Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/ZN2lWYdcmdOi9N12P-R1WmBnrd8.roa
File: ZN2lWYdcmdOi9N12P-R1WmBnrd8.roa (raw, json)
Hash identifier: DbyP2Fwl9uwq8PQafsO9ZIKIVXPppstC8wnLrlfG6Qg=
Subject key identifier: 64:DD:A5:59:87:5C:99:D3:A2:F4:DD:76:3F:E4:75:5A:60:67:AD:DF
Certificate issuer: /CN=9514df9fdc3a0b128c20ee8c06628c43c958bbf0
Certificate serial: 0193C2C26ED7F900CF20E85E2F8A46EF09A7
Authority key identifier: 95:14:DF:9F:DC:3A:0B:12:8C:20:EE:8C:06:62:8C:43:C9:58:BB:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/ZN2lWYdcmdOi9N12P-R1WmBnrd8.roa
Signing time: Sat 14 Dec 2024 01:22:22 +0000
ROA not before: Sat 14 Dec 2024 01:22:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42199
IP address blocks: 91.189.63.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:c2:c2:6e:d7:f9:00:cf:20:e8:5e:2f:8a:46:ef:09:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9514df9fdc3a0b128c20ee8c06628c43c958bbf0
Validity
Not Before: Dec 14 01:22:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=64dda559875c99d3a2f4dd763fe4755a6067addf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:e2:10:e2:d6:2e:c3:2a:3f:17:5b:0c:ab:6c:
e5:01:be:5a:1d:7e:fb:65:c6:62:e7:54:86:23:24:
64:1c:d3:fd:19:47:3b:e1:55:35:45:91:43:f1:6e:
63:d0:e5:b8:6c:91:7b:f9:9f:e3:40:4f:74:8c:36:
11:51:b7:db:43:22:79:94:96:91:28:65:29:40:ca:
99:9f:98:da:cb:1f:4d:49:57:bb:03:a8:e2:65:30:
6a:69:9b:c1:cf:29:50:8e:5e:00:51:b7:ad:b2:26:
c7:1e:54:d1:7d:21:7d:04:02:b1:a8:28:8d:b5:e7:
49:42:b0:05:3f:3c:5f:ec:6a:bf:78:d1:8b:e5:2e:
28:b5:3b:97:28:92:70:fa:2c:92:93:be:86:e8:af:
9c:1c:09:33:c0:93:8c:ef:a3:4f:e1:5a:a4:11:5b:
a0:11:25:9a:dd:a6:a9:d1:1b:eb:de:fa:23:09:09:
67:22:5d:30:6b:2c:2d:8a:37:e7:2e:b0:7d:7b:db:
d9:c9:34:d9:7f:51:2e:58:f3:50:cf:da:92:75:5a:
b6:b0:5b:0a:da:bd:af:24:06:b3:14:08:69:88:da:
2a:b5:78:72:c9:95:03:30:9a:a5:ab:7b:fa:58:fe:
09:45:6c:f1:71:2f:d1:b6:13:06:35:0f:4b:0a:0d:
88:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:DD:A5:59:87:5C:99:D3:A2:F4:DD:76:3F:E4:75:5A:60:67:AD:DF
X509v3 Authority Key Identifier:
keyid:95:14:DF:9F:DC:3A:0B:12:8C:20:EE:8C:06:62:8C:43:C9:58:BB:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/ZN2lWYdcmdOi9N12P-R1WmBnrd8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.189.63.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:d5:a1:17:16:40:df:b6:51:e7:14:74:59:ea:f8:3c:e0:18:
3e:f5:6a:28:e1:ae:99:c8:16:c6:c0:52:9e:34:de:42:3b:91:
23:93:1a:aa:6d:37:20:0c:93:04:f6:1b:bd:fd:99:32:41:4d:
76:b8:57:3e:e8:31:5e:92:88:69:32:c6:57:78:79:c5:b7:79:
f9:d6:7f:d5:fb:e6:8d:65:6d:12:cb:2f:69:59:d1:40:82:84:
1e:36:c0:5d:a1:9f:95:15:c1:a0:9f:bb:37:cb:ca:eb:8a:d3:
41:60:cc:d1:de:86:11:04:db:2e:0c:78:db:63:52:ef:c9:9c:
aa:15:5d:57:b4:19:43:c1:b8:5e:7e:37:08:f9:e5:4a:7f:2c:
e3:72:5f:cf:8d:da:ed:93:b0:93:51:bf:c0:89:30:aa:a4:ea:
c8:20:cf:44:ca:b0:e6:1e:83:56:15:b2:98:7d:bd:c3:c0:68:
52:e0:1c:26:d3:3f:85:3a:0d:6e:d3:24:b4:6b:c7:57:a4:1d:
68:56:0e:d5:53:3b:37:4e:56:d9:a4:87:40:f2:e8:2b:11:c4:
1b:44:2e:b5:53:0e:d3:97:ff:5d:2f:2a:fb:80:19:65:ea:1a:
6a:a8:cb:3b:1a:e9:ea:d4:b9:e1:61:f9:82:3f:d0:bd:df:fb:
f7:b1:e5:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:25 2024 by rpki-client on console.sobornost.net