Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/6ee225-1d3e-4448-9e08-c9d03fad025a/1/kIHSjar5PbCrCmPtqwLHGnwknvA.roa
File: kIHSjar5PbCrCmPtqwLHGnwknvA.roa (raw, json)
Hash identifier: f7VgWd7q/brwGR+b06BBBElOrIsDTM8LviUa+Nkg1eY=
Subject key identifier: 90:81:D2:8D:AA:F9:3D:B0:AB:0A:63:ED:AB:02:C7:1A:7C:24:9E:F0
Certificate issuer: /CN=5ff4616f5cca34634b42311a0ea3d11864dada22
Certificate serial: 018A2F13
Authority key identifier: 5F:F4:61:6F:5C:CA:34:63:4B:42:31:1A:0E:A3:D1:18:64:DA:DA:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X_Rhb1zKNGNLQjEaDqPRGGTa2iI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/6ee225-1d3e-4448-9e08-c9d03fad025a/1/kIHSjar5PbCrCmPtqwLHGnwknvA.roa
Signing time: Sat 01 Jan 2022 09:04:24 +0000
ROA not before: Sat 01 Jan 2022 09:04:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44285
IP address blocks: 194.56.148.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25833235 (0x18a2f13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ff4616f5cca34634b42311a0ea3d11864dada22
Validity
Not Before: Jan 1 09:04:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9081d28daaf93db0ab0a63edab02c71a7c249ef0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:47:8b:37:4c:1e:6c:0f:fc:4f:64:55:6f:d3:
bd:21:23:e7:74:58:5a:75:8b:6d:93:52:8a:8a:07:
86:df:8b:fe:14:39:e1:7c:3e:f1:1b:cc:aa:7f:0f:
af:31:09:5e:cc:29:00:96:0b:84:4d:e4:45:9a:b1:
f2:58:c6:c2:22:3b:4b:a2:08:8f:8a:89:73:c6:5f:
53:62:8c:f5:70:0c:11:a7:6e:06:cc:f1:e0:dc:b2:
33:fb:1f:14:9b:ef:82:fa:45:ce:a2:51:3c:8f:ab:
2a:91:fc:87:ed:01:be:1d:b7:bf:e1:49:04:1b:c4:
44:c5:45:8a:19:17:03:70:93:4c:35:66:fb:b0:88:
6a:8f:18:4c:8d:0a:58:ff:47:3e:78:77:28:2b:23:
8c:e6:a0:ee:ac:6c:81:e9:3d:4d:12:d7:ad:24:0c:
00:20:87:ea:7a:f6:3a:b8:8d:de:50:28:0a:8d:ba:
21:5a:64:81:59:02:95:25:51:d3:8b:61:64:e9:14:
6c:1b:7f:fd:f5:d0:99:e5:09:b2:f9:e7:11:41:28:
e0:84:ff:35:2e:0b:f8:e8:b6:2a:3d:a4:be:85:68:
33:70:7a:ef:79:ba:a6:30:28:19:1a:b3:92:a9:34:
57:84:f9:3e:4d:8c:74:73:8a:3a:2f:f3:c3:c3:30:
68:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:81:D2:8D:AA:F9:3D:B0:AB:0A:63:ED:AB:02:C7:1A:7C:24:9E:F0
X509v3 Authority Key Identifier:
keyid:5F:F4:61:6F:5C:CA:34:63:4B:42:31:1A:0E:A3:D1:18:64:DA:DA:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X_Rhb1zKNGNLQjEaDqPRGGTa2iI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/6ee225-1d3e-4448-9e08-c9d03fad025a/1/kIHSjar5PbCrCmPtqwLHGnwknvA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/6ee225-1d3e-4448-9e08-c9d03fad025a/1/X_Rhb1zKNGNLQjEaDqPRGGTa2iI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.56.148.0/24
Signature Algorithm: sha256WithRSAEncryption
15:a9:5f:6a:67:76:7d:27:e6:8b:1e:da:e7:48:df:4a:85:40:
24:86:bc:a3:73:72:72:40:59:8d:53:56:80:d4:61:e0:0d:c9:
7d:0c:13:06:8a:33:1b:b6:64:e9:f8:63:77:fd:5f:a5:31:94:
70:ee:b2:a4:ec:6e:5f:35:69:1f:84:21:ff:7a:4b:d4:f8:c6:
83:d0:ea:65:52:3f:34:93:8d:aa:87:8b:c9:ad:b9:a2:ad:2e:
fe:c2:f2:5e:92:9e:50:ba:02:c0:45:ba:e5:b0:ca:3a:83:15:
37:c3:6e:42:06:cd:77:d6:f3:d3:bf:c4:59:6c:78:6f:d9:45:
e7:61:67:1e:5b:63:c5:76:64:cf:b1:ec:07:ec:6e:c2:fa:ef:
39:22:fa:b2:37:2e:aa:d6:69:0b:f0:14:b7:c1:f6:a2:b5:27:
41:04:a1:78:57:14:d3:7e:21:7e:72:25:0c:c6:7a:85:c8:57:
2e:8a:19:5f:79:05:8f:76:19:d1:6a:8e:8c:3b:46:c9:46:cc:
b5:24:9a:55:33:b0:c8:12:d8:70:bd:7f:6a:54:18:41:bf:27:
06:66:00:66:b4:a8:71:7b:37:2b:bf:9c:4a:e0:da:6c:34:dc:
bb:c7:e7:07:65:d2:f4:fe:44:e2:6f:26:13:eb:be:ca:47:d3:
60:bd:8f:67
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAYovEzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ZmY0NjE2ZjVjY2EzNDYzNGI0MjMxMWEwZWEzZDExODY0ZGFkYTIyMB4XDTIyMDEw
MTA5MDQyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTA4MWQyOGRhYWY5
M2RiMGFiMGE2M2VkYWIwMmM3MWE3YzI0OWVmMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOJHizdMHmwP/E9kVW/TvSEj53RYWnWLbZNSiooHht+L/hQ5
4Xw+8RvMqn8PrzEJXswpAJYLhE3kRZqx8ljGwiI7S6IIj4qJc8ZfU2KM9XAMEadu
Bszx4NyyM/sfFJvvgvpFzqJRPI+rKpH8h+0Bvh23v+FJBBvERMVFihkXA3CTTDVm
+7CIao8YTI0KWP9HPnh3KCsjjOag7qxsgek9TRLXrSQMACCH6nr2OriN3lAoCo26
IVpkgVkClSVR04thZOkUbBt//fXQmeUJsvnnEUEo4IT/NS4L+Oi2Kj2kvoVoM3B6
73m6pjAoGRqzkqk0V4T5Pk2MdHOKOi/zw8MwaIcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSQgdKNqvk9sKsKY+2rAscafCSe8DAfBgNVHSMEGDAWgBRf9GFvXMo0Y0tC
MRoOo9EYZNraIjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1hfUmhiMXpLTkdOTFFqRWFEcVBSR0dUYTJpSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmYvNmVlMjI1LTFkM2UtNDQ0OC05ZTA4LWM5ZDAzZmFkMDI1YS8x
L2tJSFNqYXI1UGJDckNtUHRxd0xIR253a252QS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmYv
NmVlMjI1LTFkM2UtNDQ0OC05ZTA4LWM5ZDAzZmFkMDI1YS8xL1hfUmhiMXpLTkdO
TFFqRWFEcVBSR0dUYTJpSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMI4lDANBgkqhkiG9w0BAQsFAAOC
AQEAFalfamd2fSfmix7a50jfSoVAJIa8o3NyckBZjVNWgNRh4A3JfQwTBoozG7Zk
6fhjd/1fpTGUcO6ypOxuXzVpH4Qh/3pL1PjGg9DqZVI/NJONqoeLya25oq0u/sLy
XpKeULoCwEW65bDKOoMVN8NuQgbNd9bz07/EWWx4b9lF52FnHltjxXZkz7HsB+xu
wvrvOSL6sjcuqtZpC/AUt8H2orUnQQSheFcU034hfnIlDMZ6hchXLooZX3kFj3YZ
0WqOjDtGyUbMtSSaVTOwyBLYcL1/alQYQb8nBmYAZrSocXs3K7+cSuDabDTcu8fn
B2XS9P5E4m8mE+u+ykfTYL2PZw==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:19 2023 by rpki-client on console.sobornost.net