Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/O6NBtK3pzUtLd2s33rg0W2_-0G0.roa
File: O6NBtK3pzUtLd2s33rg0W2_-0G0.roa (raw, json)
Hash identifier: S+fTDI8i3CW/k1hIIpveqDMx+BJdfIs2Lmz2bJVunyo=
Subject key identifier: 3B:A3:41:B4:AD:E9:CD:4B:4B:77:6B:37:DE:B8:34:5B:6F:FE:D0:6D
Certificate issuer: /CN=8b82433ffe94bf3536fec327543d396158202072
Certificate serial: 01938B65E2804589EF16FB7B7BEC1BAFA0BB
Authority key identifier: 8B:82:43:3F:FE:94:BF:35:36:FE:C3:27:54:3D:39:61:58:20:20:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i4JDP_6UvzU2_sMnVD05YVggIHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/O6NBtK3pzUtLd2s33rg0W2_-0G0.roa
Signing time: Tue 03 Dec 2024 07:22:10 +0000
ROA not before: Tue 03 Dec 2024 07:22:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49357
IP address blocks: 94.141.116.0/22 maxlen: 24
94.141.116.0/23 maxlen: 23
94.141.118.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:8b:65:e2:80:45:89:ef:16:fb:7b:7b:ec:1b:af:a0:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b82433ffe94bf3536fec327543d396158202072
Validity
Not Before: Dec 3 07:22:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3ba341b4ade9cd4b4b776b37deb8345b6ffed06d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f0:f8:06:43:59:9f:30:6b:00:71:ec:cf:8d:
ec:16:2a:a1:0f:20:ae:42:b3:48:1d:f6:e5:af:60:
5b:ce:07:8c:ce:9c:1f:ab:8d:70:83:ac:3d:11:9c:
b3:6d:5b:5c:61:fb:89:9e:5f:e0:aa:d1:00:9a:ae:
e0:d3:4b:22:a6:d2:03:3c:46:4f:1c:7e:d5:c6:4e:
ef:69:0a:02:ef:b0:37:ac:74:59:76:68:1f:4a:92:
e3:7d:31:9e:bc:38:87:0a:d0:db:57:06:37:14:1d:
30:2a:59:a4:16:8a:c1:37:8c:92:bd:de:a1:be:46:
88:ef:50:a2:97:34:cf:d9:b4:5a:99:59:18:42:b0:
04:cf:0b:08:91:a4:48:6d:14:45:18:5d:bf:89:23:
c7:da:78:7a:2b:ed:2d:d2:a5:e9:cf:13:b0:39:db:
b2:aa:c5:d9:f6:fb:71:57:42:ec:dc:aa:04:3c:74:
c1:0a:b9:03:3f:be:91:71:e0:ff:0f:8c:d1:dc:99:
2b:a8:db:f4:61:72:3f:19:13:c4:60:a0:78:56:de:
5d:1f:28:fe:3f:8e:c1:d3:7f:ea:f1:df:f3:80:c5:
01:0c:a0:5e:a2:cf:1e:f6:5a:22:10:ce:f2:2b:5f:
23:b2:43:8a:9d:c1:d6:ee:ab:d6:5d:f8:32:da:f5:
54:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:A3:41:B4:AD:E9:CD:4B:4B:77:6B:37:DE:B8:34:5B:6F:FE:D0:6D
X509v3 Authority Key Identifier:
keyid:8B:82:43:3F:FE:94:BF:35:36:FE:C3:27:54:3D:39:61:58:20:20:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i4JDP_6UvzU2_sMnVD05YVggIHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/O6NBtK3pzUtLd2s33rg0W2_-0G0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/i4JDP_6UvzU2_sMnVD05YVggIHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.141.116.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:bb:97:91:0b:55:6a:de:b2:a0:fc:e3:a8:83:5b:e6:73:8f:
ef:16:92:96:0f:73:92:d8:6a:2c:00:48:26:ea:e0:0e:ac:0e:
90:fb:42:96:fc:53:4f:86:bd:a9:ec:20:32:8e:18:ed:eb:76:
5c:f7:ae:3c:b4:94:c5:79:89:ee:f1:e3:7d:ee:fe:5d:68:5f:
82:fd:00:03:0b:64:87:53:df:93:dc:6c:b2:a6:7f:ac:1c:47:
eb:2b:85:cb:dc:bf:0c:39:40:96:b9:7b:a6:55:06:10:ac:4b:
4e:e2:13:70:76:36:e8:7a:3f:76:3d:bb:37:d8:43:76:94:f8:
5d:5c:33:bf:2b:e4:c2:63:35:c3:80:e5:a6:5f:9e:7f:a2:93:
c1:98:1e:62:19:1f:83:f1:61:50:c7:20:32:66:68:e1:ab:0b:
06:68:49:11:42:6c:b3:5b:6f:7d:27:61:48:ff:82:02:1c:3e:
d9:5b:2e:05:11:c1:10:31:a6:b8:e0:b6:5a:55:1c:1e:02:b1:
d7:b6:96:98:3f:87:c3:04:7e:f7:9f:b8:3d:c0:85:d5:bc:6b:
42:d6:39:90:09:18:83:1b:39:fa:e8:d9:6b:06:c9:af:b5:02:
e1:c4:63:4f:5a:96:1d:66:e5:2d:07:4d:d3:a4:41:47:a6:74:
02:91:d1:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:11 2024 by rpki-client on console.sobornost.net