Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/b9e9fa-accd-461f-b183-eda63010b77f/1/NolNnVGmbM0HSpUIHhqtmtgEaiM.roa
File: NolNnVGmbM0HSpUIHhqtmtgEaiM.roa (raw, json)
Hash identifier: KKKd5ekMcXMzK0qe7/xH1dBcIUmu2Ses/QfBH37mXi4=
Subject key identifier: 36:89:4D:9D:51:A6:6C:CD:07:4A:95:08:1E:1A:AD:9A:D8:04:6A:23
Certificate issuer: /CN=dc773480eb41fdbc8174d48af09c6b7f089d1349
Certificate serial: 01856D6F7D18DA749735558F6E3002DD5EEE
Authority key identifier: DC:77:34:80:EB:41:FD:BC:81:74:D4:8A:F0:9C:6B:7F:08:9D:13:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Hc0gOtB_byBdNSK8JxrfwidE0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/b9e9fa-accd-461f-b183-eda63010b77f/1/NolNnVGmbM0HSpUIHhqtmtgEaiM.roa
Signing time: Sun 01 Jan 2023 13:05:01 +0000
ROA not before: Sun 01 Jan 2023 13:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201942
IP address blocks: 213.232.232.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:6f:7d:18:da:74:97:35:55:8f:6e:30:02:dd:5e:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc773480eb41fdbc8174d48af09c6b7f089d1349
Validity
Not Before: Jan 1 13:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=36894d9d51a66ccd074a95081e1aad9ad8046a23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:10:70:d5:37:4a:18:a2:da:76:6d:d9:80:8a:
bd:ac:32:cf:58:1a:8b:df:6f:35:37:7a:71:c7:88:
3e:63:e2:e9:87:72:73:8a:67:ac:20:60:39:28:49:
dd:0f:ab:1e:ac:a2:4c:d9:11:ad:d9:b0:1a:df:11:
bc:49:4c:88:92:91:36:c9:5b:af:f3:6d:29:09:77:
34:51:5d:6e:8a:51:cb:0f:d1:cb:6b:67:a9:5b:91:
7b:35:7f:6c:85:25:15:a2:74:6d:e2:d9:a8:f0:63:
0d:d4:2f:11:12:ab:81:b5:72:44:0d:37:d4:fc:4f:
33:30:cf:e8:27:c3:6c:ea:1c:0e:5f:2e:d2:62:08:
97:30:95:89:a0:80:64:75:39:34:75:04:b4:95:10:
d5:d0:12:ce:f7:0f:3e:21:62:9e:21:95:b8:76:47:
c7:02:a6:bd:1a:b0:d0:65:ba:05:b6:c8:7b:ab:24:
e8:9c:6c:31:a7:b0:0f:5e:62:5e:d8:19:a2:4b:3c:
ba:8d:7a:60:34:ea:77:51:75:ea:17:cc:72:9e:6c:
2a:af:e3:42:24:79:c2:e6:7b:65:34:77:25:0f:ff:
e2:28:81:e3:b1:01:ad:fe:d2:82:51:b0:46:81:ee:
85:f3:39:b5:40:ee:b5:5d:56:f4:b5:ea:f1:2d:3e:
34:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:89:4D:9D:51:A6:6C:CD:07:4A:95:08:1E:1A:AD:9A:D8:04:6A:23
X509v3 Authority Key Identifier:
keyid:DC:77:34:80:EB:41:FD:BC:81:74:D4:8A:F0:9C:6B:7F:08:9D:13:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Hc0gOtB_byBdNSK8JxrfwidE0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/b9e9fa-accd-461f-b183-eda63010b77f/1/NolNnVGmbM0HSpUIHhqtmtgEaiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/b9e9fa-accd-461f-b183-eda63010b77f/1/3Hc0gOtB_byBdNSK8JxrfwidE0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.232.232.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:26:8c:d6:ea:9e:17:4e:f4:a0:7f:8d:74:af:db:66:48:f7:
11:7c:9d:bb:d9:d2:0b:4e:67:f3:51:66:1b:c2:b7:9d:7b:59:
eb:fa:83:cd:b1:3f:88:ad:a5:5e:02:16:d3:4d:03:46:96:f6:
21:8d:4c:cd:76:82:73:3a:bc:e9:6a:68:5b:03:61:74:30:18:
2d:46:7a:59:9c:b5:f0:2d:a1:02:ad:19:84:60:69:26:1e:9d:
e3:af:e9:c7:01:9a:2a:3a:e8:03:fc:c1:ca:4c:82:f2:6d:02:
76:59:c6:c7:d0:e0:5d:76:78:d0:b6:65:ea:ff:d3:50:d0:8f:
da:1f:a0:a0:d7:f9:da:83:88:16:47:28:41:2f:19:1d:98:f1:
51:65:d9:60:17:e8:9c:d3:4a:9d:46:51:19:c7:02:81:81:10:
4a:5d:5f:32:5a:64:95:d3:41:40:b9:e9:c6:f6:36:e4:ba:c2:
9d:12:92:40:9c:cb:c8:da:5a:4e:f6:c4:21:ad:4f:bd:d9:ee:
41:79:71:8d:02:ab:ad:b4:c2:6e:92:db:76:7d:4c:9a:7a:7f:
42:45:73:5a:7d:1f:b8:ec:59:3b:b1:81:22:55:98:72:19:6c:
d5:20:9e:40:68:df:78:de:f2:0f:50:a8:0f:6c:7e:d0:71:11:
d9:2c:76:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:49 2023 by rpki-client on console.sobornost.net