Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/KRDlrhq3prnrYvwkFa2slZO3Vvc.roa
File: KRDlrhq3prnrYvwkFa2slZO3Vvc.roa (raw, json)
Hash identifier: gxzHu005zs577XDLMFiZHdGhclYEKzynV7un31e5apY=
Subject key identifier: 29:10:E5:AE:1A:B7:A6:B9:EB:62:FC:24:15:AD:AC:95:93:B7:56:F7
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 01937D01CD4A7E4CD5523560721A4BEE9D47
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/KRDlrhq3prnrYvwkFa2slZO3Vvc.roa
Signing time: Sat 30 Nov 2024 12:18:10 +0000
ROA not before: Sat 30 Nov 2024 12:18:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 996
IP address blocks: 37.218.208.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:7d:01:cd:4a:7e:4c:d5:52:35:60:72:1a:4b:ee:9d:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Nov 30 12:18:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2910e5ae1ab7a6b9eb62fc2415adac9593b756f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a5:7b:01:68:0c:2b:90:e1:51:73:ff:55:10:
02:f8:94:13:16:65:64:78:e1:ff:6e:33:24:fa:7e:
6f:27:34:f1:7c:c1:3e:6c:18:85:a2:66:db:8b:55:
d4:68:c4:3f:f8:23:cd:d6:1c:88:3e:54:50:ca:5b:
8d:dc:ad:ab:dd:34:63:9e:e6:48:c7:37:12:b5:5e:
fc:fa:96:8d:72:63:a5:29:81:11:d5:f8:53:38:fe:
5c:e6:cf:61:ff:9f:df:36:6d:bd:fe:a9:00:c5:ce:
33:5b:73:e0:6b:49:6d:93:a0:75:6c:da:73:43:67:
ee:7f:e2:16:80:92:c6:48:09:41:65:41:f9:8c:e9:
c5:31:20:31:af:80:73:31:09:f1:61:6e:bf:68:4e:
0a:81:4a:46:8e:5c:62:e1:cb:36:83:ec:54:f5:fa:
a8:cc:0d:6a:0e:f4:11:e8:2e:4c:9c:20:0e:1f:28:
b9:67:49:27:67:3b:29:a3:34:b4:ca:31:fd:14:82:
0c:df:23:38:f2:0d:9a:ab:01:95:94:58:2d:ca:ca:
79:18:b5:9a:af:c7:5f:6b:19:31:2d:c5:d4:62:ee:
ef:66:75:c5:5a:8c:b5:7d:bc:40:f3:94:98:a4:2b:
8b:31:55:70:63:cd:71:51:3d:86:e5:b4:b0:f6:13:
2b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:10:E5:AE:1A:B7:A6:B9:EB:62:FC:24:15:AD:AC:95:93:B7:56:F7
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/KRDlrhq3prnrYvwkFa2slZO3Vvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.218.208.0/21
Signature Algorithm: sha256WithRSAEncryption
1a:b6:19:21:93:36:53:e2:6b:45:04:64:13:9e:34:87:e5:98:
b2:31:3c:ee:05:6d:bb:ee:8f:33:83:eb:16:fe:de:2d:c8:24:
c4:f0:a9:09:f0:23:4e:85:1c:36:1f:c6:07:7c:8e:a5:ae:6b:
b7:16:ed:35:cf:ee:bc:5b:48:5d:c5:4f:5d:30:94:c0:d4:02:
29:bb:21:1f:47:15:3f:11:2c:df:ed:b0:32:f8:dd:27:be:49:
3e:16:1c:a7:df:67:5e:52:ae:7b:6e:d6:fe:fa:23:a6:14:18:
6f:5a:3b:50:eb:1c:0b:c6:04:78:1e:38:e0:27:c7:7c:9c:eb:
75:c6:ef:16:a2:58:8d:73:c4:04:05:f7:6b:ea:d2:96:00:dc:
77:8e:48:0f:f1:1c:db:8f:e7:08:d3:2b:57:ce:eb:d2:75:f2:
95:46:43:29:f0:72:37:c0:bf:27:ca:5e:10:bf:03:04:89:4a:
73:59:52:55:95:b4:db:8f:2a:79:82:66:96:bf:53:3b:5b:42:
b2:9c:c8:32:7f:f9:0e:e6:a2:58:d4:4a:7a:6c:b4:9f:c3:f2:
10:db:f4:3d:65:53:3f:cd:40:f0:f8:da:6a:d8:ea:df:8f:81:
35:24:81:a6:0d:31:8a:94:1d:6d:00:d5:df:23:1d:a5:cc:51:
54:66:d5:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:06 2024 by rpki-client on console.sobornost.net