Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/CMr5Q_nEuBdAodTlk46Yn9e3LS4.roa
File: CMr5Q_nEuBdAodTlk46Yn9e3LS4.roa (raw, json)
Hash identifier: 0Hyu9b47B33M+6Y9KHhLthnmi6VkwZDpv89c5Os37wY=
Subject key identifier: 08:CA:F9:43:F9:C4:B8:17:40:A1:D4:E5:93:8E:98:9F:D7:B7:2D:2E
Certificate issuer: /CN=d98247d3f81472dbba06dbea9bd19c785d18babe
Certificate serial: 01918A713D9996384A64FA8440A770CBFB4A
Authority key identifier: D9:82:47:D3:F8:14:72:DB:BA:06:DB:EA:9B:D1:9C:78:5D:18:BA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YJH0_gUctu6Btvqm9GceF0Yur4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/CMr5Q_nEuBdAodTlk46Yn9e3LS4.roa
Signing time: Sun 25 Aug 2024 16:49:22 +0000
ROA not before: Sun 25 Aug 2024 16:49:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 194.165.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:8a:71:3d:99:96:38:4a:64:fa:84:40:a7:70:cb:fb:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d98247d3f81472dbba06dbea9bd19c785d18babe
Validity
Not Before: Aug 25 16:49:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=08caf943f9c4b81740a1d4e5938e989fd7b72d2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:8a:2d:d1:9a:de:c8:ee:85:62:ac:d4:11:5b:
fa:77:2b:b6:4e:4d:99:7c:65:5d:d0:a5:5b:c1:73:
19:5b:96:24:b2:9c:be:f4:5c:2a:12:98:0f:89:d3:
0e:63:aa:86:74:7a:4b:29:7e:f5:27:c0:f7:87:f0:
e7:6a:7d:e7:6a:0f:4b:75:c9:32:7a:de:ab:1a:3c:
8b:62:26:da:c9:87:0e:d0:ab:e5:ba:f1:76:be:50:
74:84:f5:e8:4d:78:23:98:14:04:fc:06:61:6f:3f:
35:27:a9:3a:ff:14:c3:03:fb:3a:09:b9:e7:36:06:
88:c6:a9:6e:a1:ba:a4:70:b3:90:36:ce:ad:75:f4:
d1:a1:cd:bb:12:ec:08:85:c9:ea:e5:1e:86:30:af:
e7:ad:f8:24:b5:57:da:af:17:3f:33:cc:69:ac:72:
71:13:19:73:fa:68:d6:40:07:10:8a:ef:cb:39:69:
2e:2d:f3:10:34:7f:bf:f4:22:13:b9:1c:3f:6b:9d:
af:fa:f5:2f:83:ee:49:0a:cd:4d:94:2e:26:22:ca:
74:83:56:8f:9f:e7:dc:5c:45:79:42:12:77:fe:3a:
80:f3:1d:73:71:0c:be:d6:b1:a4:03:a1:6c:8e:06:
91:e0:f5:f4:64:3a:f0:f8:90:de:c8:69:fd:dc:48:
2c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:CA:F9:43:F9:C4:B8:17:40:A1:D4:E5:93:8E:98:9F:D7:B7:2D:2E
X509v3 Authority Key Identifier:
keyid:D9:82:47:D3:F8:14:72:DB:BA:06:DB:EA:9B:D1:9C:78:5D:18:BA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YJH0_gUctu6Btvqm9GceF0Yur4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/CMr5Q_nEuBdAodTlk46Yn9e3LS4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/2YJH0_gUctu6Btvqm9GceF0Yur4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.165.27.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:71:ae:57:86:9f:f8:75:b6:e3:1a:7a:78:aa:51:e8:f5:13:
f0:e0:72:58:24:2d:74:db:26:c1:41:a2:ee:68:9f:98:da:b4:
35:91:03:cb:4b:0f:31:1d:cc:81:a5:50:4c:6a:c2:12:d6:ad:
e7:0f:96:7c:38:ba:54:8f:fb:05:86:b3:75:38:93:c4:04:a5:
e2:94:8b:37:b0:8a:c6:f0:57:0d:02:b9:61:45:b4:41:e5:ce:
b2:94:ba:14:c7:bc:f5:f7:e2:96:77:56:f4:21:df:bb:af:87:
b3:a7:02:cc:cd:8c:43:26:57:f7:63:cf:e6:c7:33:f0:38:3c:
44:2b:c0:52:35:5a:e5:fa:bb:ee:d2:50:4c:72:b3:f9:ed:c1:
5c:06:d6:06:0c:d6:34:cf:d4:15:c6:34:52:3f:e6:d5:ba:74:
9d:62:c4:bb:cc:fc:86:81:e7:eb:8a:f8:76:b4:e8:57:d5:07:
09:b7:d4:38:d7:ec:c3:3b:db:52:04:0d:57:07:71:d5:f3:1e:
53:5d:e9:04:b7:9c:b0:dc:95:f2:c7:c0:90:78:21:15:a8:bd:
96:74:12:0e:73:fe:8f:e8:73:57:55:b6:7f:c1:e5:be:b2:ca:
09:79:52:fe:7f:9f:11:f2:20:df:f7:51:76:46:29:fa:b2:fc:
e8:58:58:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 11 05:46:11 2024 by rpki-client on console.sobornost.net