Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/1-GlNYwH4F6RSuZv5-KhMD_WiaHA.roa
File: 1-GlNYwH4F6RSuZv5-KhMD_WiaHA.roa (raw, json)
Hash identifier: AxTzAFx6keBrMXQ2QIjfTV7rNuJ01rqR5Df/7CS5W3g=
Subject key identifier: F8:69:4D:63:01:F8:17:A4:52:B9:9B:F9:F8:A8:4C:0F:F5:A2:68:70
Certificate issuer: /CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Certificate serial: 0183F9FA4568B20208E1E5539C4485DA8FAD
Authority key identifier: 3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/1-GlNYwH4F6RSuZv5-KhMD_WiaHA.roa
Signing time: Fri 21 Oct 2022 09:57:52 +0000
ROA not before: Fri 21 Oct 2022 09:57:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 91.193.234.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f9:fa:45:68:b2:02:08:e1:e5:53:9c:44:85:da:8f:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Validity
Not Before: Oct 21 09:57:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f8694d6301f817a452b99bf9f8a84c0ff5a26870
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:c0:f7:2a:5a:bc:cf:35:eb:a9:88:7c:d4:26:
e5:d3:81:5f:75:31:f7:61:38:71:b0:c1:6e:7c:9b:
3b:8b:53:d5:61:5f:85:92:f5:b1:85:ff:db:7b:3d:
72:cf:fa:f3:6b:0e:59:72:ee:c2:48:62:c7:72:42:
d0:67:c5:54:68:20:01:19:3b:ad:1e:c8:ec:bd:61:
a6:c9:25:82:9a:de:c5:b5:06:d8:a5:da:f2:51:16:
9c:94:a4:13:6d:01:e8:4c:e0:d3:f9:bc:e0:f5:43:
c6:62:6c:05:53:20:3d:01:a3:ee:df:32:cb:24:2b:
3a:56:91:b1:62:00:61:07:71:09:20:53:a1:36:6f:
a7:4f:f5:bf:a1:0f:df:43:22:99:7e:94:27:75:7d:
f0:44:0a:7c:b6:ec:d5:a2:c1:0b:96:7d:9f:ee:17:
af:d7:03:bb:a8:6f:5a:4d:0d:98:5f:e1:cd:77:f6:
ce:b9:b6:a4:04:83:99:4a:46:02:f5:a8:18:f9:e9:
37:01:2e:83:0e:61:62:6b:86:89:a2:6f:1a:ca:32:
a0:ee:c4:c2:41:11:8a:c6:d3:95:d2:92:72:7b:e3:
d5:98:a7:14:53:09:63:4e:96:d6:75:89:94:f3:7d:
13:47:08:f5:51:84:4b:51:ca:42:39:ec:f1:fb:b7:
05:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:69:4D:63:01:F8:17:A4:52:B9:9B:F9:F8:A8:4C:0F:F5:A2:68:70
X509v3 Authority Key Identifier:
keyid:3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/1-GlNYwH4F6RSuZv5-KhMD_WiaHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/PNzIvNtsdErN9D3XLWjSBFGhefY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.193.234.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:78:ca:5a:09:b0:f4:cf:a4:ba:0f:e8:b4:da:26:77:12:7b:
d4:db:3c:24:ed:c5:f4:a3:79:e9:2e:34:58:fb:fc:72:4a:99:
34:b7:7f:ae:bc:6e:71:b8:32:d9:41:14:47:9f:7f:bc:63:07:
0f:72:fd:3c:3f:62:99:3c:bc:5f:e9:69:7a:c6:28:d0:99:2d:
ad:b3:48:70:09:f7:2f:28:90:61:bb:ad:43:96:9e:44:39:31:
85:b6:51:d4:c4:68:50:64:b5:00:c5:7c:3e:d7:56:a8:d5:80:
6e:ca:5e:11:ea:90:3d:17:5b:49:b4:0c:bc:f1:bc:33:81:f9:
0c:b6:56:bf:9b:8a:1f:dc:5a:bc:4a:b3:3f:89:5e:4e:3d:a3:
68:36:2e:8c:ea:b2:01:2b:b1:7a:db:1d:af:73:86:13:3a:b2:
bd:5f:1d:56:2e:c0:e7:01:f9:45:b3:4e:2a:ea:67:57:36:7a:
38:85:4f:2e:7d:77:08:f4:f7:b0:b1:ec:5c:e3:5c:c1:11:ac:
b5:7e:96:9a:34:04:ca:f8:dc:c7:e0:c7:98:42:47:b9:0d:43:
a1:da:5c:08:3a:c4:90:bf:d6:fb:fb:10:d2:51:7f:38:53:90:
e6:11:5a:3b:6f:c6:5f:b4:ab:b0:e6:1d:60:9f:63:7b:bb:cc:
a8:50:0d:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:31 2023 by rpki-client on console.sobornost.net