Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/d4dade-caef-4cd0-aef3-004f0cb3ed77/1/LLhdOB5MuDedO51WbReD4XRRhfg.roa
File: LLhdOB5MuDedO51WbReD4XRRhfg.roa (raw, json)
Hash identifier: Ha7LKLK8VoaSF6zxoSNgaKFkSJrSCDkGo3k8EbPG3Jc=
Subject key identifier: 2C:B8:5D:38:1E:4C:B8:37:9D:3B:9D:56:6D:17:83:E1:74:51:85:F8
Certificate issuer: /CN=3035546ea5b0790549ca0ba1bb2a3e1dbae4a3da
Certificate serial: 018CC86F2AE1891719013A502559771CAA91
Authority key identifier: 30:35:54:6E:A5:B0:79:05:49:CA:0B:A1:BB:2A:3E:1D:BA:E4:A3:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MDVUbqWweQVJyguhuyo-Hbrko9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/d4dade-caef-4cd0-aef3-004f0cb3ed77/1/LLhdOB5MuDedO51WbReD4XRRhfg.roa
Signing time: Tue 02 Jan 2024 04:29:37 +0000
ROA not before: Tue 02 Jan 2024 04:29:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197441
IP address blocks: 91.208.225.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:2a:e1:89:17:19:01:3a:50:25:59:77:1c:aa:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3035546ea5b0790549ca0ba1bb2a3e1dbae4a3da
Validity
Not Before: Jan 2 04:29:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2cb85d381e4cb8379d3b9d566d1783e1745185f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:76:69:f4:6c:01:ab:f1:fb:ae:e9:1e:ad:a6:
52:39:f6:fa:0b:90:c7:02:4d:35:88:8a:4f:5d:f2:
c9:07:7b:c3:b1:7f:77:cc:fe:c9:e6:29:7f:88:5e:
16:f7:49:70:9c:b0:99:49:98:3a:a8:c5:ae:9c:f1:
d5:da:29:41:3f:9b:8a:5f:61:9d:5b:65:9d:96:6b:
40:1b:6e:f5:34:f7:07:cc:84:4a:d2:1d:dd:3d:87:
2f:fc:2a:68:75:64:ac:c8:a4:c1:00:97:c0:70:3a:
02:0e:6f:0a:86:d1:0d:5e:9e:d5:fb:07:dc:a8:ea:
f5:75:f0:c4:87:8c:d8:0a:c8:c2:1e:41:87:97:40:
da:be:1e:2a:72:88:0a:f8:f6:b2:55:55:e9:b3:a9:
6c:f8:b2:83:9d:07:5b:99:0b:c4:1b:ea:52:de:f8:
40:47:cf:15:e2:f7:14:41:23:46:3d:1a:df:ec:5d:
2a:2b:b7:09:40:ad:24:3d:0f:16:e6:67:ff:af:52:
74:cb:8c:d6:f7:b8:06:72:f9:8c:94:5b:64:10:4b:
75:a9:bc:ba:37:9f:14:71:a2:53:be:3c:4c:37:c8:
01:d3:de:7b:11:c3:5b:fe:00:87:0a:c1:42:d5:98:
9e:57:a4:20:0c:92:cc:51:88:c7:69:93:86:d8:23:
f5:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:B8:5D:38:1E:4C:B8:37:9D:3B:9D:56:6D:17:83:E1:74:51:85:F8
X509v3 Authority Key Identifier:
keyid:30:35:54:6E:A5:B0:79:05:49:CA:0B:A1:BB:2A:3E:1D:BA:E4:A3:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MDVUbqWweQVJyguhuyo-Hbrko9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/d4dade-caef-4cd0-aef3-004f0cb3ed77/1/LLhdOB5MuDedO51WbReD4XRRhfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/d4dade-caef-4cd0-aef3-004f0cb3ed77/1/MDVUbqWweQVJyguhuyo-Hbrko9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.225.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:3d:fc:c6:32:26:89:1c:93:f2:a7:9d:7c:04:b8:b8:56:44:
39:ac:49:bd:63:61:e7:63:d3:cb:3d:67:ae:e7:0b:5b:de:dc:
99:d5:37:67:1e:c4:22:5f:8a:eb:9a:f1:6c:fc:00:26:c1:ce:
ed:f2:0c:4e:94:2e:03:8f:f7:bf:90:5a:4a:aa:aa:45:af:c4:
73:dd:ba:db:96:ee:0f:4f:47:e0:cb:90:ac:24:ec:6f:fa:e2:
f9:52:d5:a0:50:0c:ef:a5:04:3c:96:39:80:2e:da:09:db:96:
1d:d4:2e:72:0a:22:c8:b5:b5:d2:f3:67:0c:51:11:6b:14:c3:
af:c8:d1:4b:c9:b6:6d:dd:37:56:95:6f:58:fa:6e:32:ec:70:
54:b6:2d:cb:9c:8b:57:fd:c0:9e:25:8f:54:ae:29:da:a0:00:
1f:72:34:1b:02:20:54:3b:e2:72:6a:74:89:ca:b2:5d:81:e1:
5d:a6:6e:73:2a:0d:ed:40:60:8a:50:07:91:a0:51:83:6f:40:
a8:e7:d0:7a:90:87:48:d0:9d:62:e5:6c:ae:53:e3:58:c6:21:
0f:b4:aa:ce:02:8f:5d:1d:37:b4:2c:3c:a9:08:cf:d0:88:72:
43:a0:ef:90:8e:6d:57:d4:a4:8f:cd:cf:04:e0:42:33:92:3a:
8b:b0:f5:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:12 2024 by rpki-client on console.sobornost.net