Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/411696-93be-46ba-8e91-5c017bd43663/1/CjoDI7UBz32NyrDAqzIF6WrYCNo.roa
File: CjoDI7UBz32NyrDAqzIF6WrYCNo.roa (raw, json)
Hash identifier: zlb5TeY2oASKjFbtwg9Kmv9MNrd1EbaNQ3sBHrMpaN4=
Subject key identifier: 0A:3A:03:23:B5:01:CF:7D:8D:CA:B0:C0:AB:32:05:E9:6A:D8:08:DA
Certificate issuer: /CN=d833bfa014b9192f2700acaf6f279dbef8a0aff2
Certificate serial: 0193AD1E943E1A05D0E3D7679512F258FB35
Authority key identifier: D8:33:BF:A0:14:B9:19:2F:27:00:AC:AF:6F:27:9D:BE:F8:A0:AF:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DO_oBS5GS8nAKyvbyedvvigr_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/411696-93be-46ba-8e91-5c017bd43663/1/CjoDI7UBz32NyrDAqzIF6WrYCNo.roa
Signing time: Mon 09 Dec 2024 20:31:22 +0000
ROA not before: Mon 09 Dec 2024 20:31:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 194.153.168.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:ad:1e:94:3e:1a:05:d0:e3:d7:67:95:12:f2:58:fb:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d833bfa014b9192f2700acaf6f279dbef8a0aff2
Validity
Not Before: Dec 9 20:31:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0a3a0323b501cf7d8dcab0c0ab3205e96ad808da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:bc:df:2b:02:f7:86:55:c5:24:8a:e4:38:df:
a7:6f:78:95:89:ef:54:c6:30:3b:15:f1:ba:4d:43:
5a:18:74:23:7e:15:4d:28:87:20:94:da:f1:4e:75:
af:34:c7:0e:8f:38:95:a9:49:03:f1:96:12:3e:05:
72:58:7f:a1:4d:0a:4f:3e:f3:04:fd:52:a8:cc:6f:
7d:e6:b0:42:74:66:d8:fb:b4:c7:2d:04:d1:b9:00:
9e:77:c5:f4:d6:e9:9e:b1:7b:a5:a5:92:8a:09:12:
f0:4d:51:de:d9:b7:82:c5:4c:8c:57:bd:9b:c0:44:
6e:c3:ac:69:fa:9c:b0:34:9d:f2:71:5a:9a:43:fd:
fd:95:97:42:46:d6:59:0d:b1:3e:67:45:64:bf:96:
7e:60:b9:bc:d8:af:be:9e:19:25:ca:f1:93:90:b1:
bc:7c:3f:74:5c:b0:ba:eb:df:7f:d3:b8:e7:a3:87:
a0:08:50:f1:25:41:bd:26:62:15:1e:ee:bc:97:bc:
e4:7c:d0:f4:5e:a4:bb:70:4a:43:e5:60:2e:17:eb:
18:6f:6a:d7:a2:bc:3e:d3:98:ed:cc:93:3d:3b:74:
5c:12:ec:a5:29:55:e0:0b:9e:56:3d:a6:44:3d:89:
da:ef:8e:ad:ea:58:d1:ed:a0:f2:55:85:0d:ec:f5:
68:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:3A:03:23:B5:01:CF:7D:8D:CA:B0:C0:AB:32:05:E9:6A:D8:08:DA
X509v3 Authority Key Identifier:
keyid:D8:33:BF:A0:14:B9:19:2F:27:00:AC:AF:6F:27:9D:BE:F8:A0:AF:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DO_oBS5GS8nAKyvbyedvvigr_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/411696-93be-46ba-8e91-5c017bd43663/1/CjoDI7UBz32NyrDAqzIF6WrYCNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/411696-93be-46ba-8e91-5c017bd43663/1/2DO_oBS5GS8nAKyvbyedvvigr_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.153.168.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:d3:e0:52:ac:dd:88:c9:fa:8c:c1:07:cb:a8:b1:80:a2:2f:
86:e0:eb:e0:f7:84:ed:40:6f:ce:c8:68:46:db:de:27:4e:97:
cb:28:9d:85:7e:f5:06:1d:59:33:80:0b:09:58:65:7b:b6:29:
35:ad:9f:b5:ef:de:6b:34:48:85:6c:da:cc:d3:49:84:ef:07:
65:c3:e3:43:3c:82:9e:28:4b:a1:13:70:cb:f0:e5:2f:ee:f2:
0b:b7:a5:1d:6e:89:41:29:11:b5:36:49:fa:bf:7b:ca:c2:fb:
22:da:6b:34:d0:6b:34:d6:13:e0:18:a5:f3:b4:4f:bf:c8:15:
73:c8:4a:67:bf:4a:f4:fc:c8:bf:52:e9:7a:7b:e1:87:05:d3:
82:70:00:ee:0a:20:15:63:ac:ce:e5:dc:9f:50:87:42:87:24:
05:07:bd:d3:05:56:4a:d4:31:67:e9:a2:45:66:31:22:fd:1e:
d4:f6:34:1a:f4:cb:15:0a:08:09:39:bf:c0:e9:8e:cd:ab:bd:
e0:c9:22:6f:73:a1:fa:78:79:bb:ba:f3:1d:e3:5e:26:52:c4:
03:d4:b9:c3:24:18:91:93:ff:90:2a:96:71:5e:f3:95:75:6a:
5c:ca:fe:76:b0:41:e0:e5:3a:2b:7e:53:ec:b3:0b:1c:9d:29:
ad:c9:9e:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:01 2024 by rpki-client on console.sobornost.net