Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/b9e9fa-accd-461f-b183-eda63010b77f/1/nK0i9Ya1zn99eKscGqLcxlhHdgw.roa
File: nK0i9Ya1zn99eKscGqLcxlhHdgw.roa (raw, json)
Hash identifier: 889F+aEThjLrGHrWIEwNlGxvfJi5EzTPC3+ApBDMf1c=
Subject key identifier: 9C:AD:22:F5:86:B5:CE:7F:7D:78:AB:1C:1A:A2:DC:C6:58:47:76:0C
Certificate issuer: /CN=dc773480eb41fdbc8174d48af09c6b7f089d1349
Certificate serial: E7D53D
Authority key identifier: DC:77:34:80:EB:41:FD:BC:81:74:D4:8A:F0:9C:6B:7F:08:9D:13:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Hc0gOtB_byBdNSK8JxrfwidE0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/b9e9fa-accd-461f-b183-eda63010b77f/1/nK0i9Ya1zn99eKscGqLcxlhHdgw.roa
Signing time: Wed 12 Jan 2022 11:14:44 +0000
ROA not before: Wed 12 Jan 2022 11:14:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204286
IP address blocks: 213.232.232.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15193405 (0xe7d53d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc773480eb41fdbc8174d48af09c6b7f089d1349
Validity
Not Before: Jan 12 11:14:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9cad22f586b5ce7f7d78ab1c1aa2dcc65847760c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b3:78:3b:56:c3:67:0f:3c:bc:bb:9c:19:54:
c4:80:42:30:6f:21:81:51:b2:3b:81:b5:5a:14:91:
33:ad:b9:1a:d5:df:9b:3b:11:9e:c4:d7:77:a7:e7:
b5:42:37:f1:17:5d:71:c1:11:c1:9e:83:d5:72:19:
13:44:a4:f1:38:a7:95:30:65:93:41:fc:ce:ae:b4:
19:bc:f0:08:9b:ab:bf:63:fa:33:96:04:93:69:a2:
06:dc:87:e1:2c:1a:3b:be:5c:58:41:ef:68:da:c6:
e3:31:d8:1d:a5:22:9d:8b:fa:21:ce:03:cc:e7:18:
3b:bb:6e:2b:40:9c:0f:9f:23:6c:84:6c:ad:c5:5f:
7c:0f:3b:e7:43:6d:db:75:06:73:35:5a:c4:41:fe:
02:39:e5:bc:27:5b:32:41:40:57:e9:82:e5:bd:4d:
59:70:9f:f3:25:f8:63:c1:85:45:b6:37:50:f6:ae:
c6:92:de:79:f8:e2:8f:f3:f2:d4:d4:ab:39:a0:81:
03:82:e4:fe:94:04:ae:0f:c1:2f:22:40:a7:b8:15:
0e:54:7a:de:6b:93:cb:17:cd:9f:5b:5b:02:c5:1d:
7f:a6:11:1e:b4:90:a3:01:5f:af:e2:be:92:11:a0:
74:c4:2d:30:a5:c8:d2:68:98:23:f6:f7:12:63:b6:
0c:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:AD:22:F5:86:B5:CE:7F:7D:78:AB:1C:1A:A2:DC:C6:58:47:76:0C
X509v3 Authority Key Identifier:
keyid:DC:77:34:80:EB:41:FD:BC:81:74:D4:8A:F0:9C:6B:7F:08:9D:13:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Hc0gOtB_byBdNSK8JxrfwidE0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/b9e9fa-accd-461f-b183-eda63010b77f/1/nK0i9Ya1zn99eKscGqLcxlhHdgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/b9e9fa-accd-461f-b183-eda63010b77f/1/3Hc0gOtB_byBdNSK8JxrfwidE0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.232.232.0/24
Signature Algorithm: sha256WithRSAEncryption
71:c7:ee:d8:d5:9a:4c:30:90:ff:09:eb:b9:60:dd:2c:15:5d:
1e:fa:d3:c3:46:01:0f:9b:98:e9:73:62:69:88:da:50:be:67:
0c:34:d9:4e:d2:d8:4e:9a:6c:27:f5:2a:ad:0e:44:54:37:36:
8b:6b:87:75:97:f1:49:63:56:ce:8e:c8:26:c4:1d:d0:4e:55:
61:ac:03:00:29:36:0e:09:44:17:c5:b8:86:66:7d:7a:e8:e5:
ea:a1:20:a7:da:83:cc:09:ce:5a:eb:f1:e2:5c:1f:50:ab:e3:
77:de:89:48:81:7d:4e:1c:4b:44:b1:9f:0d:c8:64:32:e3:ed:
66:18:5c:af:8a:fc:b0:7a:11:d8:b0:e1:6a:f7:1c:94:f1:d7:
44:2e:96:28:4f:cb:d6:19:a9:ba:cb:60:fb:89:be:ef:e8:37:
f1:28:16:12:85:68:35:55:be:60:b9:d3:21:10:0e:34:eb:ad:
1d:65:c0:fd:bd:2c:14:7b:26:71:65:89:52:37:29:d5:3a:e2:
96:dc:1e:d3:e5:e3:9f:60:2c:50:19:54:fb:8b:03:0c:f3:86:
b6:df:9d:2a:b8:c6:ec:96:d2:a6:d3:3c:e8:dc:0c:22:f9:01:
50:54:31:90:d0:fb:2e:d5:47:5a:5a:8f:a9:01:b4:d2:80:00:
94:df:ea:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:49 2023 by rpki-client on console.sobornost.net