Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/2618f8-1264-4011-9b88-e327e5227066/1/lvKgREM9DIP358SvmGUvJSbHMYA.roa
File: lvKgREM9DIP358SvmGUvJSbHMYA.roa (raw, json)
Hash identifier: nbq46c0C03wt05A8wPElQE3UM0sfT2ncIorf0SJzcSs=
Subject key identifier: 96:F2:A0:44:43:3D:0C:83:F7:E7:C4:AF:98:65:2F:25:26:C7:31:80
Certificate issuer: /CN=3f8138fea066d6f504436001cc9d7f339db734c8
Certificate serial: 019376F3CEB09BDD6E27961E7F75E40EE329
Authority key identifier: 3F:81:38:FE:A0:66:D6:F5:04:43:60:01:CC:9D:7F:33:9D:B7:34:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P4E4_qBm1vUEQ2ABzJ1_M523NMg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/2618f8-1264-4011-9b88-e327e5227066/1/lvKgREM9DIP358SvmGUvJSbHMYA.roa
Signing time: Fri 29 Nov 2024 08:05:09 +0000
ROA not before: Fri 29 Nov 2024 08:05:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199579
IP address blocks: 195.43.150.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:76:f3:ce:b0:9b:dd:6e:27:96:1e:7f:75:e4:0e:e3:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f8138fea066d6f504436001cc9d7f339db734c8
Validity
Not Before: Nov 29 08:05:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=96f2a044433d0c83f7e7c4af98652f2526c73180
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:0d:62:0a:07:88:28:e4:ef:7a:45:f9:87:94:
c0:ba:7f:c2:9a:1f:7a:21:86:eb:0d:a1:6a:a9:a3:
4a:e6:7f:d4:5d:f2:74:87:af:ee:5e:c6:65:4c:e3:
62:0f:82:ea:67:90:5d:8c:cf:12:a7:56:f1:4a:2c:
c1:56:65:31:7a:97:df:60:70:20:84:df:b9:f0:a3:
48:96:6a:94:7d:ad:8e:6e:2d:67:ed:51:7d:d2:fe:
35:cb:5f:e6:fd:06:37:57:cc:97:e2:56:8b:79:c5:
f9:1e:4e:3c:8b:21:3a:00:1d:b3:da:ee:6b:ef:4c:
a4:67:83:f0:c9:b7:30:93:28:7c:1b:cb:8a:ce:3e:
00:1b:88:bc:a2:73:87:56:3e:7f:a7:37:8d:b8:aa:
e5:f1:42:eb:8b:9e:51:ef:13:9a:37:0a:5e:4a:d0:
28:d1:fa:db:37:e7:66:8a:8c:b6:2a:77:70:e5:a3:
77:eb:94:2c:6f:69:dc:20:40:3e:7b:56:93:b3:70:
bb:8b:ac:55:7d:20:35:10:14:7d:cd:dd:4d:25:c9:
dc:37:cc:aa:7d:1a:b5:07:87:d3:6c:42:7c:ff:d0:
03:49:e6:b5:16:58:a8:44:91:65:58:e0:6d:fb:5f:
55:12:c9:08:5d:85:ef:7d:ab:e8:77:80:55:d0:b0:
d7:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:F2:A0:44:43:3D:0C:83:F7:E7:C4:AF:98:65:2F:25:26:C7:31:80
X509v3 Authority Key Identifier:
keyid:3F:81:38:FE:A0:66:D6:F5:04:43:60:01:CC:9D:7F:33:9D:B7:34:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P4E4_qBm1vUEQ2ABzJ1_M523NMg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/2618f8-1264-4011-9b88-e327e5227066/1/lvKgREM9DIP358SvmGUvJSbHMYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/2618f8-1264-4011-9b88-e327e5227066/1/P4E4_qBm1vUEQ2ABzJ1_M523NMg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.43.150.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:a1:01:99:af:b6:51:89:4d:0d:bc:4c:ec:cf:bc:8f:69:4b:
0e:6f:bd:93:70:18:ee:ad:ae:c5:89:b1:6f:80:c1:1f:90:b6:
73:66:9c:f0:37:6e:b9:22:18:cb:8c:8e:6f:1d:f9:93:6f:d5:
4d:16:ba:0e:f3:29:ad:c2:43:e3:7e:94:02:dc:54:b8:0b:e0:
8e:7c:49:74:ca:87:36:a9:6b:69:78:16:60:3a:51:cb:37:9f:
2a:ed:05:6a:21:16:1f:36:80:f2:cb:a4:53:62:54:ed:78:34:
84:fc:95:48:dd:d1:ec:1e:2b:d5:71:b0:6d:b5:5a:a1:1d:ae:
57:5f:d6:7e:29:6a:94:55:99:fb:79:b3:4c:74:5c:71:9b:5e:
8a:fb:b3:90:55:41:b2:1d:00:b0:cf:68:c3:84:d4:4a:41:3e:
09:6b:08:be:ea:6d:6b:9d:cb:fe:ae:fd:63:57:0d:35:21:76:
d0:51:6e:ac:6c:13:93:d3:fd:1d:fd:fe:e6:ba:79:f2:12:b2:
29:81:17:dc:11:c6:b1:ef:42:73:65:4f:4d:fd:d2:b5:fa:46:
99:c4:6e:47:82:17:32:ee:bf:d5:61:40:dd:87:3e:ad:2e:04:
f5:ca:cb:5d:16:db:6c:86:0c:99:5a:d7:34:4b:a2:65:36:cd:
f6:4d:1f:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:05 2024 by rpki-client on console.sobornost.net