Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/YFnQqWeV1x66kEKkmYSvRGIBfaE.roa
File: YFnQqWeV1x66kEKkmYSvRGIBfaE.roa (raw, json)
Hash identifier: NR+XDuBYaZCwm5mSAls/m8KjhkxZrkGD+7cmGFqmHUY=
Subject key identifier: 60:59:D0:A9:67:95:D7:1E:BA:90:42:A4:99:84:AF:44:62:01:7D:A1
Certificate issuer: /CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Certificate serial: 019389242E60AA85CECF39D57499DC75FAF7
Authority key identifier: 2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/YFnQqWeV1x66kEKkmYSvRGIBfaE.roa
Signing time: Mon 02 Dec 2024 20:51:09 +0000
ROA not before: Mon 02 Dec 2024 20:51:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 5.249.184.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:89:24:2e:60:aa:85:ce:cf:39:d5:74:99:dc:75:fa:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Validity
Not Before: Dec 2 20:51:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6059d0a96795d71eba9042a49984af4462017da1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a6:15:1c:29:a7:78:fb:57:a7:05:9d:79:63:
39:34:68:3c:66:e4:d9:0d:ef:a3:96:bb:4a:f4:ab:
30:35:e5:08:06:e6:6e:bc:5d:7b:55:e5:ed:d0:2e:
35:33:51:82:00:34:ef:bc:a9:1f:34:36:26:ad:90:
46:71:31:9d:ee:a9:49:ef:5b:88:13:59:c7:1c:c9:
72:95:fa:2f:db:73:f1:22:23:4c:d3:f6:ee:db:9b:
71:a7:17:77:9d:70:4a:23:ed:ea:37:31:b1:a3:41:
9a:77:d2:25:4b:75:75:f5:ab:64:93:5c:c6:10:03:
18:71:2b:df:c1:1a:7c:a2:31:01:75:e9:2f:c5:93:
1f:5b:bd:0c:14:a3:d2:c4:3a:08:37:e9:34:d8:26:
59:b6:c4:10:65:9a:26:0e:33:fe:fd:2a:d8:47:e3:
b5:cf:af:21:72:9b:6a:ef:7a:aa:79:60:83:ef:70:
76:ca:f6:cb:c8:3a:68:7a:09:60:8c:1f:78:bd:a9:
2a:2e:44:d6:de:d7:b9:f6:6f:c2:7e:25:e7:08:2e:
c9:69:da:b3:08:6b:49:75:d2:d1:d5:a1:80:8b:52:
1b:f6:37:28:7d:fe:4a:3a:d0:b7:b9:06:0d:0c:14:
7f:e7:1c:f1:c2:10:ad:e3:ab:7d:de:b5:2e:c8:2c:
ff:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:59:D0:A9:67:95:D7:1E:BA:90:42:A4:99:84:AF:44:62:01:7D:A1
X509v3 Authority Key Identifier:
keyid:2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/YFnQqWeV1x66kEKkmYSvRGIBfaE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.249.184.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:58:2a:65:53:b2:4f:6a:2f:ba:58:4c:56:b5:97:08:63:d3:
9f:26:08:d8:54:d7:d1:9e:d3:da:ac:8d:c1:a6:e2:7e:f5:4e:
04:ad:be:86:1e:4e:41:6b:e3:c8:8e:4a:60:b6:95:93:40:d2:
9b:e5:ec:21:8b:78:15:17:63:31:a6:20:29:d8:ff:f9:74:ce:
4a:36:cf:27:cc:f5:13:51:af:1a:63:29:ea:35:ec:22:33:50:
6b:f1:b2:a6:ed:0d:34:1b:91:40:f7:bf:bd:71:f0:64:e7:b4:
00:f7:38:7b:aa:10:10:48:d9:4e:5f:51:ae:bc:d3:d5:81:51:
c6:cf:0b:f0:10:81:c6:27:86:16:b1:cf:4a:73:3d:36:4f:4d:
91:31:1c:62:1e:32:49:1b:6f:7e:e4:fc:8f:04:29:74:2a:26:
8f:a9:1e:e8:4a:a7:33:e2:30:e1:77:df:ba:a2:3b:c7:46:24:
0a:93:96:b2:e2:90:ab:71:42:93:17:0e:c7:f7:a5:eb:08:78:
c9:27:5c:7e:f6:ea:1d:c4:f7:ce:b2:f6:29:32:c2:b1:97:29:
e4:16:3d:ae:a9:93:aa:2d:3d:09:b1:35:5d:7c:98:b4:b3:38:
f4:23:88:40:07:bf:d8:a9:20:97:f4:36:ca:a4:54:ea:56:8e:
65:07:80:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:15 2024 by rpki-client on console.sobornost.net