Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/stoj5Ynf3UKGx-XFO0IpsDkTJDc.roa
File: stoj5Ynf3UKGx-XFO0IpsDkTJDc.roa (raw, json)
Hash identifier: beG0A2/D9oXtUCP7OPF7yOQzfV5gMKqDi8MUW8/vZZc=
Subject key identifier: B2:DA:23:E5:89:DF:DD:42:86:C7:E5:C5:3B:42:29:B0:39:13:24:37
Certificate issuer: /CN=3ae51ad5040f4503afc71dc50189c4a964d1cd40
Certificate serial: 0184852AC9FCA8ACDD49F5D52E3BA6E14B54
Authority key identifier: 3A:E5:1A:D5:04:0F:45:03:AF:C7:1D:C5:01:89:C4:A9:64:D1:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OuUa1QQPRQOvxx3FAYnEqWTRzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/stoj5Ynf3UKGx-XFO0IpsDkTJDc.roa
Signing time: Thu 17 Nov 2022 10:38:04 +0000
ROA not before: Thu 17 Nov 2022 10:38:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 139.28.24.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:85:2a:c9:fc:a8:ac:dd:49:f5:d5:2e:3b:a6:e1:4b:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ae51ad5040f4503afc71dc50189c4a964d1cd40
Validity
Not Before: Nov 17 10:38:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b2da23e589dfdd4286c7e5c53b4229b039132437
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:de:17:b1:5c:ca:43:d9:61:c2:6c:22:09:2e:
e1:4d:1f:53:c5:4d:cc:98:d0:6a:b2:2c:a3:fa:95:
7b:56:bc:3b:04:dd:db:ab:b9:2c:aa:5d:46:86:1b:
e9:5e:9d:66:56:aa:40:1b:0d:7e:b2:22:a5:46:29:
96:6d:fa:51:f0:93:6c:04:c2:13:c1:3e:cd:37:a1:
37:56:87:ae:4d:d1:80:09:ca:98:09:26:f1:dd:67:
e3:83:2e:4f:3f:a1:39:a2:71:b5:a5:5e:f0:f0:cc:
b8:d3:24:00:a8:68:6f:6f:1c:fe:58:63:e1:d1:a2:
a6:61:35:a9:e3:3e:fd:e5:82:59:43:f1:aa:8e:31:
04:78:1e:8d:42:99:e5:9b:d5:8a:3b:7c:82:5a:61:
6e:45:63:a7:c2:c6:99:e5:22:41:18:55:04:35:42:
4e:77:fb:50:71:ff:ab:b9:3a:a9:07:06:58:bd:4d:
81:ac:53:cc:64:04:ee:c0:9c:af:70:2e:5b:ee:a6:
67:db:f4:3c:00:e1:09:c4:c9:34:1b:d5:9f:63:2c:
c9:20:8e:77:17:78:5f:76:c4:50:65:ba:a8:9f:07:
f9:d8:f6:b9:20:bb:b7:da:4a:34:6f:14:eb:36:09:
c6:ff:79:4f:93:4d:e6:75:6a:fe:1a:01:f2:33:df:
f1:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:DA:23:E5:89:DF:DD:42:86:C7:E5:C5:3B:42:29:B0:39:13:24:37
X509v3 Authority Key Identifier:
keyid:3A:E5:1A:D5:04:0F:45:03:AF:C7:1D:C5:01:89:C4:A9:64:D1:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OuUa1QQPRQOvxx3FAYnEqWTRzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/stoj5Ynf3UKGx-XFO0IpsDkTJDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/OuUa1QQPRQOvxx3FAYnEqWTRzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.24.0/24
Signature Algorithm: sha256WithRSAEncryption
99:97:4c:4b:f9:9d:87:7a:16:b2:cb:2d:1f:da:4d:84:9f:e2:
98:07:2b:d5:a7:5a:8a:53:de:0d:8f:56:91:c4:41:41:cd:0d:
f4:18:cb:73:27:89:d9:d7:ed:0c:4f:60:14:1b:d2:1a:cd:44:
bf:16:6a:d2:d0:6c:f1:98:6d:a3:8c:0f:f2:f4:80:23:41:b6:
46:7b:0c:5f:6d:68:c2:b7:15:35:92:ef:ce:13:b8:eb:48:8b:
dd:b1:e5:c3:20:9f:67:41:c4:a4:20:09:2f:c4:14:6b:43:22:
9c:a8:47:37:f8:58:1f:21:16:2a:f7:50:11:03:00:7b:59:22:
64:e1:94:5b:01:87:b8:a6:af:bd:74:2f:fc:19:cf:99:a7:a2:
ec:bd:7f:93:dc:fb:6c:c1:ab:ff:d0:45:49:23:a2:57:c6:8b:
54:03:4a:92:94:8e:56:e3:d8:b6:cb:b2:ce:74:2d:6d:ff:8b:
6a:ba:84:a1:2a:8d:78:1a:05:b5:34:87:7f:8c:0f:e6:17:c1:
86:88:32:dc:eb:60:58:d8:42:21:ba:ee:2b:83:3d:7e:d6:f6:
b8:f7:31:37:ca:64:77:6c:fe:c6:6c:bc:b5:2c:71:a2:30:dd:
63:69:f2:fc:ff:66:37:88:07:d9:d5:6a:b7:de:f6:f3:64:2f:
b9:bb:ab:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:45 2023 by rpki-client on console.sobornost.net