Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/2b9f01-a56e-4be9-ad32-38ed7155995c/1/36NQTvZea3peDngdGnyaPlBNiu8.roa
File: 36NQTvZea3peDngdGnyaPlBNiu8.roa (raw, json)
Hash identifier: vXSx5nL4Pp/UisT5RLHVxlmLGljOy1Ky+7cP6txqkPc=
Subject key identifier: DF:A3:50:4E:F6:5E:6B:7A:5E:0E:78:1D:1A:7C:9A:3E:50:4D:8A:EF
Certificate issuer: /CN=924532b4f743cf95cbec18681ba67ac5db854f33
Certificate serial: 019053E943B2269996DBFB24A43D0C48F795
Authority key identifier: 92:45:32:B4:F7:43:CF:95:CB:EC:18:68:1B:A6:7A:C5:DB:85:4F:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kkUytPdDz5XL7BhoG6Z6xduFTzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/2b9f01-a56e-4be9-ad32-38ed7155995c/1/36NQTvZea3peDngdGnyaPlBNiu8.roa
Signing time: Wed 26 Jun 2024 09:38:34 +0000
ROA not before: Wed 26 Jun 2024 09:38:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199744
IP address blocks: 185.48.141.0/24 maxlen: 24
185.48.143.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:53:e9:43:b2:26:99:96:db:fb:24:a4:3d:0c:48:f7:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=924532b4f743cf95cbec18681ba67ac5db854f33
Validity
Not Before: Jun 26 09:38:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dfa3504ef65e6b7a5e0e781d1a7c9a3e504d8aef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:19:9f:ff:6c:6c:4c:df:7d:63:be:51:20:fe:
3d:c1:8d:a4:24:f2:88:27:3d:e2:d4:46:0f:ee:90:
f0:12:ce:04:0f:36:bc:a4:e2:31:f8:93:4b:e8:20:
03:63:75:9e:03:d4:5a:fb:9e:39:52:53:cf:6e:5d:
fd:8e:a9:ad:07:8f:14:6d:94:4c:10:6b:ec:0a:ee:
9b:3a:3a:d3:8a:9a:47:21:53:db:88:90:ab:c7:0d:
1a:a5:b3:38:0c:08:48:67:09:3c:a5:9a:23:1b:1b:
26:1d:71:ff:95:e5:e5:36:49:ce:96:c6:b9:eb:22:
b4:df:a5:16:f3:2e:d3:fb:c7:53:24:f5:32:b6:aa:
78:4f:87:59:64:d3:5b:87:2a:6a:6d:72:66:46:7e:
65:3e:fe:6c:71:f5:83:e5:41:39:75:5c:1c:cb:b5:
2c:f9:45:68:28:c7:43:7d:13:62:85:64:43:b1:70:
79:9f:36:1a:6f:19:56:92:e2:77:92:58:7a:e4:41:
36:33:0e:bc:38:c3:5d:89:61:da:16:88:20:27:12:
cd:ed:22:95:b0:84:9e:0a:10:56:c6:96:90:f2:dd:
ac:d2:8a:e1:e1:2d:7a:bb:fd:6e:d7:7c:e7:5c:e6:
3f:0f:24:92:e2:1f:97:75:2d:71:5f:30:f5:20:e1:
bf:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:A3:50:4E:F6:5E:6B:7A:5E:0E:78:1D:1A:7C:9A:3E:50:4D:8A:EF
X509v3 Authority Key Identifier:
keyid:92:45:32:B4:F7:43:CF:95:CB:EC:18:68:1B:A6:7A:C5:DB:85:4F:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kkUytPdDz5XL7BhoG6Z6xduFTzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/2b9f01-a56e-4be9-ad32-38ed7155995c/1/36NQTvZea3peDngdGnyaPlBNiu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/2b9f01-a56e-4be9-ad32-38ed7155995c/1/kkUytPdDz5XL7BhoG6Z6xduFTzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.48.141.0/24
185.48.143.0/24
Signature Algorithm: sha256WithRSAEncryption
32:e6:b0:58:e4:eb:40:06:1e:1f:d4:80:79:64:ad:c1:71:f4:
83:cb:2a:30:08:af:38:5a:fc:50:1d:c2:10:53:0d:66:31:76:
b3:43:13:05:62:c6:46:44:bd:cc:4e:f0:79:28:4f:eb:4a:14:
22:33:66:e5:56:90:df:44:5f:86:2f:fb:0c:ba:65:8c:27:f2:
47:34:08:dc:53:cd:c2:1f:83:d8:46:87:38:0e:cc:39:29:43:
c4:e0:c6:e8:ee:13:53:ad:ca:b2:bb:d7:ff:2e:fb:60:f4:61:
c8:71:86:78:9e:ac:1d:cb:65:5e:6e:5d:4d:21:88:e9:55:4d:
0b:94:30:f3:bd:94:13:5c:78:c3:9a:7c:a1:23:cd:0a:3e:35:
e4:7b:60:bb:0c:ff:b1:4c:61:29:69:58:33:17:2a:2e:d3:96:
1a:4e:0c:a4:46:fb:ec:76:a8:55:04:03:2f:db:bf:b0:6b:1e:
58:0a:79:22:17:d9:2b:88:dc:24:f5:09:09:84:79:be:9c:36:
b9:26:fb:81:31:60:6f:6f:c1:3b:06:38:ae:82:5b:f8:7e:89:
7d:f7:89:12:b4:89:7e:14:04:7b:02:ee:46:6d:c7:52:f6:39:
4e:57:36:7e:7b:07:f1:99:70:e1:fb:b7:03:1d:ed:e8:7d:9d:
cc:d5:71:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:11 2024 by rpki-client on console.sobornost.net