Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/ff5ec9-e22e-4030-8334-d5dd46aaa401/1/kKTpwB59BBbReb3Sa6HLlEEs97c.roa
File: kKTpwB59BBbReb3Sa6HLlEEs97c.roa (raw, json)
Hash identifier: m8QObygssodwUmxQuXjkR6JN8iM7WGhQq1LHYhJeujI=
Subject key identifier: 90:A4:E9:C0:1E:7D:04:16:D1:79:BD:D2:6B:A1:CB:94:41:2C:F7:B7
Certificate issuer: /CN=555d742d527f9700cc0047d7d61bfd822878db1f
Certificate serial: 01927AF1606169A7166444B8CB46B8946457
Authority key identifier: 55:5D:74:2D:52:7F:97:00:CC:00:47:D7:D6:1B:FD:82:28:78:DB:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VV10LVJ_lwDMAEfX1hv9gih42x8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/ff5ec9-e22e-4030-8334-d5dd46aaa401/1/kKTpwB59BBbReb3Sa6HLlEEs97c.roa
Signing time: Fri 11 Oct 2024 09:38:12 +0000
ROA not before: Fri 11 Oct 2024 09:38:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44075
IP address blocks: 194.147.156.0/22 maxlen: 22
194.147.156.0/24 maxlen: 24
194.147.157.0/24 maxlen: 24
194.147.158.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:7a:f1:60:61:69:a7:16:64:44:b8:cb:46:b8:94:64:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=555d742d527f9700cc0047d7d61bfd822878db1f
Validity
Not Before: Oct 11 09:38:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=90a4e9c01e7d0416d179bdd26ba1cb94412cf7b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:43:2a:ba:b8:38:f9:27:56:25:61:41:ea:c5:
48:59:13:fc:6a:b6:f2:48:32:f8:3d:e5:a6:68:8d:
9c:1b:96:ac:21:7a:9c:58:60:e8:bf:d7:8e:67:d4:
cf:45:dd:85:12:c0:67:a0:ec:45:42:15:98:4d:af:
a8:10:34:4e:b7:da:f2:e2:52:b6:79:f8:d3:f8:80:
eb:b3:b8:7b:51:a9:d7:fe:a3:87:fe:fd:36:59:d2:
20:42:28:62:2c:62:b2:fb:b0:1c:85:6a:79:22:b1:
69:11:d2:fe:17:cf:f4:1c:5d:cb:fd:ef:60:4b:55:
0d:59:99:fd:e6:c6:63:2b:79:2e:c2:bc:ff:68:e5:
21:c7:73:78:ab:33:d1:41:2a:8f:35:45:5f:2d:fa:
72:62:38:62:07:72:c7:59:8b:30:5e:9a:97:39:a6:
2a:f7:9d:b1:d5:49:58:58:dc:14:ca:8c:b2:0e:0a:
07:09:e8:b7:88:a2:ef:74:54:14:fc:b8:d3:05:0a:
47:70:fa:5a:37:5e:c2:c4:ec:a2:0c:51:b7:c6:00:
ca:0a:bc:db:24:0c:9f:ec:8d:03:cd:93:ab:4f:0b:
86:86:02:3c:54:ce:1a:2e:ae:e6:53:b3:9a:17:da:
0a:02:22:7b:3c:77:75:32:17:2a:8a:c0:6c:c5:c2:
73:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:A4:E9:C0:1E:7D:04:16:D1:79:BD:D2:6B:A1:CB:94:41:2C:F7:B7
X509v3 Authority Key Identifier:
keyid:55:5D:74:2D:52:7F:97:00:CC:00:47:D7:D6:1B:FD:82:28:78:DB:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VV10LVJ_lwDMAEfX1hv9gih42x8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/ff5ec9-e22e-4030-8334-d5dd46aaa401/1/kKTpwB59BBbReb3Sa6HLlEEs97c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/ff5ec9-e22e-4030-8334-d5dd46aaa401/1/VV10LVJ_lwDMAEfX1hv9gih42x8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.156.0/22
Signature Algorithm: sha256WithRSAEncryption
86:dc:cf:63:44:6e:02:60:8e:f4:30:d1:8c:c1:c0:95:19:26:
2a:ea:cc:d2:1d:45:55:f3:6e:70:60:c4:90:97:e3:ac:46:ba:
2d:02:91:40:da:63:34:07:7d:74:eb:0b:11:2e:69:67:67:a8:
eb:2f:87:8f:7d:11:0f:35:84:7a:d0:5e:d3:c6:95:84:8c:c3:
78:09:f1:31:31:5c:84:26:51:a0:06:43:d3:0b:5f:f4:2e:82:
64:c7:d5:c3:3f:bf:01:e3:10:ba:51:03:1f:44:32:b7:50:47:
1e:74:e6:32:8c:ac:da:67:ea:e5:03:c1:c7:db:5f:b7:e6:25:
78:bd:ad:38:32:bb:32:0f:4f:f9:e0:ff:6c:1a:0f:da:ad:ed:
33:68:78:6e:e9:03:d5:0a:cc:ec:a6:9b:0e:b0:c0:16:bf:2a:
92:66:5b:23:8c:6f:de:e8:46:96:11:42:00:79:37:91:9f:ae:
b1:2f:f7:84:df:b8:22:8e:89:97:62:fd:49:42:c1:33:64:a4:
b1:eb:ef:c4:52:46:4b:16:95:2c:8e:05:7d:bd:00:3c:ac:10:
11:f5:5b:29:8e:85:9e:09:75:ff:fa:b0:92:97:c7:14:3f:c7:
8a:c7:f1:64:c0:32:90:7e:23:db:f5:7b:0f:66:1e:c6:dc:3f:
12:86:ae:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:11 2024 by rpki-client on console.sobornost.net