Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/ca8e58-8afd-493b-a916-e05aa513e5dd/1/iUm58w_yLxBFjTQQk9Lkym0y6h0.roa
File: iUm58w_yLxBFjTQQk9Lkym0y6h0.roa (raw, json)
Hash identifier: 2cKCg3VF2Slg5PhJwSJFdeN0DL8uMKWmeEqix0A450Y=
Subject key identifier: 89:49:B9:F3:0F:F2:2F:10:45:8D:34:10:93:D2:E4:CA:6D:32:EA:1D
Certificate issuer: /CN=04a7f9072e8b3004ba08681fb1ef88c03f620a88
Certificate serial: 0190F90027100294BE982EB950141EE617D0
Authority key identifier: 04:A7:F9:07:2E:8B:30:04:BA:08:68:1F:B1:EF:88:C0:3F:62:0A:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BKf5By6LMAS6CGgfse-IwD9iCog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/ca8e58-8afd-493b-a916-e05aa513e5dd/1/iUm58w_yLxBFjTQQk9Lkym0y6h0.roa
Signing time: Sun 28 Jul 2024 11:00:55 +0000
ROA not before: Sun 28 Jul 2024 11:00:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204030
IP address blocks: 87.101.84.0/22 maxlen: 22
87.101.84.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:f9:00:27:10:02:94:be:98:2e:b9:50:14:1e:e6:17:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04a7f9072e8b3004ba08681fb1ef88c03f620a88
Validity
Not Before: Jul 28 11:00:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8949b9f30ff22f10458d341093d2e4ca6d32ea1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:46:e8:35:b3:93:25:6f:45:b5:67:2e:fe:9d:
72:d7:05:11:95:5c:dd:64:ce:dc:6a:36:87:45:a4:
a1:ac:91:8b:56:da:ab:cb:66:28:20:64:93:b1:df:
35:2f:52:a4:6e:09:d7:ed:79:9d:c0:76:71:80:1c:
40:ae:cf:91:ae:3d:64:21:31:4a:c1:a6:92:1e:f7:
fe:f0:27:2d:00:62:43:9f:fd:4a:55:78:55:83:98:
61:4c:3a:ad:cd:23:95:9c:1f:94:f4:5e:df:f1:b8:
64:9e:14:36:97:db:c0:69:d1:81:3b:9c:d7:cd:69:
99:42:ab:10:f5:b8:35:d2:c2:cf:ec:ad:15:f7:b9:
a8:87:22:88:b6:c9:e0:55:87:14:a4:9b:4e:30:c2:
a8:1a:b1:ed:ab:7b:be:2b:25:01:96:0a:01:8b:8c:
8a:10:b9:8c:5e:21:05:d7:ed:29:ca:84:12:de:7c:
35:07:56:67:3b:ae:49:54:59:ba:e5:00:23:ed:5b:
27:8f:aa:9a:6e:05:16:8c:5e:ec:c5:69:b0:4d:97:
b8:ca:71:00:0b:e0:89:6b:b7:92:a1:7c:0b:86:4e:
06:5c:7a:92:89:75:16:36:aa:89:7f:87:43:3c:e6:
3f:3d:6f:d2:df:10:e5:cd:6b:11:5b:f7:9b:2f:c1:
81:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:49:B9:F3:0F:F2:2F:10:45:8D:34:10:93:D2:E4:CA:6D:32:EA:1D
X509v3 Authority Key Identifier:
keyid:04:A7:F9:07:2E:8B:30:04:BA:08:68:1F:B1:EF:88:C0:3F:62:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BKf5By6LMAS6CGgfse-IwD9iCog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/ca8e58-8afd-493b-a916-e05aa513e5dd/1/iUm58w_yLxBFjTQQk9Lkym0y6h0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/ca8e58-8afd-493b-a916-e05aa513e5dd/1/BKf5By6LMAS6CGgfse-IwD9iCog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.101.84.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:50:c3:16:36:cc:1c:f8:29:ed:39:5a:bc:46:8c:e3:7d:14:
21:3d:7f:a3:19:da:60:c9:47:17:20:e5:3c:a0:3c:7a:fe:61:
ca:22:34:56:91:2d:4c:7f:4f:83:23:23:2d:7e:1d:83:8d:bd:
9f:00:79:6f:fe:9d:92:c4:75:f5:d2:dc:19:0a:a4:b8:20:36:
f2:e3:2a:53:2a:cb:84:41:42:26:25:4e:85:77:ea:a0:6f:9c:
96:36:e3:eb:25:d9:4d:ec:67:8e:83:85:6d:74:5a:d2:17:74:
ca:e0:9e:11:3b:a4:22:05:31:48:80:0b:92:64:78:f2:05:61:
88:a4:0d:a6:3a:a3:6b:38:10:2a:2f:10:8d:f1:7e:ec:49:b1:
50:43:46:cc:b9:4f:91:d0:00:56:cb:5f:f9:77:a2:27:c4:2a:
c0:d1:bb:a1:a8:d3:ca:68:dd:d5:c7:6a:eb:c8:ab:3e:77:d3:
44:b9:3f:bc:dd:2e:ec:d1:10:9c:57:af:87:3a:b8:64:a3:0a:
b1:9f:64:8d:17:9a:bf:0c:89:85:4a:9f:56:65:04:3a:06:c2:
57:18:e8:30:83:f4:93:e3:66:36:32:4c:1c:06:04:e4:59:f8:
8c:8f:b3:4f:4e:81:80:7d:7e:0d:1f:1f:b3:bd:44:bb:47:8e:
b3:22:4b:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:14 2024 by rpki-client on console.sobornost.net