Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/H6DIpBKISeQ1pRGHFICku0H8ESg.roa
File: H6DIpBKISeQ1pRGHFICku0H8ESg.roa (raw, json)
Hash identifier: nicm1L4pu3pJZG2vFoPyw7vMMBO7zuRcPn2sXPRDImg=
Subject key identifier: 1F:A0:C8:A4:12:88:49:E4:35:A5:11:87:14:80:A4:BB:41:FC:11:28
Certificate issuer: /CN=7539b7a123417aa719325946aa89e0f30ab0ca09
Certificate serial: 018CC2DB12932332BD983A1DD4D6EB3DEC27
Authority key identifier: 75:39:B7:A1:23:41:7A:A7:19:32:59:46:AA:89:E0:F3:0A:B0:CA:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dTm3oSNBeqcZMllGqong8wqwygk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/H6DIpBKISeQ1pRGHFICku0H8ESg.roa
Signing time: Mon 01 Jan 2024 02:29:46 +0000
ROA not before: Mon 01 Jan 2024 02:29:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3313
IP address blocks: 194.20.8.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:12:93:23:32:bd:98:3a:1d:d4:d6:eb:3d:ec:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7539b7a123417aa719325946aa89e0f30ab0ca09
Validity
Not Before: Jan 1 02:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1fa0c8a4128849e435a511871480a4bb41fc1128
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ee:f3:5c:e8:00:27:40:d5:b5:76:f5:80:9e:
d1:03:55:2e:be:ef:6b:51:ce:63:68:f0:64:c5:e8:
78:72:24:f0:a6:64:9a:ba:6c:0a:5c:4c:1a:8f:1c:
b3:93:43:74:e7:97:d4:73:12:e4:bd:23:f1:0b:dd:
fb:ba:0a:f9:3f:53:62:44:ec:60:e2:ac:f9:fc:d1:
42:b1:d5:ce:6d:45:2d:bb:8e:73:67:03:2d:e5:89:
64:0f:dc:1e:c1:be:e0:e3:3f:66:e0:c1:86:9d:40:
a0:c7:18:af:9c:f5:df:60:a7:a7:fd:1f:72:3d:12:
65:70:dc:1e:1f:57:82:8c:42:d0:49:62:d0:f6:bf:
96:12:8d:46:f5:34:1f:c0:66:c1:8e:32:04:64:2e:
c0:2f:9b:e1:8f:d6:af:78:a5:43:a7:92:5e:b9:61:
87:22:13:18:9c:0d:af:25:6b:4b:7d:20:e2:c1:11:
58:ef:dd:2a:30:df:7c:76:6a:3b:40:ca:3f:47:60:
14:e9:73:bf:b6:05:02:68:91:ea:73:ec:cc:e2:ad:
0e:a1:b1:e8:14:34:ef:3b:ed:9b:a6:58:45:78:0e:
b0:e4:f0:f3:bc:74:d7:a9:85:82:c6:ad:f3:f9:df:
5b:d4:7a:91:3a:f5:75:a4:ec:34:41:9a:4e:63:39:
48:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:A0:C8:A4:12:88:49:E4:35:A5:11:87:14:80:A4:BB:41:FC:11:28
X509v3 Authority Key Identifier:
keyid:75:39:B7:A1:23:41:7A:A7:19:32:59:46:AA:89:E0:F3:0A:B0:CA:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dTm3oSNBeqcZMllGqong8wqwygk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/H6DIpBKISeQ1pRGHFICku0H8ESg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/dTm3oSNBeqcZMllGqong8wqwygk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.20.8.0/21
Signature Algorithm: sha256WithRSAEncryption
71:45:22:56:4c:8a:f9:4e:df:3e:8c:9d:18:99:44:94:6f:ce:
9a:d1:bd:2d:fc:05:52:c4:af:54:8f:b1:0b:13:67:3c:b1:1b:
53:30:37:83:cb:56:99:89:6d:54:ae:ea:01:e6:d7:3d:99:ed:
e7:59:79:b8:bc:ce:43:24:ae:0a:e5:da:1e:54:9f:d8:0e:1e:
d4:12:4d:ca:a3:c6:0e:da:10:17:9b:64:3e:43:4d:01:d5:25:
07:7a:c9:80:07:e2:19:ab:d0:12:8f:00:4f:cf:53:fb:6a:80:
5d:f1:23:58:a5:38:d5:8d:4e:cd:24:55:26:b3:69:6b:07:02:
1a:43:3e:e3:05:e6:27:91:54:8f:1b:c1:23:85:c4:f7:2a:87:
4c:e3:39:8f:f3:aa:2b:48:c3:46:3a:42:f6:5b:03:96:a2:9d:
cf:00:b9:4f:7a:08:68:cb:16:2d:dd:9c:29:0d:ac:d9:a5:0a:
ba:cf:99:c5:d8:3f:8a:7a:1e:98:ef:21:00:72:95:42:a9:60:
e2:95:59:d2:3f:95:32:88:f9:9a:07:8c:b6:63:61:52:4c:d8:
8c:01:4c:16:4d:8b:11:c1:4a:06:fb:f3:a1:33:d3:71:93:51:
57:9b:a5:28:b1:84:6b:74:6f:b1:08:ef:82:76:72:83:bc:26:
90:9a:6c:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:00 2024 by rpki-client on console.sobornost.net