Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/5af7c8-0d9b-463e-b121-429b84f95b63/1/QFs5TAMVj0hcMD5fEfugVuWa4gg.roa
File: QFs5TAMVj0hcMD5fEfugVuWa4gg.roa (raw, json)
Hash identifier: 5CLapp+HZQKkjJg5O+6FV9t8wO+AQk/WnFCZpWU2Wkw=
Subject key identifier: 40:5B:39:4C:03:15:8F:48:5C:30:3E:5F:11:FB:A0:56:E5:9A:E2:08
Certificate issuer: /CN=02f7caa1172622825415bace3f21d4e1ebc133a4
Certificate serial: 0834AA50
Authority key identifier: 02:F7:CA:A1:17:26:22:82:54:15:BA:CE:3F:21:D4:E1:EB:C1:33:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AvfKoRcmIoJUFbrOPyHU4evBM6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/5af7c8-0d9b-463e-b121-429b84f95b63/1/QFs5TAMVj0hcMD5fEfugVuWa4gg.roa
Signing time: Sat 01 Jan 2022 10:58:22 +0000
ROA not before: Sat 01 Jan 2022 10:58:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57395
IP address blocks: 185.254.0.0/24 maxlen: 24
185.254.1.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137669200 (0x834aa50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02f7caa1172622825415bace3f21d4e1ebc133a4
Validity
Not Before: Jan 1 10:58:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=405b394c03158f485c303e5f11fba056e59ae208
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:ed:8a:88:09:9a:b9:14:1b:2f:bd:8d:e0:fc:
1b:52:08:47:ea:f4:e9:f4:05:62:90:8a:b6:44:0b:
17:3b:f1:a1:df:4a:00:77:14:39:3e:c7:ee:e7:f6:
ff:ac:1a:9f:29:b6:bc:9e:c4:98:ba:6d:42:94:00:
6c:4f:05:c8:44:83:1f:52:d3:0f:44:08:23:fd:82:
25:a6:f5:0d:ce:00:af:45:47:9b:09:51:c2:42:c2:
e5:3c:f0:8d:9c:86:dd:47:de:7b:94:80:05:d9:23:
e9:5e:2b:1a:16:50:9f:39:80:48:a5:6c:49:11:ec:
3a:9d:74:ee:43:d1:49:94:ab:8f:eb:10:4b:3d:54:
93:b4:9b:37:eb:e0:88:91:e5:3e:91:fc:7b:16:b8:
3b:16:fa:e3:71:37:57:e9:c3:9b:a0:22:2c:ce:9d:
75:ef:d4:69:7f:83:e1:fa:69:b5:33:91:db:10:99:
32:cf:08:1f:5a:c1:b0:47:57:ff:e1:6d:18:d9:e4:
b3:de:4f:d9:5b:58:e8:bb:e2:55:ca:1e:17:be:14:
8d:4b:bf:34:c5:08:69:d3:e5:4c:0a:6a:bb:f3:d1:
f0:85:df:ef:44:43:d0:79:d0:b5:d0:19:27:1c:26:
3f:62:02:6c:8f:f5:39:35:e9:eb:fc:70:ed:fe:b9:
ef:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:5B:39:4C:03:15:8F:48:5C:30:3E:5F:11:FB:A0:56:E5:9A:E2:08
X509v3 Authority Key Identifier:
keyid:02:F7:CA:A1:17:26:22:82:54:15:BA:CE:3F:21:D4:E1:EB:C1:33:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AvfKoRcmIoJUFbrOPyHU4evBM6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/5af7c8-0d9b-463e-b121-429b84f95b63/1/QFs5TAMVj0hcMD5fEfugVuWa4gg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/5af7c8-0d9b-463e-b121-429b84f95b63/1/AvfKoRcmIoJUFbrOPyHU4evBM6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.254.0.0/23
Signature Algorithm: sha256WithRSAEncryption
27:1f:44:cd:95:b5:46:ca:f0:99:93:8b:1b:62:7c:31:ff:b5:
f4:38:1e:29:b7:24:71:8d:bf:a2:a6:03:f1:5c:ca:56:4f:d3:
70:9a:6d:30:2b:45:a8:87:f4:43:23:4f:9d:b4:2e:e5:18:70:
f7:3f:81:f3:a1:17:c1:db:e1:eb:b0:bc:76:f2:15:87:ee:24:
c1:5c:ef:89:f3:49:ac:4a:da:71:76:cf:8c:09:5f:33:60:9d:
be:c0:64:f7:e1:e2:3b:64:bd:c5:a1:29:7e:30:be:1f:4c:61:
7f:e5:3d:53:62:33:3a:3a:76:1c:cf:d7:d1:42:63:33:64:ea:
12:26:77:34:90:49:69:58:f9:1c:e1:ef:e3:00:44:28:cb:02:
a3:6f:28:2d:d4:a5:8a:29:29:40:58:9f:f5:38:62:63:24:8d:
d3:9a:1b:c5:83:61:a0:19:a8:9a:6c:fe:30:70:aa:f8:2a:cf:
1e:7b:07:5a:24:7a:ba:a9:90:e6:7e:80:07:41:9a:1d:3a:f7:
b2:70:21:43:f4:f6:27:cd:07:f0:af:07:5c:ba:93:40:9b:c4:
a3:48:cd:a7:54:31:78:47:19:91:29:2b:5a:f9:3c:4b:ab:d2:
62:3e:53:56:a8:2f:73:86:d2:ea:29:86:15:21:3b:1f:63:8b:
29:95:f2:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:43 2023 by rpki-client on console.sobornost.net