Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/OSrRkDl41y7jrb3d364wclYjADs.roa
File: OSrRkDl41y7jrb3d364wclYjADs.roa (raw, json)
Hash identifier: WXRKz6kOisiPKEA9xDxbvA9+3CzqzsEuIzO4PTRtySw=
Subject key identifier: 39:2A:D1:90:39:78:D7:2E:E3:AD:BD:DD:DF:AE:30:72:56:23:00:3B
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 018CC9BBD475AD4EB88B11224E04447BB157
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/OSrRkDl41y7jrb3d364wclYjADs.roa
Signing time: Tue 02 Jan 2024 10:32:59 +0000
ROA not before: Tue 02 Jan 2024 10:32:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202738
IP address blocks: 194.88.34.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:d4:75:ad:4e:b8:8b:11:22:4e:04:44:7b:b1:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 2 10:32:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=392ad1903978d72ee3adbddddfae30725623003b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:9c:06:e9:ef:89:49:96:5f:7a:b6:cd:f0:ed:
10:75:cd:f7:6f:2a:3f:b4:6b:6e:5b:f5:f2:41:c2:
82:49:b2:34:c4:1c:96:1f:4a:d4:d9:76:fd:c1:b7:
83:b7:45:e8:88:88:dd:ae:d2:96:c2:03:3a:66:af:
62:0d:94:e9:79:8c:e8:f7:f0:a0:4f:02:3a:aa:eb:
ff:63:73:65:2d:24:47:8e:c9:e5:b0:fb:e7:02:5c:
18:9d:d0:8a:27:4e:af:89:42:0f:9b:cc:0c:2e:56:
89:1e:a0:f7:a1:5b:19:89:bf:eb:9e:c3:69:22:89:
f9:46:14:11:12:25:3a:40:54:e2:d4:fc:ca:f5:ff:
aa:3c:3e:6c:b2:21:7a:11:3f:24:f1:9e:68:05:b0:
7d:1b:bd:56:58:73:2d:ec:23:5a:f6:e5:b4:07:60:
14:f9:c3:8b:cf:33:65:c9:84:7f:c2:0a:df:90:44:
53:6c:5f:80:de:e6:0d:14:f4:2f:70:2a:55:44:83:
48:b3:24:3f:76:a0:b4:05:d2:a4:a8:ba:85:78:ae:
64:bc:a7:1a:68:2a:1c:71:6f:e1:54:6d:0c:e7:2b:
86:7f:12:80:90:09:b1:34:2b:cc:08:5c:6f:21:f6:
e5:18:72:be:34:f5:62:cd:f7:84:47:9f:9e:75:9b:
b9:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:2A:D1:90:39:78:D7:2E:E3:AD:BD:DD:DF:AE:30:72:56:23:00:3B
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/OSrRkDl41y7jrb3d364wclYjADs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.88.34.0/24
Signature Algorithm: sha256WithRSAEncryption
40:8b:37:05:5a:31:18:54:c5:45:2e:99:ff:55:6a:e7:88:bc:
b5:62:67:5a:61:ad:7a:24:bd:7a:70:6f:2f:fb:7c:57:91:35:
f6:24:99:7d:39:f0:17:28:8f:5f:49:1c:85:82:4c:f5:37:7d:
1c:58:a2:56:2e:ca:36:d1:a5:cd:62:0a:09:47:5f:68:93:33:
2e:e7:2a:97:1d:4a:b1:c6:54:46:5c:85:77:95:d1:8f:53:59:
6b:04:ea:bc:f6:42:fa:a1:8e:09:49:e3:ae:a0:ed:c8:71:79:
15:52:47:79:44:2f:14:0e:82:20:42:28:ac:ec:31:81:1b:c4:
c7:19:d0:5f:b4:43:3e:75:02:db:d5:eb:df:ba:bb:75:65:4c:
95:ca:af:c1:b7:90:c9:5d:51:0c:9c:1b:1d:83:24:11:11:c6:
1b:39:cc:ed:6d:6b:30:61:f1:e1:e5:64:a3:03:eb:b1:66:88:
7d:ee:5d:ac:0c:3d:52:d4:4c:45:62:cb:d2:ee:73:0e:20:2b:
76:7f:c9:da:ae:15:3d:7f:00:e7:e9:9e:2a:f3:c9:74:12:6e:
6e:4d:a9:70:e1:84:51:4c:e7:40:49:65:3f:3c:ab:c3:4e:2a:
48:c2:3c:7e:ee:dd:eb:5c:20:d6:a0:3d:00:d9:db:0a:9b:6b:
8b:ac:b9:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:26 2024 by rpki-client on console.sobornost.net