Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/7bac71-994e-4d47-bcfe-f8f3f0401cc3/1/OyyufiEuewSOiVfwequgpU2edUc.roa
File: OyyufiEuewSOiVfwequgpU2edUc.roa (raw, json)
Hash identifier: Yn3OyFi+VmrufRo8oonq/QEx4jG2Voxyi530eCSf6BM=
Subject key identifier: 3B:2C:AE:7E:21:2E:7B:04:8E:89:57:F0:7A:AB:A0:A5:4D:9E:75:47
Certificate issuer: /CN=3183efc52dd5d2d4f7e0c45d22c9c29f1dce8e59
Certificate serial: 018CC3B6DF529020663FDBE0164E24AC0138
Authority key identifier: 31:83:EF:C5:2D:D5:D2:D4:F7:E0:C4:5D:22:C9:C2:9F:1D:CE:8E:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYPvxS3V0tT34MRdIsnCnx3Ojlk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/7bac71-994e-4d47-bcfe-f8f3f0401cc3/1/OyyufiEuewSOiVfwequgpU2edUc.roa
Signing time: Mon 01 Jan 2024 06:29:50 +0000
ROA not before: Mon 01 Jan 2024 06:29:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197134
IP address blocks: 91.217.28.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:df:52:90:20:66:3f:db:e0:16:4e:24:ac:01:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183efc52dd5d2d4f7e0c45d22c9c29f1dce8e59
Validity
Not Before: Jan 1 06:29:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3b2cae7e212e7b048e8957f07aaba0a54d9e7547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:f3:4b:7a:b5:88:f3:f1:cd:9a:59:89:63:c0:
eb:b0:be:18:c9:52:10:e1:62:1e:fb:0b:d4:96:d3:
f9:ff:14:6e:43:f7:42:99:b4:f6:53:bf:a2:bf:ee:
12:31:b9:82:8a:1b:6b:ff:e7:b3:87:2b:76:e6:75:
40:46:10:ca:71:89:8e:01:53:56:42:b4:14:99:ed:
5f:63:e2:dc:10:c3:c2:45:3d:08:a6:df:b9:83:7c:
fd:4e:0f:6a:cc:e2:7e:a3:ef:11:98:e5:62:a0:3b:
e8:1a:4b:5c:48:89:dc:ec:0c:86:68:77:3e:26:0d:
3a:c9:64:58:d2:2b:f5:ec:d1:f9:4b:49:6b:90:17:
58:08:52:99:3c:c3:56:59:ac:ff:cc:d9:f0:2b:5e:
fb:2a:19:f4:7c:74:c8:65:92:30:a2:52:a6:38:91:
09:7f:da:2f:7e:5c:46:42:58:93:9c:27:a4:46:d4:
f2:1f:e8:82:75:58:de:02:90:b7:f0:84:45:e1:4e:
a1:49:ca:22:6d:e2:2e:48:aa:34:ab:2b:55:20:a1:
c8:ff:e4:36:57:a3:c2:ae:00:58:1b:a0:15:14:6b:
5f:a3:d5:51:ff:81:f2:d8:c4:fe:6e:4a:5d:9c:9b:
73:eb:78:5f:29:ac:20:81:f3:c9:cf:a7:f9:fa:34:
c0:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:2C:AE:7E:21:2E:7B:04:8E:89:57:F0:7A:AB:A0:A5:4D:9E:75:47
X509v3 Authority Key Identifier:
keyid:31:83:EF:C5:2D:D5:D2:D4:F7:E0:C4:5D:22:C9:C2:9F:1D:CE:8E:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYPvxS3V0tT34MRdIsnCnx3Ojlk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/7bac71-994e-4d47-bcfe-f8f3f0401cc3/1/OyyufiEuewSOiVfwequgpU2edUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/7bac71-994e-4d47-bcfe-f8f3f0401cc3/1/MYPvxS3V0tT34MRdIsnCnx3Ojlk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.28.0/24
Signature Algorithm: sha256WithRSAEncryption
32:4c:57:ce:ea:20:ed:89:b5:ee:b7:1b:90:53:e1:37:e6:52:
bb:43:b2:2a:ac:56:29:70:d3:53:0b:a2:6e:11:42:18:14:be:
da:3b:d2:d1:97:b5:d1:64:7c:d6:7a:1c:31:f7:0f:20:9a:f4:
ed:60:a0:12:60:28:05:95:5e:52:33:64:f6:29:26:f3:4f:f0:
b8:76:f5:d4:5f:32:b7:7a:5b:32:f2:5a:df:61:19:d4:86:a5:
6e:24:97:93:d4:2d:50:49:e0:e9:19:2b:e0:11:24:6f:08:10:
e1:e2:aa:71:27:62:61:77:4e:94:8b:4f:4f:53:b0:47:45:b1:
67:f2:e2:ba:3f:77:46:a2:3d:6c:e5:eb:3f:b7:1e:15:77:c1:
5b:d8:cc:31:26:f3:05:ab:32:e9:43:28:64:bc:65:3c:0e:f7:
da:5a:02:a7:1a:e8:c6:26:3b:52:8f:69:87:01:03:d5:54:88:
85:71:35:34:d3:ff:3e:21:df:36:63:2e:21:d4:2e:0f:36:69:
b9:b1:6c:c8:42:c3:06:42:7e:9f:ba:a8:d3:7f:cb:b4:b5:26:
f2:d4:f3:91:32:ce:3a:be:fa:ff:ea:26:64:58:9b:65:4c:01:
07:7f:96:b7:62:a7:bd:d4:98:c7:da:50:56:d5:dc:ea:98:be:
14:92:9e:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:04 2024 by rpki-client on console.sobornost.net