:f8:b7:2e:85:29:84:a4:b3:cf:68:9b:fc:
b2:58:a6:8a:ee:a7:be:39:99:5d:2c:ed:e6:c0:0e:
09:c1:dd:7f:46:6d:b8:d5:f9:fa:47:2c:c6:a2:50:
28:ef:a2:92:15:a4:8a:22:6a:b2:e8:5e:01:7f:cc:
60:a2:c1:bf:f7:14:0c:d3:c2:1e:58:a2:17:52:f0:
19:94:8e:96:11:8b:a3:ac:a7:8b:d0:e4:85:6d:78:
18:3b:6c:63:62:45:9f:2f:00:6f:f4:ec:14:08:49:
9c:4f:e7:db:36:d7:b4:7e:a5:1f:32:ab:79:4c:62:
97:b1:cc:8c:b2:d0:c9:1b:06:ad:26:37:82:fa:6d:
1d:01:2e:fd:5d:51:4f:1d:1a:f6:41:81:35:9c:6f:
6e:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:2F:42:8D:93:81:DF:A3:0A:7F:5F:13:2F:96:7C:AA:6B:97:4D:CE
X509v3 Authority Key Identifier:
keyid:60:DC:5A:00:36:8D:8A:E1:FB:A9:95:43:1F:03:A4:13:1A:DD:8A:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YNxaADaNiuH7qZVDHwOkExrdipo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YS9CjZOB36MKf18TL5Z8qmuXTc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YNxaADaNiuH7qZVDHwOkExrdipo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.189.100.0/22
Signature Algorithm: sha256WithRSAEncryption
05:dd:ce:c5:08:2d:3f:2c:1d:8f:5d:3d:0a:ab:d7:8e:36:52:
c9:d9:79:2e:a8:2c:be:a4:1c:c0:64:e9:81:ac:47:c0:99:86:
ea:6d:1b:fe:4c:40:7f:d4:a7:fc:65:98:e6:61:fb:25:80:34:
75:49:48:e5:1b:eb:50:38:fe:6e:4f:65:4d:22:c4:e7:4d:86:
c8:f6:b5:5a:ca:25:b7:76:e9:1c:b2:dd:8a:9c:05:99:dc:36:
45:ae:ab:1a:08:6a:a9:c6:35:f5:d3:4e:50:5d:ed:7f:45:d9:
1e:ef:0e:d0:eb:16:d3:4a:d0:d4:35:98:9b:22:cd:5c:51:0b:
37:14:54:0b:38:60:f5:ec:b2:ec:12:6d:0a:a2:76:ce:0a:fd:
f9:4f:ce:a8:e0:3e:bc:0b:c3:a2:01:b8:ff:89:a3:f7:77:f7:
7e:cb:fd:37:a4:10:7a:61:ac:27:e1:c0:c8:1f:14:fb:96:c3:
f3:ec:34:cf:97:8e:e2:f4:d6:66:b8:43:8b:ab:f2:1a:32:08:
73:88:c1:17:2d:22:87:83:31:31:9e:18:19:f1:d1:c4:1c:99:
e9:a1:6f:50:9b:cf:4c:f0:fd:5b:32:98:01:b6:6f:db:d1:f9:
1f:e7:78:cf:75:58:6f:8f:08:b5:a9:34:a5:f3:78:39:43:38:
cd:26:b0:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:49 2024 by rpki-client on console.sobornost.net