Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/ce113d-c923-43f4-9708-bb417ec649ab/1/lGsiu_kyJhr6zsZ83J3VbJoa1tc.roa
File: lGsiu_kyJhr6zsZ83J3VbJoa1tc.roa (raw, json)
Hash identifier: fnXC281Z5L4vA2g99U2aXcqV4qZ5PEZPnIcJUZqiZsI=
Subject key identifier: 94:6B:22:BB:F9:32:26:1A:FA:CE:C6:7C:DC:9D:D5:6C:9A:1A:D6:D7
Certificate issuer: /CN=711280b1338f12fc6f621c4c90560c7bc5908961
Certificate serial: 01935446DB5DD2ADC92287B4B87BE932C396
Authority key identifier: 71:12:80:B1:33:8F:12:FC:6F:62:1C:4C:90:56:0C:7B:C5:90:89:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cRKAsTOPEvxvYhxMkFYMe8WQiWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/ce113d-c923-43f4-9708-bb417ec649ab/1/lGsiu_kyJhr6zsZ83J3VbJoa1tc.roa
Signing time: Fri 22 Nov 2024 14:29:09 +0000
ROA not before: Fri 22 Nov 2024 14:29:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215706
IP address blocks: 95.131.203.0/24 maxlen: 24
195.234.94.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:46:db:5d:d2:ad:c9:22:87:b4:b8:7b:e9:32:c3:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=711280b1338f12fc6f621c4c90560c7bc5908961
Validity
Not Before: Nov 22 14:29:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=946b22bbf932261afacec67cdc9dd56c9a1ad6d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:28:36:ce:37:9c:bd:1b:76:50:71:8f:9f:16:
63:fc:ec:91:9d:c1:3a:25:16:e5:38:b9:f6:15:f4:
8e:f3:65:c7:5f:66:66:34:c8:3b:04:1c:b4:65:dc:
d9:03:c0:e3:45:68:e9:2f:51:cc:0a:74:15:dc:04:
db:b1:60:1c:fd:83:8c:fb:a5:c0:b7:c0:3d:2a:be:
48:a2:df:05:a9:79:29:33:45:75:d3:ff:01:24:c7:
af:18:70:20:d2:c8:f1:bb:e4:6f:05:e3:9f:37:f9:
94:d3:75:e1:54:f9:b6:f2:20:93:d7:c0:98:41:d3:
ac:23:b2:ca:44:11:ec:8a:48:e3:01:bb:92:7c:ac:
8c:6d:d6:09:f7:56:2d:d2:85:4b:b0:0b:8d:08:cc:
82:07:bd:3f:5c:20:7b:ef:ae:10:70:4a:49:b9:5e:
e0:ed:46:94:03:1c:7f:de:7d:c9:55:55:36:1d:08:
af:55:5d:26:da:a8:48:a2:cb:32:92:59:ff:70:8a:
9b:d4:b9:43:3f:20:66:9c:13:33:32:92:13:f4:39:
dd:60:e7:5b:73:dc:be:95:0f:47:45:06:27:b7:1d:
66:39:e6:a0:3b:df:59:92:81:67:c1:15:43:d8:f9:
cb:58:8a:82:0d:ac:1d:5d:85:11:2a:b3:88:a1:cb:
3a:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:6B:22:BB:F9:32:26:1A:FA:CE:C6:7C:DC:9D:D5:6C:9A:1A:D6:D7
X509v3 Authority Key Identifier:
keyid:71:12:80:B1:33:8F:12:FC:6F:62:1C:4C:90:56:0C:7B:C5:90:89:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cRKAsTOPEvxvYhxMkFYMe8WQiWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/ce113d-c923-43f4-9708-bb417ec649ab/1/lGsiu_kyJhr6zsZ83J3VbJoa1tc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/ce113d-c923-43f4-9708-bb417ec649ab/1/cRKAsTOPEvxvYhxMkFYMe8WQiWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.131.203.0/24
195.234.94.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:d7:e3:0c:cf:2d:6b:07:9b:2d:d8:64:f8:00:e5:ff:db:01:
f8:37:a8:d6:66:2c:39:ee:f2:61:85:74:22:71:49:02:72:fd:
7a:f0:46:d1:a3:85:ab:b3:96:1b:3f:45:2b:10:cb:30:3c:6d:
84:49:a2:d5:9c:07:d8:26:9c:3e:a4:ba:5f:b1:fb:dd:e5:b1:
31:48:e9:42:c8:2e:5e:c6:11:99:6f:2b:28:f8:7d:57:62:c6:
f1:10:c1:c7:98:25:ca:08:f6:7e:45:8b:6f:5d:52:24:77:e5:
ff:68:8e:8a:31:e7:fa:ce:98:6f:92:c1:d6:b7:e9:74:8c:60:
0c:e2:33:49:ca:e3:64:58:41:7a:ad:84:f3:08:00:cc:e0:de:
c1:d0:51:26:9c:be:a0:0b:47:82:85:62:0e:7c:34:50:b7:e7:
8f:fd:04:cf:ba:76:92:fd:30:4b:f9:66:67:e4:4a:09:d3:02:
cb:45:1b:d1:d1:d9:c7:4b:36:3f:02:dc:a2:62:19:7b:57:03:
35:e9:fe:7d:32:41:99:7d:6e:12:a6:4c:8b:33:71:04:32:12:
76:21:0f:23:81:7e:91:90:d8:7f:fd:eb:92:7f:71:2c:15:77:
63:8b:62:9d:f4:41:02:63:0c:6a:4a:37:a0:73:73:5f:eb:cf:
e6:58:bc:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:18 2024 by rpki-client on console.sobornost.net