Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/QrgtXDCBm8yUXxxZ-zvl-NH2m78.roa
File: QrgtXDCBm8yUXxxZ-zvl-NH2m78.roa (raw, json)
Hash identifier: Dh11DGhd1M40yNF19rKO6x4fc1felUtD+AJprMmQlXk=
Subject key identifier: 42:B8:2D:5C:30:81:9B:CC:94:5F:1C:59:FB:3B:E5:F8:D1:F6:9B:BF
Certificate issuer: /CN=6085397f26a044caef6a6b669287331aa4d68645
Certificate serial: 03371079
Authority key identifier: 60:85:39:7F:26:A0:44:CA:EF:6A:6B:66:92:87:33:1A:A4:D6:86:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YIU5fyagRMrvamtmkoczGqTWhkU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/QrgtXDCBm8yUXxxZ-zvl-NH2m78.roa
Signing time: Sat 01 Jan 2022 05:03:15 +0000
ROA not before: Sat 01 Jan 2022 05:03:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63213
IP address blocks: 36.255.92.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53940345 (0x3371079)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6085397f26a044caef6a6b669287331aa4d68645
Validity
Not Before: Jan 1 05:03:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42b82d5c30819bcc945f1c59fb3be5f8d1f69bbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:cf:b1:20:bc:56:48:9a:4d:78:1e:25:60:46:
14:71:73:16:db:b5:b3:53:b8:74:f0:43:86:9f:c8:
80:fd:52:f6:a3:12:ee:80:b4:15:e1:11:cb:c2:ed:
8f:48:45:55:80:78:6f:9e:55:7a:8f:8d:24:56:ac:
7e:4c:d3:bf:f7:66:09:22:e0:8f:0d:91:2d:c3:73:
04:ec:61:8b:21:f0:75:ce:98:61:8d:4e:a1:c9:fe:
e1:d9:63:5e:af:c3:44:5a:74:c7:9b:e0:48:64:18:
8b:2e:a1:1f:e5:4d:f3:50:cd:26:7f:42:b3:25:bb:
d7:da:18:1b:03:b4:09:20:a8:29:70:c7:0c:ca:53:
49:de:2c:78:87:ea:7f:fd:d8:9c:2b:05:63:16:b9:
27:92:40:e3:d7:38:27:cf:a7:0d:bc:c8:1d:d3:4f:
53:a5:56:50:24:b1:ab:68:bc:0c:06:be:1e:ac:9a:
27:5a:16:72:ad:12:e0:b8:34:f2:81:88:f9:e6:0c:
06:f3:8b:3f:5f:68:a0:50:fc:c9:e6:7e:3e:a9:26:
b9:e0:ea:1e:24:e3:3e:a7:95:06:e8:14:e0:c7:5c:
0c:6d:dd:58:a1:1d:13:41:6d:de:14:9e:9c:47:ae:
2e:0d:d6:78:45:cb:f6:56:96:8a:b3:e9:0e:7e:6d:
64:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:B8:2D:5C:30:81:9B:CC:94:5F:1C:59:FB:3B:E5:F8:D1:F6:9B:BF
X509v3 Authority Key Identifier:
keyid:60:85:39:7F:26:A0:44:CA:EF:6A:6B:66:92:87:33:1A:A4:D6:86:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YIU5fyagRMrvamtmkoczGqTWhkU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/QrgtXDCBm8yUXxxZ-zvl-NH2m78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/YIU5fyagRMrvamtmkoczGqTWhkU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
36.255.92.0/23
Signature Algorithm: sha256WithRSAEncryption
13:a8:5e:11:f2:d5:5a:f9:e6:7f:98:ba:a5:59:6a:21:d6:36:
b0:ab:4c:71:f1:29:b9:f7:1a:c1:c3:a8:b9:54:1e:23:7e:3e:
bd:f2:02:aa:79:00:2b:d1:a1:d5:8b:8b:94:e4:ad:e4:f1:28:
5b:a5:e0:b6:4d:3d:6b:b8:7b:99:60:b3:2e:40:67:e5:df:b2:
d8:78:79:80:ce:f9:4f:25:74:91:c7:f0:96:ca:7c:f1:d8:38:
25:b9:a8:03:67:2f:77:38:ba:07:70:56:7d:89:9b:be:4e:36:
58:b9:e4:7a:b4:e2:be:c6:74:3a:67:ba:f3:07:c1:7e:0a:1a:
00:ef:22:bb:f6:9b:ff:13:52:82:dc:e6:7f:c6:bb:56:87:be:
b0:c5:00:66:f6:33:36:22:3d:c6:6d:ea:ad:a1:9d:46:8d:63:
dd:2e:4e:aa:88:29:ee:94:e4:d1:4f:c6:c6:39:a8:29:49:d8:
da:9f:d1:3d:d9:59:28:65:0f:4c:c0:2a:38:d7:b2:4b:ff:aa:
b5:7d:41:db:01:bc:6b:2c:e7:5e:a7:45:ec:5d:bc:9b:c8:b3:
2e:59:53:50:88:3a:a9:74:b5:5d:b0:2b:d7:28:4b:b4:96:79:
0a:11:08:d2:da:06:bb:93:f1:00:5c:f9:40:0e:7f:f6:7b:c6:
22:4c:e3:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:28 2023 by rpki-client on console.sobornost.net