Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/3f5c21-7b3b-40f7-8851-cd32f0d4086b/1/eFHgJRvEmnkW8JE-9zycCi8zyUc.roa
File: eFHgJRvEmnkW8JE-9zycCi8zyUc.roa (raw, json)
Hash identifier: CfOxX6sFaM41/eYAdeBD1MxVZJM0z7warKwVnmVWZ3Q=
Subject key identifier: 78:51:E0:25:1B:C4:9A:79:16:F0:91:3E:F7:3C:9C:0A:2F:33:C9:47
Certificate issuer: /CN=02da06259534dc452089d291ad277eeac16cd42a
Certificate serial: 01856D663A9CABA7C2293E15FE4617B204DC
Authority key identifier: 02:DA:06:25:95:34:DC:45:20:89:D2:91:AD:27:7E:EA:C1:6C:D4:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AtoGJZU03EUgidKRrSd-6sFs1Co.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/3f5c21-7b3b-40f7-8851-cd32f0d4086b/1/eFHgJRvEmnkW8JE-9zycCi8zyUc.roa
Signing time: Sun 01 Jan 2023 12:54:54 +0000
ROA not before: Sun 01 Jan 2023 12:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212921
IP address blocks: 45.91.226.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:66:3a:9c:ab:a7:c2:29:3e:15:fe:46:17:b2:04:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02da06259534dc452089d291ad277eeac16cd42a
Validity
Not Before: Jan 1 12:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7851e0251bc49a7916f0913ef73c9c0a2f33c947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:11:70:83:b0:88:56:e8:70:36:3d:fe:8e:bd:
e5:b4:fe:0f:70:ff:9c:1e:4a:da:09:f4:a2:b7:a7:
56:35:3c:82:2b:56:cb:9c:d4:a0:dd:37:d5:c3:e4:
f8:0f:09:a0:e7:48:b8:7b:68:01:46:0a:df:1d:bb:
ff:53:57:69:bc:fb:3b:90:d1:c4:d3:d1:c7:9c:a4:
b4:b1:a3:93:9c:74:18:34:96:30:27:64:9d:a8:67:
7a:46:cf:78:a0:16:e7:08:9f:0f:77:e4:d8:a1:e3:
bc:eb:22:57:6a:ff:a2:9e:3d:c1:07:bb:94:a6:e6:
45:35:6c:be:bf:46:2b:38:83:6d:96:dc:de:2a:5d:
e2:4a:e3:e6:5a:42:9f:ea:69:48:1d:d3:44:86:05:
16:1a:85:03:57:66:3d:b9:a2:52:f2:d0:f5:1e:fe:
e2:b2:f4:a2:cf:8f:ed:cc:f4:75:18:40:a8:09:89:
09:1b:3b:41:25:c9:6e:25:7c:3a:dd:d6:ef:06:89:
59:2c:7c:9e:ea:86:90:0d:76:9d:34:e8:68:29:b8:
1a:5d:4a:0a:87:2d:3b:5e:f9:ac:7c:e9:a7:79:f8:
31:3f:c9:b3:9b:9f:a4:ff:9f:90:09:d6:50:8d:16:
2f:19:2c:36:03:80:93:a0:c5:50:ff:13:7e:71:c5:
9c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:51:E0:25:1B:C4:9A:79:16:F0:91:3E:F7:3C:9C:0A:2F:33:C9:47
X509v3 Authority Key Identifier:
keyid:02:DA:06:25:95:34:DC:45:20:89:D2:91:AD:27:7E:EA:C1:6C:D4:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AtoGJZU03EUgidKRrSd-6sFs1Co.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/3f5c21-7b3b-40f7-8851-cd32f0d4086b/1/eFHgJRvEmnkW8JE-9zycCi8zyUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/3f5c21-7b3b-40f7-8851-cd32f0d4086b/1/AtoGJZU03EUgidKRrSd-6sFs1Co.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.226.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:14:e0:22:ce:53:d6:16:e0:d6:2f:a7:e1:7f:bf:56:10:16:
c2:b2:8e:42:83:c0:23:8b:27:fd:8b:09:fd:36:e0:15:9d:69:
b7:67:c6:34:ce:8a:64:1f:15:f0:5a:02:77:e0:a5:2a:bc:ea:
31:81:1c:e9:b2:5b:36:b7:97:ae:0f:40:3a:84:98:67:6e:dd:
8b:4e:59:72:f1:8a:f3:4b:8a:aa:bc:3c:6f:ba:b7:2a:8d:a6:
28:5a:d8:3c:e6:3d:30:d4:7e:b2:35:b9:25:6d:d8:68:1f:ef:
6a:ea:b8:08:8b:f3:a8:b4:58:5c:2d:6f:94:22:cd:32:28:31:
a5:92:d4:7f:3c:84:2f:f0:c7:05:71:c8:86:4d:1c:99:61:b7:
42:2e:9f:6f:08:d4:ce:7a:99:fd:72:0a:eb:59:80:32:25:10:
7c:71:eb:55:ac:4c:45:39:0e:a4:0f:b8:c9:e0:c4:a7:18:ed:
7b:31:df:24:0c:f3:c7:a1:60:21:da:56:fc:8d:9f:b2:ee:10:
38:f4:49:23:62:12:0a:88:e6:b8:fb:75:9a:88:fc:76:78:34:
8e:49:c1:61:c7:fd:31:a8:5f:93:18:56:b0:6b:39:22:49:db:
2a:70:1e:e4:d4:76:50:a4:d1:93:b9:68:94:85:d6:a3:e6:f2:
9f:ed:9e:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:55 2023 by rpki-client on console.sobornost.net