Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/482e24-db65-4b49-ad76-a40f9e7863bc/1/52mxs9TFUwaSHcqkL2oBW9kAz4c.roa
File: 52mxs9TFUwaSHcqkL2oBW9kAz4c.roa (raw, json)
Hash identifier: 42DS7Mig4tEl/oNlo3ZE1yUeaDbU3S5uydVPtSgHvWk=
Subject key identifier: E7:69:B1:B3:D4:C5:53:06:92:1D:CA:A4:2F:6A:01:5B:D9:00:CF:87
Certificate issuer: /CN=3538f0b7d8a7e2d313cca14714cb316a30d2e8d3
Certificate serial: 01856E6FA23C5F8E5A5AC130E1EA4938D452
Authority key identifier: 35:38:F0:B7:D8:A7:E2:D3:13:CC:A1:47:14:CB:31:6A:30:D2:E8:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NTjwt9in4tMTzKFHFMsxajDS6NM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/482e24-db65-4b49-ad76-a40f9e7863bc/1/52mxs9TFUwaSHcqkL2oBW9kAz4c.roa
Signing time: Sun 01 Jan 2023 17:44:47 +0000
ROA not before: Sun 01 Jan 2023 17:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60144
IP address blocks: 146.19.105.0/24 maxlen: 24
2a12:8f00::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:6f:a2:3c:5f:8e:5a:5a:c1:30:e1:ea:49:38:d4:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3538f0b7d8a7e2d313cca14714cb316a30d2e8d3
Validity
Not Before: Jan 1 17:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e769b1b3d4c55306921dcaa42f6a015bd900cf87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:cc:03:c7:7f:92:0c:e9:f0:ef:50:0c:75:13:
10:20:14:8c:fd:5c:be:ec:bb:6e:02:0d:10:73:62:
3a:ac:47:4f:b4:d2:b7:27:75:cf:d7:ee:32:d9:50:
66:91:eb:da:14:31:2d:70:86:8a:f6:d0:3b:91:65:
21:02:68:1e:17:3b:79:da:4f:be:4b:f2:4a:a4:e1:
3a:a6:1b:99:87:29:93:5d:5c:62:0d:b4:16:4d:ee:
38:f4:26:00:23:d4:31:24:8a:f4:99:db:af:4a:eb:
29:9c:10:4f:7f:58:75:0c:b0:22:9c:ad:1b:55:2d:
5f:61:b3:0f:fb:e7:33:e7:20:ee:91:f7:ef:8b:14:
e4:fa:ef:13:6a:05:81:67:4a:82:d8:bb:ba:34:01:
0a:5d:73:bb:cb:bc:94:39:73:25:d3:05:16:b8:e8:
fd:c3:26:09:79:08:d1:cd:be:83:91:5c:10:90:74:
a6:9d:db:c7:eb:f2:18:45:73:55:95:20:2b:4d:ca:
73:ff:ea:9b:d5:76:4d:9c:ec:78:b9:ac:56:90:0c:
e7:3f:f6:85:a8:2f:c5:b9:66:dc:c6:89:44:62:7a:
3a:44:87:04:8c:96:95:73:c3:78:30:3a:bc:68:de:
63:a5:e9:ce:a0:c9:78:b8:8c:80:e4:82:b1:a4:c2:
ec:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:69:B1:B3:D4:C5:53:06:92:1D:CA:A4:2F:6A:01:5B:D9:00:CF:87
X509v3 Authority Key Identifier:
keyid:35:38:F0:B7:D8:A7:E2:D3:13:CC:A1:47:14:CB:31:6A:30:D2:E8:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NTjwt9in4tMTzKFHFMsxajDS6NM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/482e24-db65-4b49-ad76-a40f9e7863bc/1/52mxs9TFUwaSHcqkL2oBW9kAz4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/482e24-db65-4b49-ad76-a40f9e7863bc/1/NTjwt9in4tMTzKFHFMsxajDS6NM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.105.0/24
IPv6:
2a12:8f00::/29
Signature Algorithm: sha256WithRSAEncryption
07:a7:28:bd:ac:2d:7a:24:fd:d7:68:18:b4:80:be:cc:3c:52:
87:10:02:f6:b6:e1:75:9d:1b:a9:30:3e:f8:24:e5:f7:f1:e3:
f8:6b:2a:68:ce:a9:e7:49:fd:9b:b1:66:b0:77:9e:a4:8a:71:
6c:a6:81:9c:81:8a:b1:c2:4b:fc:08:ce:7a:d8:c3:81:0c:1a:
d1:3d:41:2a:be:7d:cc:16:9d:3f:17:c3:21:73:66:f9:22:88:
1e:c9:fa:76:c9:4d:93:fb:2f:f7:09:89:05:6e:e2:73:9e:25:
a3:80:5d:07:44:50:8a:b8:1e:53:52:96:48:6f:36:fb:19:31:
fe:46:d8:97:5f:0d:fb:31:a8:b9:40:27:dc:2d:50:8f:85:c2:
6a:2e:6c:bb:09:43:56:82:04:75:44:d3:e0:9d:7e:05:3a:75:
88:0b:1f:e7:e9:ca:98:85:f2:85:65:34:f8:6b:8d:f2:0d:ae:
84:5f:a0:22:cf:a3:6a:b2:8a:4a:f9:3f:b5:ac:50:70:d0:39:
d6:52:66:86:fc:04:48:f3:64:f1:89:f4:a8:10:1a:dd:f6:79:
1b:c3:a1:29:8e:ba:40:0b:44:84:89:17:a5:eb:74:8a:f9:69:
50:62:e6:4d:27:ad:68:22:bf:8a:9b:b9:3f:93:9f:fd:14:03:
4a:cf:62:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:53 2023 by rpki-client on console.sobornost.net