Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/69327a-68de-4585-acfb-501257590de7/1/e13wX-MZB29N_c6j6Cm0pWFkTMI.roa
File: e13wX-MZB29N_c6j6Cm0pWFkTMI.roa (raw, json)
Hash identifier: h8fBJVY5xuKuxaqhipgmAHPeXa5ycldt9xlC7jeDgM8=
Subject key identifier: 7B:5D:F0:5F:E3:19:07:6F:4D:FD:CE:A3:E8:29:B4:A5:61:64:4C:C2
Certificate issuer: /CN=058737ac1bca8c1428b3969546f1974f0694e400
Certificate serial: 018CC26D446C0538E3C85DE5AB374023331D
Authority key identifier: 05:87:37:AC:1B:CA:8C:14:28:B3:96:95:46:F1:97:4F:06:94:E4:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BYc3rBvKjBQos5aVRvGXTwaU5AA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/69327a-68de-4585-acfb-501257590de7/1/e13wX-MZB29N_c6j6Cm0pWFkTMI.roa
Signing time: Mon 01 Jan 2024 00:29:49 +0000
ROA not before: Mon 01 Jan 2024 00:29:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205185
IP address blocks: 193.163.108.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:44:6c:05:38:e3:c8:5d:e5:ab:37:40:23:33:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=058737ac1bca8c1428b3969546f1974f0694e400
Validity
Not Before: Jan 1 00:29:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7b5df05fe319076f4dfdcea3e829b4a561644cc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:e9:35:6a:84:60:a4:5a:5c:2f:d0:2b:bf:78:
3c:ad:68:62:4c:d5:ff:40:f4:5a:3f:5f:12:18:9b:
c3:34:44:16:eb:79:06:ae:0b:3a:27:1c:13:54:cd:
e8:84:d3:5d:2b:b6:9e:7e:b8:f0:45:9c:9c:c5:33:
19:17:c5:5b:0d:38:96:72:2c:75:a2:7a:35:36:c8:
15:7f:c9:0a:f1:10:8e:f2:ef:0c:a0:cc:57:15:3a:
dd:fa:48:5d:86:b6:e5:63:a9:5c:cc:fb:54:a6:6e:
1a:04:a3:d3:b3:72:74:37:fe:ed:d2:b4:7a:d3:3a:
1d:c9:3c:e0:29:a5:71:e2:e4:34:aa:b0:8f:50:91:
55:de:c6:d6:27:7f:8d:0a:72:66:10:c0:50:1c:7d:
49:7b:09:18:40:98:4c:59:18:72:c7:f6:44:37:fe:
f1:f7:4d:64:2d:16:c6:0f:11:b8:9f:94:ed:b8:c9:
d1:c4:44:e9:28:8a:ff:1a:a8:64:d4:6e:92:83:4c:
db:fb:9d:07:ff:b5:a3:85:7e:7f:1e:6a:35:72:0b:
be:06:9b:86:9e:8b:57:fd:0e:cd:79:ac:14:ec:02:
36:7b:26:aa:96:0d:12:bd:ae:35:51:c9:85:07:84:
d9:0e:8f:90:ed:5b:b6:ec:64:fe:a6:57:27:f2:6b:
1c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:5D:F0:5F:E3:19:07:6F:4D:FD:CE:A3:E8:29:B4:A5:61:64:4C:C2
X509v3 Authority Key Identifier:
keyid:05:87:37:AC:1B:CA:8C:14:28:B3:96:95:46:F1:97:4F:06:94:E4:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BYc3rBvKjBQos5aVRvGXTwaU5AA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/69327a-68de-4585-acfb-501257590de7/1/e13wX-MZB29N_c6j6Cm0pWFkTMI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/69327a-68de-4585-acfb-501257590de7/1/BYc3rBvKjBQos5aVRvGXTwaU5AA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.108.0/24
Signature Algorithm: sha256WithRSAEncryption
13:cf:69:c0:03:9b:65:03:85:38:74:ce:b5:54:23:cd:69:9c:
74:87:78:13:bb:db:a4:7d:07:f8:38:78:b4:5e:c2:00:f9:59:
7b:64:7e:d0:d9:e7:cb:08:18:56:c0:c5:fc:47:5e:9c:cb:bb:
df:8f:65:ab:e2:e1:d1:db:46:e3:8a:23:f4:ea:ad:06:14:9b:
41:1a:ce:7d:90:b5:f3:5b:bf:1e:1f:e1:2a:56:5d:ee:76:93:
ab:93:f4:a9:19:3f:6a:45:83:28:f9:80:c1:60:8c:5f:7c:2b:
2f:36:fd:e7:fe:a8:4d:ae:d2:8a:c6:16:cb:e3:a9:2d:e2:a5:
61:99:d7:9f:45:8a:d4:6c:b5:7d:94:94:9a:3e:11:26:44:a8:
17:13:2d:cc:a6:6f:1c:56:85:db:2f:d0:f9:1d:4f:06:7b:4e:
20:d7:3f:c0:7c:c8:66:b7:65:cc:25:a5:96:97:5d:87:09:12:
1d:f2:ad:09:6d:7a:e1:8b:5a:10:a4:b5:40:77:12:28:34:65:
64:8f:16:5a:0d:de:ea:d5:83:4d:22:06:6e:53:10:2a:a1:fb:
ab:31:00:1b:37:fa:1c:71:95:c7:e7:0a:99:80:32:48:73:aa:
b4:db:5e:97:02:f0:09:4c:3a:73:a6:12:ba:fd:1a:9e:1d:ba:
32:3d:b4:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:42 2024 by rpki-client on console.sobornost.net