Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/79a8d1-7b75-4a0b-8fd9-366427a07bea/1/P45vv-An9E8ay0PC_1SpH0mfjaI.roa
File: P45vv-An9E8ay0PC_1SpH0mfjaI.roa (raw, json)
Hash identifier: KLvtXIpKQT2HhqVW0hiUzbH0J31v6Y+k3ZFs1WeqwgI=
Subject key identifier: 3F:8E:6F:BF:E0:27:F4:4F:1A:CB:43:C2:FF:54:A9:1F:49:9F:8D:A2
Certificate issuer: /CN=2325e7618ef963795cd3ffbb47a11ade64013905
Certificate serial: 01896FFF41AC4879D4B2D277DE9506211AFE
Authority key identifier: 23:25:E7:61:8E:F9:63:79:5C:D3:FF:BB:47:A1:1A:DE:64:01:39:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IyXnYY75Y3lc0_-7R6Ea3mQBOQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/79a8d1-7b75-4a0b-8fd9-366427a07bea/1/P45vv-An9E8ay0PC_1SpH0mfjaI.roa
Signing time: Wed 19 Jul 2023 21:12:26 +0000
ROA not before: Wed 19 Jul 2023 21:12:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 185.234.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6f:ff:41:ac:48:79:d4:b2:d2:77:de:95:06:21:1a:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2325e7618ef963795cd3ffbb47a11ade64013905
Validity
Not Before: Jul 19 21:12:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3f8e6fbfe027f44f1acb43c2ff54a91f499f8da2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:7c:fe:3e:8d:7c:d8:2b:b8:c1:de:7c:57:0a:
b6:8b:0b:9b:30:7c:69:8f:d6:b9:5c:34:f4:53:56:
1c:32:0b:9f:3b:82:ef:dc:ea:46:69:2b:0f:c4:19:
95:be:aa:e2:46:0a:4b:b4:09:37:dd:eb:a9:50:a6:
d2:b8:69:6a:b3:13:56:70:eb:eb:70:66:7c:d8:76:
a4:60:b9:a4:e9:d0:2d:02:7e:35:81:fd:15:6a:4c:
8f:53:b3:84:75:1c:00:43:12:07:97:a8:47:88:85:
c4:03:87:6d:db:15:2c:a3:39:01:58:23:8b:88:1c:
53:d3:12:7f:d8:e7:89:2f:32:d2:ea:07:34:98:ea:
8d:03:c3:21:aa:7a:ee:0d:2b:8e:ee:28:f2:8b:5d:
81:5c:44:cb:d8:af:27:73:8b:f2:8a:2a:36:32:36:
76:43:3c:a7:5b:5f:c7:31:64:9d:a7:1f:ce:b8:a1:
f3:c0:e7:fb:93:35:49:21:ae:bf:6f:0c:44:96:5b:
b4:e0:f6:12:0d:c0:54:e7:10:44:b5:60:20:1f:77:
06:35:9b:73:31:35:60:2f:35:37:2a:46:ff:af:4c:
b8:01:8c:39:3c:4a:fb:d3:18:a9:f1:30:52:ef:6d:
1f:da:95:17:03:c1:21:80:2e:0c:41:26:9d:89:91:
15:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:8E:6F:BF:E0:27:F4:4F:1A:CB:43:C2:FF:54:A9:1F:49:9F:8D:A2
X509v3 Authority Key Identifier:
keyid:23:25:E7:61:8E:F9:63:79:5C:D3:FF:BB:47:A1:1A:DE:64:01:39:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IyXnYY75Y3lc0_-7R6Ea3mQBOQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/79a8d1-7b75-4a0b-8fd9-366427a07bea/1/P45vv-An9E8ay0PC_1SpH0mfjaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/79a8d1-7b75-4a0b-8fd9-366427a07bea/1/IyXnYY75Y3lc0_-7R6Ea3mQBOQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.9.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:ce:61:b4:d3:da:4d:1d:d6:0c:d7:8a:38:c8:6a:e8:bb:90:
b9:aa:ab:72:5c:de:15:be:cd:47:9c:59:e9:65:6d:6c:e4:a0:
7a:5a:81:f6:5a:92:76:e6:cc:54:4c:87:25:9e:bd:37:3b:b6:
1b:75:b1:7e:0b:4a:f4:ba:a7:84:7a:29:d3:b1:8e:a0:64:bf:
18:7b:5f:09:9a:b1:dc:72:34:f2:2a:84:af:cf:03:11:6f:7b:
52:9f:2f:d2:5c:06:13:7c:31:ba:d2:92:44:02:ad:cd:00:ac:
d1:f9:b0:81:8c:8e:eb:c4:64:75:7e:91:88:08:43:90:7e:3e:
9e:58:b0:73:b1:0d:5b:25:d6:35:94:ad:4e:d9:8b:f3:3d:5e:
0e:2a:07:d8:70:06:2d:0c:13:e2:90:6b:5f:49:d6:6c:8e:52:
e9:9e:f2:b1:68:a1:73:0d:a9:6a:f5:1f:4f:d2:cc:2d:c3:cb:
e2:65:01:41:1d:c7:2a:b2:db:e8:eb:6a:4d:83:77:d2:ac:72:
0e:61:5b:f1:09:e9:22:12:09:54:4b:83:20:05:e5:42:63:80:
04:b5:1d:aa:db:21:d0:2b:21:f6:6a:f4:0b:0b:e4:93:92:a7:
a7:22:28:fd:6f:21:8b:84:cc:b8:80:76:6c:73:d0:44:d2:e8:
6e:96:31:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:41 2023 by rpki-client on console.sobornost.net