Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/ca795e-716d-4be0-9cd9-0a6a5041d0aa/1/qSO9SeMOetlz4MUeOusfpdVAkvE.roa
File: qSO9SeMOetlz4MUeOusfpdVAkvE.roa (raw, json)
Hash identifier: ia9vTJ+g85RlgMXHu2tZYtXxWi67bSstTUttQR6Mprw=
Subject key identifier: A9:23:BD:49:E3:0E:7A:D9:73:E0:C5:1E:3A:EB:1F:A5:D5:40:92:F1
Certificate issuer: /CN=2e766f7f1ba1dab9a7060d012e1e40931efc7488
Certificate serial: 094AF83D
Authority key identifier: 2E:76:6F:7F:1B:A1:DA:B9:A7:06:0D:01:2E:1E:40:93:1E:FC:74:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LnZvfxuh2rmnBg0BLh5Akx78dIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/ca795e-716d-4be0-9cd9-0a6a5041d0aa/1/qSO9SeMOetlz4MUeOusfpdVAkvE.roa
Signing time: Sat 01 Jan 2022 02:59:11 +0000
ROA not before: Sat 01 Jan 2022 02:59:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39104
IP address blocks: 195.110.12.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155908157 (0x94af83d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e766f7f1ba1dab9a7060d012e1e40931efc7488
Validity
Not Before: Jan 1 02:59:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a923bd49e30e7ad973e0c51e3aeb1fa5d54092f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:01:e2:d5:cc:ff:7c:eb:7a:bd:52:42:c4:87:
a4:0f:e0:dc:31:99:27:3e:2c:d8:9e:90:92:ba:b5:
91:d1:50:6e:2b:c9:3a:32:61:c0:4b:5d:30:e0:e7:
e5:97:78:c6:c1:c2:49:66:9d:86:ef:24:41:6b:4f:
50:0e:6e:32:4c:04:40:4e:9a:27:b0:c2:3f:28:06:
87:3c:52:8d:2b:86:4a:d8:ad:3f:92:e5:5e:d1:39:
e7:36:ed:cf:3d:9a:57:c4:be:85:54:06:33:4d:6c:
67:5a:a1:a8:25:b2:d8:f7:5e:4a:86:68:66:8a:b1:
91:1f:3b:50:f4:01:0b:92:e6:51:2e:e1:c1:c2:e1:
4c:8a:4b:2d:8f:4a:fa:a4:66:f5:f2:9b:ec:2c:ec:
20:7b:41:ac:d9:00:d2:b1:4c:31:a2:af:6c:40:62:
12:c1:01:52:08:f8:27:12:a5:54:35:78:86:30:b9:
ce:00:54:23:7a:40:96:af:05:1f:e0:b4:da:5b:0e:
0f:85:c2:f4:66:18:30:e1:9e:d6:d1:a7:63:20:ff:
45:9c:d2:bb:25:54:06:3a:7f:93:35:4d:31:2e:14:
91:b2:4b:4f:32:29:20:df:42:e9:dd:be:51:99:29:
ee:1d:39:a6:1d:4c:09:9a:3d:43:49:b1:f7:0d:50:
51:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:23:BD:49:E3:0E:7A:D9:73:E0:C5:1E:3A:EB:1F:A5:D5:40:92:F1
X509v3 Authority Key Identifier:
keyid:2E:76:6F:7F:1B:A1:DA:B9:A7:06:0D:01:2E:1E:40:93:1E:FC:74:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LnZvfxuh2rmnBg0BLh5Akx78dIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/ca795e-716d-4be0-9cd9-0a6a5041d0aa/1/qSO9SeMOetlz4MUeOusfpdVAkvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/ca795e-716d-4be0-9cd9-0a6a5041d0aa/1/LnZvfxuh2rmnBg0BLh5Akx78dIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.110.12.0/23
Signature Algorithm: sha256WithRSAEncryption
c0:75:48:b5:f3:98:dd:a7:82:fe:80:74:9a:c1:9d:df:e8:41:
dd:d4:d4:58:fd:3d:05:53:5b:30:83:fe:28:f8:a6:ef:a9:8e:
bb:bd:8e:a4:10:92:44:04:14:8a:ba:da:e1:27:cc:c4:0c:e9:
11:78:8a:fd:b1:82:7b:55:ea:90:04:ab:f3:97:da:a0:f6:5c:
23:6a:dc:85:1f:e5:ec:ff:fe:3b:e8:08:30:4d:fb:0c:ee:68:
f2:65:39:17:cd:f3:d3:e5:09:a9:2a:54:40:be:cb:6f:e1:db:
6a:c4:6e:b3:47:00:72:20:6e:a2:fd:8b:6f:d6:23:e5:96:c6:
b5:56:19:b2:42:01:7e:13:df:57:ea:e5:a8:f1:98:34:b6:bb:
52:7a:16:a8:59:7f:4a:27:27:c2:26:92:d3:9f:ff:65:f2:64:
3a:23:7c:65:14:b9:21:07:28:4f:a0:4d:32:bb:62:da:9d:50:
57:2e:dd:11:92:2e:fd:0e:c1:ca:b7:ea:ea:69:10:c5:e3:63:
a8:df:b9:bc:52:74:ad:31:ba:e2:75:4e:ea:31:bd:db:98:17:
8d:08:b9:54:e2:2a:a6:33:85:09:c0:43:24:7c:f2:38:46:7c:
ad:6d:2c:0b:7e:34:78:bc:b5:f9:66:7d:05:13:08:c3:95:0c:
6b:07:92:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:56 2023 by rpki-client on console.sobornost.net