Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/7106a8-7252-4ad3-afd7-9379e5dfa3a7/1/2qpip5lwGMCotaQlp9aH7AbfFn0.roa
File: 2qpip5lwGMCotaQlp9aH7AbfFn0.roa (raw, json)
Hash identifier: XmIxRZg1axSdPyj6b3Q2SwnBTnc7ZzWP+Zv3tK5VP4s=
Subject key identifier: DA:AA:62:A7:99:70:18:C0:A8:B5:A4:25:A7:D6:87:EC:06:DF:16:7D
Certificate issuer: /CN=f661d8c4c9c4b9f68aa6c7f53c76e6309f077913
Certificate serial: 01877A9CB7DEF1DC1D440DD6AA81BF503E35
Authority key identifier: F6:61:D8:C4:C9:C4:B9:F6:8A:A6:C7:F5:3C:76:E6:30:9F:07:79:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9mHYxMnEufaKpsf1PHbmMJ8HeRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/7106a8-7252-4ad3-afd7-9379e5dfa3a7/1/2qpip5lwGMCotaQlp9aH7AbfFn0.roa
Signing time: Thu 13 Apr 2023 12:35:03 +0000
ROA not before: Thu 13 Apr 2023 12:35:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 212.18.107.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:7a:9c:b7:de:f1:dc:1d:44:0d:d6:aa:81:bf:50:3e:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f661d8c4c9c4b9f68aa6c7f53c76e6309f077913
Validity
Not Before: Apr 13 12:35:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=daaa62a7997018c0a8b5a425a7d687ec06df167d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a7:d7:cb:db:7a:ef:68:9e:64:6f:f6:60:76:
ca:b4:58:30:06:7b:4e:ba:da:04:0b:e2:bd:96:ec:
cd:9e:9b:2d:32:99:8c:de:34:2f:68:df:25:2d:f2:
25:ae:f6:89:b3:90:d6:b8:a6:2a:d9:1e:35:fd:18:
49:2e:48:1a:6f:89:ef:86:71:4b:8c:0a:07:2c:a9:
b4:f1:10:bb:cb:16:0e:e5:eb:b9:32:37:a6:9e:86:
df:42:cd:33:16:68:b0:aa:02:3c:82:aa:75:3f:44:
62:15:84:7c:dd:39:41:e5:dc:34:2e:95:76:56:99:
37:39:4c:a0:37:51:8c:d5:85:1d:88:21:a4:60:7a:
eb:97:8e:e0:7c:dc:f7:84:c2:3d:84:f0:6a:48:4c:
db:df:08:13:22:d6:3d:3b:4e:02:f9:04:8f:0d:cc:
26:71:1b:77:aa:09:96:2f:3c:ba:89:44:10:d8:51:
c0:5d:81:57:03:91:c0:0e:bd:0b:7d:9d:b0:a7:11:
14:9f:8a:db:02:de:f8:3a:93:6d:82:c8:e3:df:9e:
c7:d4:dc:e7:77:7a:25:41:9b:1a:6f:9e:ba:ac:a3:
dd:f8:81:72:7d:1c:9a:76:20:d3:61:19:09:6d:b4:
fa:fa:dd:68:81:17:1e:3e:07:6e:72:92:47:f4:86:
b5:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:AA:62:A7:99:70:18:C0:A8:B5:A4:25:A7:D6:87:EC:06:DF:16:7D
X509v3 Authority Key Identifier:
keyid:F6:61:D8:C4:C9:C4:B9:F6:8A:A6:C7:F5:3C:76:E6:30:9F:07:79:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9mHYxMnEufaKpsf1PHbmMJ8HeRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/7106a8-7252-4ad3-afd7-9379e5dfa3a7/1/2qpip5lwGMCotaQlp9aH7AbfFn0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/7106a8-7252-4ad3-afd7-9379e5dfa3a7/1/9mHYxMnEufaKpsf1PHbmMJ8HeRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.18.107.0/24
Signature Algorithm: sha256WithRSAEncryption
86:be:c9:09:8f:64:be:1e:ac:7e:a2:e3:c7:d4:b5:2b:a9:68:
95:6c:3e:c8:b7:a9:e9:3c:8c:a1:dc:d8:c7:9a:c0:6f:19:da:
f7:bc:3c:a8:27:c7:9c:2b:92:3d:cf:3d:fa:13:1c:57:75:6a:
fa:5b:a6:1a:04:2f:e0:9d:4c:21:e2:bc:34:ca:c1:42:2d:03:
0a:bb:e5:32:40:04:5e:9f:9c:0e:4c:03:8e:1b:a0:50:5b:b2:
3e:81:02:8a:4c:b9:04:1c:73:1c:20:4c:ec:1e:e6:fd:d5:7a:
84:b8:88:0b:0c:3d:1b:cd:cc:9e:66:23:b3:78:6d:f2:1b:24:
e6:0a:04:1d:f9:b9:b9:ed:35:7f:15:c8:87:a6:e9:9f:25:e8:
33:dd:b0:00:b3:e8:ce:3e:87:1d:70:2f:d1:8c:af:06:67:90:
8e:0d:c8:2c:6e:72:91:3a:e1:59:28:d3:23:71:e4:7c:e2:08:
4d:0c:8b:ee:1a:a2:1c:80:d2:3f:e2:6d:3b:be:85:ca:8e:b4:
3f:21:13:04:a3:00:33:91:bf:b1:54:f5:2b:a3:41:08:95:45:
fc:c3:85:e1:a6:b7:c8:a9:a6:64:23:ac:12:bb:96:bc:2d:fc:
80:6d:b7:05:48:5e:58:a2:90:23:b9:dd:76:c0:ae:20:ab:5d:
18:42:4a:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:56 2023 by rpki-client on console.sobornost.net