Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/5ba610-25bb-45c9-8af7-8c38b690762f/1/yjG71TO2ozEGgHYEzGYlWFxfuro.roa
File: yjG71TO2ozEGgHYEzGYlWFxfuro.roa (raw, json)
Hash identifier: KydcvsLTq4VzNtlehS+8DFo+KKhU/a7LVSbBuPz7sps=
Subject key identifier: CA:31:BB:D5:33:B6:A3:31:06:80:76:04:CC:66:25:58:5C:5F:BA:BA
Certificate issuer: /CN=a4c1bb101a814b9e2ee8264f81352a5bf2f2d025
Certificate serial: 10020950
Authority key identifier: A4:C1:BB:10:1A:81:4B:9E:2E:E8:26:4F:81:35:2A:5B:F2:F2:D0:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pMG7EBqBS54u6CZPgTUqW_Ly0CU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/5ba610-25bb-45c9-8af7-8c38b690762f/1/yjG71TO2ozEGgHYEzGYlWFxfuro.roa
Signing time: Sat 01 Jan 2022 00:54:10 +0000
ROA not before: Sat 01 Jan 2022 00:54:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1942
IP address blocks: 129.88.0.0/16 maxlen: 16
147.171.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 268568912 (0x10020950)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4c1bb101a814b9e2ee8264f81352a5bf2f2d025
Validity
Not Before: Jan 1 00:54:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca31bbd533b6a33106807604cc6625585c5fbaba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:66:df:f8:8b:84:09:f0:77:40:e1:c5:fe:9e:
31:f1:70:9d:e8:83:84:64:fe:4b:35:ea:ab:1f:02:
72:ec:a1:56:f1:34:8b:7b:dd:7c:4c:90:37:83:64:
43:51:a9:c7:81:da:ba:6c:0d:47:21:9e:d1:1d:34:
bf:59:2e:d3:28:8e:eb:cf:1b:9d:c1:ae:a4:31:9d:
14:82:b8:0a:fc:e9:7d:43:75:eb:a7:e4:c6:f0:af:
67:f0:21:2e:f2:5a:9e:cf:a0:e1:ae:38:a4:2e:2f:
d3:9b:f8:52:19:07:0c:49:00:aa:38:b6:63:23:00:
91:6f:6b:34:60:e5:f0:94:bf:2b:d1:b0:ed:5d:b2:
18:10:e5:5d:a5:bc:79:25:88:9f:07:01:57:8e:79:
0d:c0:17:7d:34:be:4b:f5:ce:c9:2f:35:af:e5:76:
0a:4c:10:1a:bd:41:66:b9:45:0b:70:73:8d:74:7c:
45:5f:4c:31:fa:6f:b6:32:a6:a9:58:19:39:69:c0:
19:d6:eb:e7:72:58:44:fc:68:bb:bc:13:6d:cd:9f:
78:70:6a:35:f3:a4:9f:6e:7a:18:e4:c6:7d:af:4e:
79:3a:5f:fa:b2:9d:02:f4:a2:be:60:a3:be:58:81:
c3:be:7e:82:bd:66:7d:3d:a8:9a:34:20:f8:43:54:
2a:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:31:BB:D5:33:B6:A3:31:06:80:76:04:CC:66:25:58:5C:5F:BA:BA
X509v3 Authority Key Identifier:
keyid:A4:C1:BB:10:1A:81:4B:9E:2E:E8:26:4F:81:35:2A:5B:F2:F2:D0:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pMG7EBqBS54u6CZPgTUqW_Ly0CU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/5ba610-25bb-45c9-8af7-8c38b690762f/1/yjG71TO2ozEGgHYEzGYlWFxfuro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/5ba610-25bb-45c9-8af7-8c38b690762f/1/pMG7EBqBS54u6CZPgTUqW_Ly0CU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
129.88.0.0/16
147.171.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2c:02:66:8d:c0:40:4f:c5:18:c7:e2:49:f0:44:ec:85:84:5f:
b4:9c:d2:f9:58:a7:2a:f1:e6:d0:6b:6c:7b:45:3b:9d:93:2b:
c4:13:e1:9c:b0:ce:4c:32:37:f3:86:57:59:0c:e1:0b:d0:1c:
d5:bf:2e:e7:f1:5b:8d:84:ab:a9:49:e1:1f:d2:2e:3b:ab:80:
f9:c4:61:ff:7f:5a:20:c9:c1:da:d9:fb:6f:93:5a:f1:44:e4:
3d:3e:1b:e2:fa:e6:b7:69:ac:a7:9a:a6:9f:54:37:2e:7f:dd:
58:ac:b5:64:b0:99:97:4f:e2:74:12:d1:e0:f4:75:a5:ae:c5:
1f:6e:80:d3:80:c4:3a:3e:b9:7d:51:07:dd:13:88:11:93:b0:
b0:ca:56:e6:0b:5a:bd:27:40:03:47:a1:44:44:c5:55:2b:78:
13:59:f6:c3:4a:16:a3:0d:9b:1f:52:52:3a:4b:8b:bf:af:64:
e2:5c:93:ee:0d:30:97:c8:55:6a:07:33:b1:af:78:0e:c5:40:
77:5e:12:61:c4:22:5c:0c:3a:8e:12:67:50:7e:e6:f6:d0:25:
32:b8:0e:8f:10:64:a3:41:00:7b:ab:d1:c2:07:7a:d0:3b:40:
11:09:f0:9b:0a:18:d1:1a:f9:be:c7:10:f0:1a:7a:bf:b1:55:
f7:aa:8d:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:48 2023 by rpki-client on console.sobornost.net