Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/d05a2e-c281-4dab-8373-a1779904b1c5/1/1_WrkjzON8sJnRIXyrgg0Ed23lE.roa
File: 1_WrkjzON8sJnRIXyrgg0Ed23lE.roa (raw, json)
Hash identifier: lksEtWAkBRRjAuMJ/mSrhb/aUNjT3Zd72D7CSu1d+L8=
Subject key identifier: D7:F5:AB:92:3C:CE:37:CB:09:9D:12:17:CA:B8:20:D0:47:76:DE:51
Certificate issuer: /CN=b252dda27226a275e3e79b374c8f263cd2d8ecd1
Certificate serial: 018CC5003B3A81D74748B3CB48A4C48CE132
Authority key identifier: B2:52:DD:A2:72:26:A2:75:E3:E7:9B:37:4C:8F:26:3C:D2:D8:EC:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/slLdonImonXj55s3TI8mPNLY7NE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/d05a2e-c281-4dab-8373-a1779904b1c5/1/1_WrkjzON8sJnRIXyrgg0Ed23lE.roa
Signing time: Mon 01 Jan 2024 12:29:35 +0000
ROA not before: Mon 01 Jan 2024 12:29:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34196
IP address blocks: 185.156.168.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:3b:3a:81:d7:47:48:b3:cb:48:a4:c4:8c:e1:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b252dda27226a275e3e79b374c8f263cd2d8ecd1
Validity
Not Before: Jan 1 12:29:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d7f5ab923cce37cb099d1217cab820d04776de51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:a4:53:09:fc:1c:88:ee:bc:c5:c4:d1:01:a4:
30:ee:4a:6a:0e:6e:6c:e6:a9:a4:be:85:18:21:be:
e4:a9:d2:3f:a1:ac:bd:6f:22:70:c7:ba:34:45:db:
e0:5b:0a:44:8b:d7:85:3c:31:31:6f:fe:e7:d3:15:
42:13:aa:c9:32:ba:10:3a:ff:38:7e:c1:9d:6c:c5:
3a:ee:2b:02:32:03:01:05:0f:ff:01:08:f6:62:13:
06:64:65:b1:62:91:70:46:69:d0:b4:96:25:93:36:
ce:ab:d3:b8:e7:ef:94:6a:1c:14:71:57:43:65:dd:
b6:ce:cc:f7:6b:c0:09:47:4d:ca:10:3c:3c:e5:32:
fd:71:10:22:28:e2:c3:7b:50:31:46:64:55:05:ec:
20:5a:06:bb:15:4d:e4:16:c8:ef:b2:21:d5:1e:92:
98:a3:eb:5a:d8:21:4a:53:d2:13:0d:ca:13:36:8e:
93:48:ca:82:a3:44:1c:fe:62:45:c7:b6:ff:41:76:
6e:1e:61:c2:41:63:70:52:e0:76:cf:ce:8e:ac:f2:
06:74:35:c6:18:15:fd:6a:f7:04:af:db:81:e1:b7:
5a:50:9f:0e:4a:3f:14:66:ba:0c:18:b9:2d:44:ae:
a3:3f:72:5b:f9:26:d1:16:76:8d:89:5b:36:eb:86:
c2:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:F5:AB:92:3C:CE:37:CB:09:9D:12:17:CA:B8:20:D0:47:76:DE:51
X509v3 Authority Key Identifier:
keyid:B2:52:DD:A2:72:26:A2:75:E3:E7:9B:37:4C:8F:26:3C:D2:D8:EC:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/slLdonImonXj55s3TI8mPNLY7NE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d05a2e-c281-4dab-8373-a1779904b1c5/1/1_WrkjzON8sJnRIXyrgg0Ed23lE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d05a2e-c281-4dab-8373-a1779904b1c5/1/slLdonImonXj55s3TI8mPNLY7NE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.156.168.0/22
Signature Algorithm: sha256WithRSAEncryption
89:68:4b:a8:b0:21:a7:bf:35:06:c1:c4:23:cd:cd:66:a8:64:
68:61:4b:30:fe:e2:45:41:45:aa:5b:e1:62:a8:d6:17:96:54:
40:0a:9c:8a:ec:5f:a9:e9:cb:de:e7:09:a3:20:7f:ce:18:0c:
6d:6e:40:85:1c:44:fa:5a:3f:b6:fb:a5:99:72:3c:c6:a9:5b:
b2:26:e5:6a:b5:aa:53:ed:d2:ff:a1:17:e9:be:1f:89:e2:b3:
eb:98:ba:8d:8c:1e:ee:8d:22:86:6e:1c:f1:2b:3e:e0:94:4f:
db:66:90:dc:12:b3:4e:38:2a:cc:cc:7b:28:01:c8:20:12:f3:
ac:8a:3d:3a:b1:15:b3:04:92:b2:0c:77:7a:ad:30:95:f2:91:
6c:d6:23:f5:c6:c9:78:b1:71:72:b4:8d:22:ad:4a:bf:fc:3e:
68:54:40:18:06:19:62:4d:7d:1f:64:92:ec:50:c2:fb:74:fb:
a8:45:57:10:ef:4b:4b:d5:eb:ac:11:d5:80:8c:30:32:d3:7a:
28:68:2d:6d:67:44:76:c2:e8:c2:b4:45:16:d3:23:fe:3f:69:
e1:b6:9f:ec:0c:e2:6d:29:08:20:76:37:9a:4a:ac:a3:cc:cf:
c0:d2:b9:0a:78:db:11:bb:9c:e4:8b:0b:d0:0f:b7:f2:64:49:
68:31:53:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:23 2024 by rpki-client on console.sobornost.net