Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/S4ue1VqBzHSxr1G1zOQNPTeIgt0.roa
File: S4ue1VqBzHSxr1G1zOQNPTeIgt0.roa (raw, json)
Hash identifier: gZcz7AoBIpOxFz+7CPGsoY9md2qNbPtuwaCYE8H64JI=
Subject key identifier: 4B:8B:9E:D5:5A:81:CC:74:B1:AF:51:B5:CC:E4:0D:3D:37:88:82:DD
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 018CC79553CF61302FB6009AE695A40CF072
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/S4ue1VqBzHSxr1G1zOQNPTeIgt0.roa
Signing time: Tue 02 Jan 2024 00:31:41 +0000
ROA not before: Tue 02 Jan 2024 00:31:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50614
IP address blocks: 188.210.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:53:cf:61:30:2f:b6:00:9a:e6:95:a4:0c:f0:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 2 00:31:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4b8b9ed55a81cc74b1af51b5cce40d3d378882dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:44:db:9b:b0:19:c5:e5:b1:3f:ed:50:91:20:
11:24:a5:eb:73:a3:d7:c7:0a:15:b5:a6:42:52:aa:
bf:61:31:72:8a:10:b1:e2:8d:1a:5b:67:03:f8:f9:
79:80:23:43:cb:cc:7f:fa:e9:77:77:0e:fa:aa:52:
e3:3a:76:81:4c:93:ec:e4:45:4e:04:c7:62:4e:b5:
f1:28:9f:8b:bc:af:e0:a2:ef:2c:1f:49:14:09:fc:
10:3f:be:cd:05:80:81:b5:2f:24:f8:a1:0c:88:ff:
f6:0c:93:cd:36:99:d1:54:37:f1:23:ad:a6:d4:f6:
6d:13:c1:58:53:c4:0a:62:24:75:f4:76:bd:8e:af:
0b:dd:0b:71:9e:be:cf:5b:a7:21:95:66:e7:4b:70:
3e:f6:1e:b5:c1:5c:2a:47:14:34:c8:ec:17:15:b4:
0f:68:52:c2:0c:95:8d:3d:82:90:6b:85:39:54:10:
14:4b:b6:50:73:2e:6f:16:85:10:19:7a:82:7d:fc:
0a:8d:8d:9a:45:af:2f:a7:00:63:b3:b7:b8:72:8d:
e3:92:03:45:67:ca:62:53:09:52:08:20:6a:3a:15:
80:ef:07:48:90:0e:23:56:41:11:bc:b0:84:53:53:
ea:d0:fe:f3:5c:de:a5:f1:9a:ac:01:77:4b:72:ba:
32:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:8B:9E:D5:5A:81:CC:74:B1:AF:51:B5:CC:E4:0D:3D:37:88:82:DD
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/S4ue1VqBzHSxr1G1zOQNPTeIgt0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.210.91.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:5f:cb:5a:51:44:ee:24:ce:c2:78:7e:61:c4:92:ba:46:87:
60:ea:56:c8:b7:66:18:bf:de:1d:5c:09:95:54:8c:c7:ce:94:
5f:db:0a:72:52:ef:85:10:c0:33:04:c5:b0:27:83:6a:de:96:
7d:29:70:0c:08:04:43:90:05:a4:a8:aa:3d:29:e5:81:e2:cd:
c7:42:26:2b:7f:87:5c:fd:43:9b:22:38:0e:d7:3a:e1:78:74:
a4:62:ba:44:62:2a:2f:15:f1:66:87:10:33:08:3b:e0:1e:6c:
1d:26:48:95:00:e8:55:dd:29:1b:65:36:68:95:db:86:95:b0:
13:28:de:fa:d8:4d:2d:5e:24:7b:37:77:c8:57:73:12:ab:9d:
d0:d0:62:49:f2:52:70:c6:98:75:fe:5f:cd:6b:76:cb:88:96:
76:22:04:d1:0b:0f:bc:6f:49:84:2a:ea:78:22:c3:92:28:21:
24:10:8a:05:d9:8f:7f:7b:74:6d:2c:3c:8e:75:74:9c:f1:83:
f8:5a:df:f6:bb:99:ed:16:2b:06:0b:44:3a:bb:d5:8b:db:96:
dd:33:ee:86:e7:3a:73:36:59:91:71:37:a5:da:0c:d4:ce:1f:
54:0f:96:a4:96:a3:1f:a8:0b:68:49:83:d5:d3:65:91:1d:a6:
70:0a:5e:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:06 2024 by rpki-client on console.sobornost.net