Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/279bbc-5840-4a20-bf7d-1c9a32523244/1/2ohz4gKAwisbu0YETADAGz3bSko.roa
File: 2ohz4gKAwisbu0YETADAGz3bSko.roa (raw, json)
Hash identifier: 63kKFhdlCGCu/RUXO2fz+85uVznWqlAdIWo2mUxSVVg=
Subject key identifier: DA:88:73:E2:02:80:C2:2B:1B:BB:46:04:4C:00:C0:1B:3D:DB:4A:4A
Certificate issuer: /CN=723cf97094519a75a3238181076057033b11e884
Certificate serial: 0137BEBA
Authority key identifier: 72:3C:F9:70:94:51:9A:75:A3:23:81:81:07:60:57:03:3B:11:E8:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cjz5cJRRmnWjI4GBB2BXAzsR6IQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/279bbc-5840-4a20-bf7d-1c9a32523244/1/2ohz4gKAwisbu0YETADAGz3bSko.roa
Signing time: Sat 01 Jan 2022 10:57:21 +0000
ROA not before: Sat 01 Jan 2022 10:57:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 185.197.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20430522 (0x137beba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=723cf97094519a75a3238181076057033b11e884
Validity
Not Before: Jan 1 10:57:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da8873e20280c22b1bbb46044c00c01b3ddb4a4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:94:19:c3:df:f4:20:fd:7b:4d:27:31:c2:6d:
8a:4d:99:5f:0c:e9:58:28:b6:04:8b:f1:56:19:22:
2d:f0:0c:88:18:df:6a:0a:5e:03:5e:27:08:92:18:
ba:7e:c5:aa:19:39:90:33:6e:f8:9b:90:e0:00:64:
bb:22:0c:b2:4e:88:7e:8b:88:25:46:ca:40:49:13:
b0:6c:c8:8a:31:87:2f:13:7f:2a:9e:27:4f:a9:a7:
90:79:7c:4e:23:b3:99:35:d9:cd:84:94:c9:1e:88:
27:1c:95:28:cc:85:c6:4c:db:72:36:ef:17:1e:61:
dc:d9:98:e8:08:fa:69:f5:e4:4c:8f:58:9f:18:93:
c7:85:3b:8f:51:e4:45:f7:37:3b:79:63:da:82:da:
61:e8:a0:5c:76:ab:b8:9a:83:92:46:ca:f3:90:56:
f8:81:1f:df:96:c0:31:94:0a:a7:da:f0:4d:c0:79:
b2:66:d4:72:98:e9:62:5b:ae:c6:5b:f7:13:81:04:
bb:8e:22:82:ce:b8:4a:fa:53:f3:f1:a0:d8:11:96:
64:24:d7:62:14:9e:e1:4e:51:0a:1a:e6:61:96:64:
7d:c8:d9:b9:77:d4:9a:a9:bc:c8:9b:56:c0:5a:a6:
00:d4:59:e9:2a:35:69:c9:6e:91:91:23:53:e4:01:
dd:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:88:73:E2:02:80:C2:2B:1B:BB:46:04:4C:00:C0:1B:3D:DB:4A:4A
X509v3 Authority Key Identifier:
keyid:72:3C:F9:70:94:51:9A:75:A3:23:81:81:07:60:57:03:3B:11:E8:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cjz5cJRRmnWjI4GBB2BXAzsR6IQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/279bbc-5840-4a20-bf7d-1c9a32523244/1/2ohz4gKAwisbu0YETADAGz3bSko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/279bbc-5840-4a20-bf7d-1c9a32523244/1/cjz5cJRRmnWjI4GBB2BXAzsR6IQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.197.151.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:9c:f1:10:ef:a9:b6:52:68:5a:b5:e1:33:08:6d:8e:b5:b5:
dc:da:0d:7d:19:f9:34:96:32:95:9b:ca:b1:d8:4b:67:f5:24:
c9:0a:f1:88:b5:5a:f3:b0:5d:7d:ac:5b:0e:f3:b6:38:f8:fc:
8a:db:38:3e:68:24:58:73:d3:4c:9e:b4:17:13:20:98:c7:2f:
21:2b:65:ff:f0:ca:d7:90:bb:08:9f:1c:40:18:30:ef:42:5d:
25:4d:6d:11:a6:5c:80:51:03:aa:4d:96:c1:2f:b9:ce:99:33:
6c:69:22:7b:34:63:39:92:63:0f:26:a1:f6:ef:d8:96:08:8a:
9d:99:f6:64:2f:ee:a7:ba:08:cb:57:5b:4e:71:bd:7f:20:a7:
bd:1b:b2:7a:02:6e:40:65:08:35:9b:be:3f:5f:d4:40:24:f0:
18:bc:fa:aa:a1:76:5c:b0:88:9e:14:68:1b:c2:50:ff:b3:fc:
83:6c:e1:78:58:e4:dd:61:a5:19:7b:b6:e9:2d:69:cc:97:3e:
67:40:4c:ab:00:49:77:d3:31:62:a6:0c:03:0b:9e:ca:51:0d:
1e:8c:63:26:3e:bb:c6:e5:db:3e:b1:13:04:43:37:01:c5:f1:
7a:cc:0b:c5:6f:82:38:89:a2:cb:2f:37:6c:89:1f:9f:e1:7f:
19:36:13:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:54 2023 by rpki-client on console.sobornost.net