Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/1d8824-545a-4b05-8daf-7d87c1940fe9/1/QBXGbHIxf597_GTv13ya-i2BcOc.roa
File: QBXGbHIxf597_GTv13ya-i2BcOc.roa (raw, json)
Hash identifier: pyYhEhnk0g5cKPdeE0jrXa9Xkeuccz9wIGAVWCatMHQ=
Subject key identifier: 40:15:C6:6C:72:31:7F:9F:7B:FC:64:EF:D7:7C:9A:FA:2D:81:70:E7
Certificate issuer: /CN=4c9554c840b2fad265ecd793304a36e563268e2a
Certificate serial: 01AE604B
Authority key identifier: 4C:95:54:C8:40:B2:FA:D2:65:EC:D7:93:30:4A:36:E5:63:26:8E:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TJVUyECy-tJl7NeTMEo25WMmjio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/1d8824-545a-4b05-8daf-7d87c1940fe9/1/QBXGbHIxf597_GTv13ya-i2BcOc.roa
Signing time: Sat 01 Jan 2022 08:05:38 +0000
ROA not before: Sat 01 Jan 2022 08:05:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 45.86.37.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28205131 (0x1ae604b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c9554c840b2fad265ecd793304a36e563268e2a
Validity
Not Before: Jan 1 08:05:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4015c66c72317f9f7bfc64efd77c9afa2d8170e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:35:12:07:ed:fc:e1:c0:d3:60:3b:25:0d:73:
9f:7c:29:49:32:4d:e8:ee:1d:1a:88:c4:21:43:09:
4c:a5:0d:1c:f8:4a:8e:c1:db:66:ca:c2:fe:8d:2d:
67:48:a3:28:df:e8:80:61:12:0c:94:43:c1:10:0d:
9c:7b:f7:2a:61:2a:b3:2f:bb:ad:99:f3:b8:20:31:
89:c9:96:22:cf:29:47:74:d7:bb:6f:bb:08:63:4c:
db:e5:ee:36:a1:c8:0d:1c:eb:af:fb:ad:9e:d4:2e:
94:24:ea:7e:46:9c:4b:b2:7e:8d:75:6d:65:ab:a3:
1b:02:0d:7f:df:ab:53:21:ba:89:1d:c2:f5:b9:f4:
5d:ea:2c:9e:f7:95:a1:d0:a7:60:c6:b3:ae:a6:6e:
da:90:3c:d4:ea:0c:e9:78:c1:a0:bb:09:40:ee:11:
0e:aa:47:02:e3:a5:85:a7:74:9a:20:61:88:e7:43:
28:4a:45:94:a5:3c:e8:f3:b4:97:39:3c:0b:59:a3:
0d:db:95:54:7d:14:dc:c6:26:10:b4:46:f7:27:80:
32:7d:68:a3:37:3d:01:f9:d4:c0:ea:7c:6c:d7:65:
c5:cd:e7:5a:95:02:44:4e:94:f8:e1:8f:ab:95:10:
58:8a:c3:fe:78:e5:4a:df:6c:87:72:fc:f2:78:1d:
8c:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:15:C6:6C:72:31:7F:9F:7B:FC:64:EF:D7:7C:9A:FA:2D:81:70:E7
X509v3 Authority Key Identifier:
keyid:4C:95:54:C8:40:B2:FA:D2:65:EC:D7:93:30:4A:36:E5:63:26:8E:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TJVUyECy-tJl7NeTMEo25WMmjio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1d8824-545a-4b05-8daf-7d87c1940fe9/1/QBXGbHIxf597_GTv13ya-i2BcOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1d8824-545a-4b05-8daf-7d87c1940fe9/1/TJVUyECy-tJl7NeTMEo25WMmjio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.37.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:19:04:a3:a3:a9:86:49:9d:ae:59:27:13:09:22:b4:b5:24:
c7:ec:17:c3:34:c4:6b:ac:70:cc:c4:54:f7:f5:ec:80:fd:8e:
a4:c4:97:a7:9b:c0:ef:3a:92:0f:95:79:d9:15:90:fd:45:ea:
a6:99:bc:be:95:05:87:50:e6:12:50:47:e0:6c:81:bc:4d:37:
5a:eb:7a:8f:26:e0:6b:c5:52:ab:85:be:d3:e8:0d:85:52:61:
1d:a0:f4:08:cf:4e:67:01:9d:1c:e3:03:1b:2a:64:1e:b4:22:
73:48:e4:ae:29:42:c1:2e:0c:a5:07:d0:ba:cc:22:17:6f:ff:
ba:1a:0b:76:89:3c:0c:2a:8b:38:e2:09:e8:93:49:69:b2:6a:
12:89:04:8c:3f:3e:1f:81:f9:0c:d0:2b:16:63:36:06:df:64:
6f:7d:31:e4:ae:0e:9f:82:72:c6:62:9a:f2:bb:52:9e:a5:af:
d6:ae:16:dc:97:9c:66:8e:f9:37:5b:ce:d3:82:63:f1:6c:84:
98:89:7b:8f:33:25:3e:be:26:59:b9:1c:0b:aa:2d:6d:8b:fb:
4e:b3:e8:ca:a2:0c:6d:e4:2f:d8:d0:11:eb:53:f8:9e:93:9f:
95:90:0f:15:bf:d3:78:9a:59:d6:55:02:6d:49:c5:5b:d9:1a:
5b:b9:8f:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:08 2023 by rpki-client on console.sobornost.net