Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/a87b6e-d842-4c0c-881b-210940da177b/1/Ft8qX5wAodGUzx2d_auP7KoF-eY.roa
File: Ft8qX5wAodGUzx2d_auP7KoF-eY.roa (raw, json)
Hash identifier: //gEvVCrqiVaN5CDzRtMDKmmbjIwfLc8maIog6u75ig=
Subject key identifier: 16:DF:2A:5F:9C:00:A1:D1:94:CF:1D:9D:FD:AB:8F:EC:AA:05:F9:E6
Certificate issuer: /CN=9042e83976e35fe29a01d3c43a9bc5964b37b443
Certificate serial: 01936D306B41BEEF633F7E63F8C29C1774C5
Authority key identifier: 90:42:E8:39:76:E3:5F:E2:9A:01:D3:C4:3A:9B:C5:96:4B:37:B4:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kELoOXbjX-KaAdPEOpvFlks3tEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/a87b6e-d842-4c0c-881b-210940da177b/1/Ft8qX5wAodGUzx2d_auP7KoF-eY.roa
Signing time: Wed 27 Nov 2024 10:35:09 +0000
ROA not before: Wed 27 Nov 2024 10:35:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59813
IP address blocks: 194.124.237.0/24 maxlen: 24
2a0f:3cc0::/29 maxlen: 32
2a0f:3cc7::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6d:30:6b:41:be:ef:63:3f:7e:63:f8:c2:9c:17:74:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9042e83976e35fe29a01d3c43a9bc5964b37b443
Validity
Not Before: Nov 27 10:35:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=16df2a5f9c00a1d194cf1d9dfdab8fecaa05f9e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:0e:5a:34:39:4c:49:e9:99:22:5a:a5:66:42:
5e:e9:c1:3c:b4:ed:fb:b9:12:8e:90:15:2f:59:99:
e6:43:e9:58:da:77:0d:b8:1e:9d:db:d4:0e:e0:b6:
42:d5:a5:76:e4:c1:b0:dd:07:06:54:57:5e:5a:62:
15:8b:ba:e9:0d:1e:27:5c:69:af:ba:5c:fc:ff:92:
8a:1f:70:8a:6e:e3:82:e8:e4:46:78:87:68:30:c9:
c4:6e:df:32:8f:6c:d9:03:0d:85:87:f4:e2:c9:7e:
09:ed:79:a9:d7:ad:f0:4a:a1:d9:dd:20:1d:01:21:
22:1d:e5:5e:d9:43:be:65:b2:b4:52:8e:4f:50:ea:
b8:54:7c:0e:d1:46:81:60:75:f0:03:6b:45:5a:39:
a0:c8:b2:26:19:de:7a:34:e5:f7:fc:1b:8e:39:61:
4c:6d:b5:16:35:e1:fb:d6:49:d4:d5:97:20:bc:a3:
87:e8:e8:96:08:ef:bd:dc:09:46:f5:69:35:57:80:
f0:96:ca:47:1a:b8:ab:ec:35:72:5e:6e:69:c0:74:
b9:dd:e8:ae:98:19:cb:53:72:14:51:61:bf:b4:f5:
fa:d7:d0:20:b0:b2:bd:ec:86:f9:bf:d1:07:54:25:
c0:82:32:70:a2:ca:6e:35:12:db:5b:7b:cb:0f:6f:
3e:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:DF:2A:5F:9C:00:A1:D1:94:CF:1D:9D:FD:AB:8F:EC:AA:05:F9:E6
X509v3 Authority Key Identifier:
keyid:90:42:E8:39:76:E3:5F:E2:9A:01:D3:C4:3A:9B:C5:96:4B:37:B4:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kELoOXbjX-KaAdPEOpvFlks3tEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a87b6e-d842-4c0c-881b-210940da177b/1/Ft8qX5wAodGUzx2d_auP7KoF-eY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a87b6e-d842-4c0c-881b-210940da177b/1/kELoOXbjX-KaAdPEOpvFlks3tEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.124.237.0/24
IPv6:
2a0f:3cc0::/29
Signature Algorithm: sha256WithRSAEncryption
a7:1c:21:25:fb:45:e4:39:85:08:92:ec:fb:c0:fc:c4:ff:eb:
16:df:42:10:98:d3:77:5e:93:aa:5f:a4:22:7f:bc:0f:c6:13:
d2:f5:15:65:84:bb:ce:db:bd:5b:77:b3:55:a0:bf:c0:1b:ca:
45:de:4d:65:d8:b5:80:19:95:2e:dd:b0:39:10:60:e5:da:a6:
bf:14:27:3e:f0:48:e0:8d:b0:0a:21:90:09:84:b6:82:36:3b:
9c:4f:bc:d2:39:f5:92:3e:9b:4c:ef:7e:0f:c2:b6:9a:01:f4:
70:d4:0b:5c:15:70:c9:d5:ad:ab:7d:8c:ba:dc:fd:7a:0e:fa:
3b:ec:2b:1d:51:d9:53:7c:ac:26:07:52:48:af:56:be:e2:8b:
cf:0a:f6:3b:0a:83:80:ed:c3:22:95:93:95:d5:28:8d:49:4c:
c9:8b:7d:00:65:57:c4:9e:d1:10:34:8c:5a:6f:a4:d7:ee:85:
f1:87:b3:6a:14:2c:20:08:14:6a:fe:16:30:7b:af:ce:4b:14:
90:25:44:aa:b4:d2:8d:f7:8a:ce:03:f6:40:e3:c5:a3:1e:01:
5d:a6:f9:fc:4f:c1:bb:65:68:33:04:7d:45:d9:1c:18:ee:46:
0a:03:65:0f:64:d3:27:c6:ab:ec:81:fe:28:aa:f5:8d:f1:e4:
48:eb:d3:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:25 2024 by rpki-client on console.sobornost.net