Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/3f5c21-7b3b-40f7-8851-cd32f0d4086b/1/EHgpM_oRoiC7CXFZM_t1o8KQ0rk.roa
File: EHgpM_oRoiC7CXFZM_t1o8KQ0rk.roa (raw, json)
Hash identifier: lwPzLSQ/dijfOsklDNmNBivkBlroNCaiu2Pq2tyRaHI=
Subject key identifier: 10:78:29:33:FA:11:A2:20:BB:09:71:59:33:FB:75:A3:C2:90:D2:B9
Certificate issuer: /CN=02da06259534dc452089d291ad277eeac16cd42a
Certificate serial: 01856D663A616EDF72644050A2282107F1D9
Authority key identifier: 02:DA:06:25:95:34:DC:45:20:89:D2:91:AD:27:7E:EA:C1:6C:D4:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AtoGJZU03EUgidKRrSd-6sFs1Co.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/3f5c21-7b3b-40f7-8851-cd32f0d4086b/1/EHgpM_oRoiC7CXFZM_t1o8KQ0rk.roa
Signing time: Sun 01 Jan 2023 12:54:54 +0000
ROA not before: Sun 01 Jan 2023 12:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205960
IP address blocks: 45.91.225.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:66:3a:61:6e:df:72:64:40:50:a2:28:21:07:f1:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02da06259534dc452089d291ad277eeac16cd42a
Validity
Not Before: Jan 1 12:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=10782933fa11a220bb09715933fb75a3c290d2b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:75:f3:01:8c:61:3a:a4:0f:52:36:fa:20:32:
15:c9:76:4b:66:cf:c4:f9:d8:a8:74:a6:1a:e8:8d:
0c:b2:f5:b9:9c:77:48:26:1c:cf:d8:32:6f:fa:9c:
76:26:09:77:81:31:f8:fc:7e:8f:aa:4e:dc:90:13:
21:fb:c1:1f:45:8b:3f:43:01:d1:7c:ae:b8:b6:3b:
32:7d:36:79:d3:2e:ef:9f:0e:c7:c1:ef:a0:b7:9e:
1e:dd:f4:e5:c0:22:b3:cf:1c:e0:c0:0a:83:ce:35:
08:cc:31:ac:19:08:25:35:63:d7:01:47:66:f3:d2:
5b:35:69:a8:c3:1d:2c:2d:55:68:fd:72:e5:96:60:
37:f1:3e:57:2d:10:c7:6c:e9:88:90:cd:d5:1e:8b:
6c:6d:39:b9:84:a6:b1:a4:05:6b:04:6f:cd:08:8a:
21:a8:41:06:58:19:62:1e:ee:73:93:17:e9:89:41:
13:4c:a1:d8:f9:be:9c:a7:d3:db:a2:8b:8f:71:13:
01:c1:77:77:1a:3b:69:58:aa:0e:e7:a2:18:bb:6b:
66:c7:5f:63:56:71:da:f3:b2:bd:cc:22:3f:ba:51:
21:66:5c:56:2a:84:f8:4d:f4:dd:24:b2:7f:0b:12:
ad:05:a3:96:44:8d:94:0a:a7:59:9f:7f:0b:64:fc:
3d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:78:29:33:FA:11:A2:20:BB:09:71:59:33:FB:75:A3:C2:90:D2:B9
X509v3 Authority Key Identifier:
keyid:02:DA:06:25:95:34:DC:45:20:89:D2:91:AD:27:7E:EA:C1:6C:D4:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AtoGJZU03EUgidKRrSd-6sFs1Co.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/3f5c21-7b3b-40f7-8851-cd32f0d4086b/1/EHgpM_oRoiC7CXFZM_t1o8KQ0rk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/3f5c21-7b3b-40f7-8851-cd32f0d4086b/1/AtoGJZU03EUgidKRrSd-6sFs1Co.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.225.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:6b:b1:36:15:36:ab:2f:80:98:53:95:da:7f:f5:c9:51:1c:
5d:36:43:eb:03:e1:d8:1b:b3:cd:52:ae:30:40:d6:9b:c3:86:
97:c1:11:07:54:29:5f:de:90:76:2c:da:64:a2:0b:95:66:49:
f5:af:88:d3:96:5b:af:50:f3:69:06:c6:a5:e3:98:07:e5:04:
6c:e4:21:19:81:c3:f6:2a:dc:3d:eb:35:2f:4a:16:d1:de:36:
e0:05:9a:2f:0c:15:14:3f:64:e4:c6:46:ef:bd:bc:47:60:62:
92:74:e9:69:2a:8d:21:e8:4f:56:09:4d:41:5b:f8:b3:d0:cb:
b3:ca:1f:3f:7e:e1:ff:c0:58:96:44:a9:f9:ab:be:6d:a9:3f:
84:e6:4d:61:45:57:b5:32:b4:91:92:ce:98:99:b0:2d:45:26:
b6:7d:8b:4a:eb:3e:42:cc:eb:01:c5:09:3b:0b:2a:e3:d2:78:
2f:6e:01:e9:31:46:b6:8b:c2:a0:52:5c:c1:ad:76:62:30:b6:
08:a0:0a:bc:eb:2f:5e:d2:9a:89:f1:dc:bb:71:02:e3:47:97:
0c:04:c7:b9:1c:0f:17:02:ec:99:c3:b7:41:4d:e5:b0:d6:4a:
3b:06:fa:6b:ac:62:21:40:00:eb:ef:5d:c2:df:51:a2:34:b4:
09:c7:47:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:55 2023 by rpki-client on console.sobornost.net