Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/SmSo9GGQlhazZYGqHzYJvDE5d34.roa
File: SmSo9GGQlhazZYGqHzYJvDE5d34.roa (raw, json)
Hash identifier: IgwMZ9ee/83yR7/okeMCQ+fYGG0JeijKVyiZNyamPyg=
Subject key identifier: 4A:64:A8:F4:61:90:96:16:B3:65:81:AA:1F:36:09:BC:31:39:77:7E
Certificate issuer: /CN=6ce97cf4d8d0bc17b3af1d62c4d71488661bd212
Certificate serial: 018CC8DEEDF889089CF8991ED1361211E00E
Authority key identifier: 6C:E9:7C:F4:D8:D0:BC:17:B3:AF:1D:62:C4:D7:14:88:66:1B:D2:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOl89NjQvBezrx1ixNcUiGYb0hI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/SmSo9GGQlhazZYGqHzYJvDE5d34.roa
Signing time: Tue 02 Jan 2024 06:31:42 +0000
ROA not before: Tue 02 Jan 2024 06:31:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211218
IP address blocks: 194.28.101.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:ed:f8:89:08:9c:f8:99:1e:d1:36:12:11:e0:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ce97cf4d8d0bc17b3af1d62c4d71488661bd212
Validity
Not Before: Jan 2 06:31:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4a64a8f461909616b36581aa1f3609bc3139777e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:b4:8e:96:46:11:f1:7e:08:3f:c4:f4:d5:f0:
4e:8a:7d:14:d6:0e:3a:74:fe:4c:f2:d3:4d:52:07:
69:b3:22:1d:84:37:e7:c5:7f:9f:32:1b:0f:e8:05:
91:99:a0:67:ef:8c:c7:fa:60:36:ed:9e:2f:45:b9:
a8:13:0d:b8:63:b0:72:07:93:7d:1e:c9:52:cf:20:
b4:10:1f:8a:10:32:b0:06:d9:a5:35:2e:d5:ab:1e:
b2:2e:ec:ba:4b:6e:f1:85:c7:9c:99:19:63:7f:48:
9c:18:37:a5:ec:1f:52:e1:e3:9a:62:27:a3:30:ca:
32:8f:68:8f:54:58:b7:fd:93:df:cf:d9:e5:2d:30:
3c:33:a8:7f:71:c4:3b:f4:db:b3:69:a4:f4:be:62:
a6:2a:6c:40:b3:8b:87:95:6e:fc:14:1c:87:38:32:
3b:86:78:e9:e9:e6:30:07:c2:d8:11:db:07:bb:c9:
40:a8:92:08:c2:6f:62:d7:e6:e9:15:b9:2d:b9:52:
6b:61:7a:97:86:aa:11:9b:35:a1:79:f1:4c:1f:bd:
c1:8c:81:3f:a0:57:2f:0f:4a:82:be:c7:be:a8:ea:
cb:3a:e0:0a:f7:c1:2e:81:ac:83:61:56:6d:7e:a4:
8a:f8:ee:5f:a2:25:f2:65:50:70:4a:e5:76:40:00:
40:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:64:A8:F4:61:90:96:16:B3:65:81:AA:1F:36:09:BC:31:39:77:7E
X509v3 Authority Key Identifier:
keyid:6C:E9:7C:F4:D8:D0:BC:17:B3:AF:1D:62:C4:D7:14:88:66:1B:D2:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOl89NjQvBezrx1ixNcUiGYb0hI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/SmSo9GGQlhazZYGqHzYJvDE5d34.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/bOl89NjQvBezrx1ixNcUiGYb0hI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.28.101.0/24
Signature Algorithm: sha256WithRSAEncryption
00:70:6e:85:85:6c:ec:a3:51:1b:2a:de:84:6b:e3:58:3c:b0:
2b:9c:20:35:1f:e1:cc:91:23:d9:e2:5a:bd:34:f9:20:c0:be:
b4:a7:5a:54:bf:ec:56:57:79:8c:27:eb:f4:9f:33:38:2a:12:
bf:62:2b:f3:93:38:d6:a9:f8:43:66:6e:9e:1b:0b:32:c9:73:
ec:ca:f1:61:de:1f:f8:b4:36:f0:c1:41:a1:49:52:b4:40:8e:
7a:a0:5e:5b:05:59:96:38:08:6b:91:a8:8a:9f:0d:54:62:f4:
5a:e6:6a:1a:45:35:1c:84:e3:e8:f5:ce:9e:c5:9a:71:7c:26:
e2:9d:23:29:13:4e:ae:90:36:e6:25:16:c7:7b:22:84:da:17:
2a:b7:ed:39:2f:0d:fa:13:1a:b7:74:59:60:ea:87:be:7f:71:
97:6a:0f:ae:53:31:bd:6e:8d:a9:5b:df:7d:f1:45:1a:fc:39:
af:f2:c3:57:44:95:8c:3d:54:56:06:65:34:0b:ed:e0:19:da:
e6:6f:22:e7:90:6a:57:28:c2:69:52:89:33:d8:1c:2d:fb:d4:
45:91:ee:8f:6d:4a:c0:3f:2d:a8:c3:c0:f6:20:f6:f2:8d:56:
39:a9:c4:bf:3f:33:5e:59:fc:0b:85:6f:2f:48:ef:7f:b9:6a:
06:f7:02:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:25 2024 by rpki-client on console.sobornost.net