Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/b984d6-167a-4c0d-b544-58d5bb71c2a1/1/Fc7gLxsFk1-OPaEuCm7DclHoaAo.roa
File: Fc7gLxsFk1-OPaEuCm7DclHoaAo.roa (raw, json)
Hash identifier: 582h5XoHV9vchCKZf0qxkrUXUC6L9xf3VvAv9PJarcM=
Subject key identifier: 15:CE:E0:2F:1B:05:93:5F:8E:3D:A1:2E:0A:6E:C3:72:51:E8:68:0A
Certificate issuer: /CN=8ddc04351c858a6a7fe0f90812bb10655e5af8ca
Certificate serial: 018CC726E635AB3F84B8CD369890AC809585
Authority key identifier: 8D:DC:04:35:1C:85:8A:6A:7F:E0:F9:08:12:BB:10:65:5E:5A:F8:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jdwENRyFimp_4PkIErsQZV5a-Mo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/b984d6-167a-4c0d-b544-58d5bb71c2a1/1/Fc7gLxsFk1-OPaEuCm7DclHoaAo.roa
Signing time: Mon 01 Jan 2024 22:31:04 +0000
ROA not before: Mon 01 Jan 2024 22:31:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51560
IP address blocks: 185.139.208.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:e6:35:ab:3f:84:b8:cd:36:98:90:ac:80:95:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ddc04351c858a6a7fe0f90812bb10655e5af8ca
Validity
Not Before: Jan 1 22:31:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=15cee02f1b05935f8e3da12e0a6ec37251e8680a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d3:fd:99:7d:ee:60:cb:75:72:84:cb:19:3b:
6f:9c:a7:fa:73:55:3f:4f:f0:a7:a3:ae:eb:b0:4f:
a1:e8:ce:a9:de:f0:c5:2a:df:4f:e8:39:46:3c:d0:
8e:11:d7:7d:fd:f3:eb:20:1d:b9:a3:3b:11:f2:cc:
87:e3:00:f8:c6:4e:88:50:27:b1:3f:4e:82:72:f4:
6f:ad:3d:63:0f:d3:e5:cc:49:9a:35:33:56:71:40:
17:d0:c9:78:14:7f:3e:6b:dc:78:a4:f5:71:54:88:
c9:5f:7d:b1:57:04:81:ad:6a:21:4a:c2:74:ab:5f:
65:7a:39:a4:b0:41:f8:bc:2c:77:bd:3f:df:5b:1a:
cc:d4:44:af:6b:6d:53:8e:b4:61:32:86:64:2d:91:
45:6e:06:d3:8b:0f:b7:86:b4:59:3e:79:1b:81:bc:
2b:ab:07:87:75:b0:3c:84:b4:22:11:69:b4:32:71:
ab:2c:31:f3:64:85:ec:c6:47:8e:14:68:32:2b:36:
86:6e:d7:5a:95:63:0b:ce:ec:8c:82:c5:e3:b6:59:
d5:bc:e8:aa:c4:be:4b:a3:e3:20:44:a5:f8:6f:52:
d2:77:af:8c:d8:bb:f8:d9:93:6f:21:29:37:b0:9e:
88:7e:fa:b9:5e:a4:c9:42:aa:24:aa:65:f9:d7:ed:
7c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:CE:E0:2F:1B:05:93:5F:8E:3D:A1:2E:0A:6E:C3:72:51:E8:68:0A
X509v3 Authority Key Identifier:
keyid:8D:DC:04:35:1C:85:8A:6A:7F:E0:F9:08:12:BB:10:65:5E:5A:F8:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jdwENRyFimp_4PkIErsQZV5a-Mo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b984d6-167a-4c0d-b544-58d5bb71c2a1/1/Fc7gLxsFk1-OPaEuCm7DclHoaAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b984d6-167a-4c0d-b544-58d5bb71c2a1/1/jdwENRyFimp_4PkIErsQZV5a-Mo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.139.208.0/22
Signature Algorithm: sha256WithRSAEncryption
47:18:a4:f2:e1:75:2b:85:65:0a:ae:71:b5:10:eb:6b:55:80:
fd:df:37:48:13:db:2b:26:0f:cc:1a:81:7d:3b:a3:47:53:8f:
12:35:91:02:9e:fa:03:a3:7b:14:f1:f8:17:58:23:4a:5c:40:
8f:d2:df:f3:08:57:ec:62:4f:d2:60:e7:4a:76:5c:4b:a7:b1:
f8:9e:c3:65:7a:df:69:4d:5b:d0:04:c8:90:40:55:fb:d8:c1:
85:31:5f:e0:a8:bc:92:a1:aa:f6:d2:6f:bb:e5:b3:a1:4b:c0:
c0:a1:1c:b0:c5:cf:2c:03:90:17:57:86:cc:3e:7e:0b:21:e0:
1c:f2:19:4b:ea:70:3e:24:14:48:8b:3b:13:3b:a7:dc:ff:28:
0f:a9:d7:33:6d:1a:5c:91:77:fa:95:e0:89:48:de:94:f8:32:
73:a5:4a:28:fb:85:58:a6:7c:62:ea:38:e4:89:47:b5:02:81:
3e:26:df:fa:f3:fc:ab:ca:77:5a:cd:33:88:66:4a:e6:26:90:
3c:9a:84:6a:82:ba:a4:4f:b9:b1:e5:64:f9:a0:7c:24:a4:4b:
16:6d:9d:e2:05:03:e6:c6:4c:ee:21:73:37:90:1f:12:4c:66:
82:80:b0:14:8e:35:6c:b5:4e:af:19:e6:ca:d0:67:3e:32:d8:
37:06:8b:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:23 2024 by rpki-client on console.sobornost.net