Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/9l9vj3HHEd2S7HNl9MOCsGatvT4.roa
File: 9l9vj3HHEd2S7HNl9MOCsGatvT4.roa (raw, json)
Hash identifier: 4xEg6EzlVLJtWxNCGztSD+f7AMA2tIlE/Mbm/XessDw=
Subject key identifier: F6:5F:6F:8F:71:C7:11:DD:92:EC:73:65:F4:C3:82:B0:66:AD:BD:3E
Certificate issuer: /CN=218b2c6a1a61a17bab7c032080aa3bf24478b6dd
Certificate serial: 018CC86F56F7F8F0A2898BCCD9FD7A2654A1
Authority key identifier: 21:8B:2C:6A:1A:61:A1:7B:AB:7C:03:20:80:AA:3B:F2:44:78:B6:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/9l9vj3HHEd2S7HNl9MOCsGatvT4.roa
Signing time: Tue 02 Jan 2024 04:29:49 +0000
ROA not before: Tue 02 Jan 2024 04:29:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44719
IP address blocks: 195.42.116.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:56:f7:f8:f0:a2:89:8b:cc:d9:fd:7a:26:54:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218b2c6a1a61a17bab7c032080aa3bf24478b6dd
Validity
Not Before: Jan 2 04:29:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f65f6f8f71c711dd92ec7365f4c382b066adbd3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b6:b3:75:1b:b4:af:fb:1d:e0:39:25:66:49:
8a:c9:04:de:a1:d3:77:ab:32:39:56:cc:7e:f2:5b:
ea:d8:cd:75:bc:98:3d:64:e1:87:8f:98:d9:c2:e6:
31:36:e6:40:a1:de:23:87:0e:2d:87:ec:79:79:9c:
60:30:4a:44:49:b7:99:f9:0c:f4:1f:26:75:92:f4:
d7:26:2e:69:e1:7a:8a:f2:b5:e0:29:24:3f:fd:61:
fb:b0:32:f4:b5:48:d7:60:9d:97:dd:c7:d8:01:db:
9b:5b:9a:62:7d:ec:be:81:32:f3:e2:e2:5d:95:11:
5c:6d:e6:9b:8b:cc:74:e1:a0:e1:a8:e8:83:fa:ae:
68:26:e1:c0:97:f8:21:eb:d9:e8:5f:99:7f:ea:5d:
8c:05:7e:9b:5f:3a:6c:00:fa:f1:0c:27:5b:11:67:
25:c1:a7:26:ef:b2:fa:64:97:67:9f:03:91:7a:10:
5b:24:14:03:79:58:6c:77:61:81:be:bc:72:8f:54:
09:1e:a1:83:6c:64:b2:16:4e:71:e0:13:44:ae:01:
77:23:68:62:7a:8b:a1:3a:74:e3:cf:5b:a4:a2:48:
78:a6:0f:c4:82:6d:02:06:95:10:f8:3b:f6:bd:9f:
70:3a:5b:90:48:0c:b8:46:93:03:45:02:d5:01:c6:
7e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:5F:6F:8F:71:C7:11:DD:92:EC:73:65:F4:C3:82:B0:66:AD:BD:3E
X509v3 Authority Key Identifier:
keyid:21:8B:2C:6A:1A:61:A1:7B:AB:7C:03:20:80:AA:3B:F2:44:78:B6:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/9l9vj3HHEd2S7HNl9MOCsGatvT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.42.116.0/23
Signature Algorithm: sha256WithRSAEncryption
15:1f:c0:dc:be:94:79:e7:19:47:d6:9f:da:85:ae:e3:81:ed:
d0:db:e2:c2:94:47:88:63:8b:c7:3d:04:51:27:1e:92:4d:e1:
2b:8f:0f:e0:24:67:31:a0:46:93:bc:13:dd:59:77:2c:2c:e0:
82:91:83:67:9c:49:73:b4:ac:2e:b3:c4:27:42:74:b1:e2:c4:
35:9b:90:87:cf:9d:a5:ae:5a:55:ce:57:46:04:ef:af:f9:46:
48:00:00:33:c9:48:43:d6:a8:0f:46:36:14:03:91:32:40:01:
f8:2c:d4:aa:23:72:cc:de:79:11:9f:e4:08:7a:fd:cb:fe:28:
c6:f7:34:7e:30:24:79:3d:b9:14:0d:55:17:39:2d:54:20:49:
2d:cd:db:c6:0d:68:88:32:ee:76:71:2b:6f:9c:1d:33:9a:44:
07:82:46:49:99:00:bd:c9:83:1d:45:55:e3:16:51:40:ea:9a:
2d:bf:2e:a1:4a:85:f5:de:2d:d0:31:d7:7a:9f:db:d0:91:b2:
94:e2:27:f9:6c:b9:fb:58:e3:90:88:0a:e6:ae:2d:9a:c6:f3:
98:67:62:67:61:eb:e2:9e:b5:53:d9:a8:59:1a:65:9a:03:e0:
4c:a5:ad:ee:5c:87:c2:0d:1c:94:4a:a5:58:98:21:c9:eb:59:
a4:ee:ab:90
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzIb1b3+PCiiYvM2f16JlShMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxOGIyYzZhMWE2MWExN2JhYjdjMDMyMDgwYWEzYmYyNDQ3
OGI2ZGQwHhcNMjQwMTAyMDQyOTQ5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNjVmNmY4ZjcxYzcxMWRkOTJlYzczNjVmNGMzODJiMDY2YWRiZDNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo7azdRu0r/sd4DklZkmKyQTeodN3
qzI5Vsx+8lvq2M11vJg9ZOGHj5jZwuYxNuZAod4jhw4th+x5eZxgMEpESbeZ+Qz0
HyZ1kvTXJi5p4XqK8rXgKSQ//WH7sDL0tUjXYJ2X3cfYAdubW5pifey+gTLz4uJd
lRFcbeabi8x04aDhqOiD+q5oJuHAl/gh69noX5l/6l2MBX6bXzpsAPrxDCdbEWcl
wacm77L6ZJdnnwORehBbJBQDeVhsd2GBvrxyj1QJHqGDbGSyFk5x4BNErgF3I2hi
eouhOnTjz1ukokh4pg/Egm0CBpUQ+Dv2vZ9wOluQSAy4RpMDRQLVAcZ+bwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPZfb49xxxHdkuxzZfTDgrBmrb0+MB8GA1UdIwQY
MBaAFCGLLGoaYaF7q3wDIICqO/JEeLbdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVlzc2FocGhvWHVyZkFNZ2dLbzc4a1I0dHQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS84NDkxNDAtYzg1My00OGNkLTlhODQt
Yjk5MzE2OGJjNTkzLzEvOWw5dmozSEhFZDJTN0hObDlNT0NzR2F0dlQ0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS84NDkxNDAtYzg1My00OGNkLTlhODQtYjk5MzE2OGJjNTkz
LzEvSVlzc2FocGhvWHVyZkFNZ2dLbzc4a1I0dHQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwyp0MA0G
CSqGSIb3DQEBCwUAA4IBAQAVH8DcvpR55xlH1p/aha7jge3Q2+LClEeIY4vHPQRR
Jx6STeErjw/gJGcxoEaTvBPdWXcsLOCCkYNnnElztKwus8QnQnSx4sQ1m5CHz52l
rlpVzldGBO+v+UZIAAAzyUhD1qgPRjYUA5EyQAH4LNSqI3LM3nkRn+QIev3L/ijG
9zR+MCR5PbkUDVUXOS1UIEktzdvGDWiIMu52cStvnB0zmkQHgkZJmQC9yYMdRVXj
FlFA6potvy6hSoX13i3QMdd6n9vQkbKU4if5bLn7WOOQiArmri2axvOYZ2JnYevi
nrVT2ahZGmWaA+BMpa3uXIfCDRyUSqVYmCHJ61mk7quQ
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:44 2024 by rpki-client on console.sobornost.net