Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/DPDlYd4CfTnfX-BvHjyFW5tJgjo.roa
File: DPDlYd4CfTnfX-BvHjyFW5tJgjo.roa (raw, json)
Hash identifier: vxdU/JxmH9bW8I/0kosAPjgPtc6va5DJwH8s1PkFPN4=
Subject key identifier: 0C:F0:E5:61:DE:02:7D:39:DF:5F:E0:6F:1E:3C:85:5B:9B:49:82:3A
Certificate issuer: /CN=eeaabca116b4e73a9944ab9702cf986657803580
Certificate serial: 0193E3B266EC51F0B39758BC0575C9CBB9E3
Authority key identifier: EE:AA:BC:A1:16:B4:E7:3A:99:44:AB:97:02:CF:98:66:57:80:35:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7qq8oRa05zqZRKuXAs-YZleANYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/DPDlYd4CfTnfX-BvHjyFW5tJgjo.roa
Signing time: Fri 20 Dec 2024 10:52:19 +0000
ROA not before: Fri 20 Dec 2024 10:52:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6730
IP address blocks: 185.96.236.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:e3:b2:66:ec:51:f0:b3:97:58:bc:05:75:c9:cb:b9:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eeaabca116b4e73a9944ab9702cf986657803580
Validity
Not Before: Dec 20 10:52:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0cf0e561de027d39df5fe06f1e3c855b9b49823a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c0:96:af:ba:fe:6d:74:53:1a:77:13:27:ac:
fe:65:78:4d:a5:b5:6e:93:96:20:e6:e8:38:c9:7f:
f8:9d:18:0e:75:d7:56:71:76:2f:3e:23:38:63:72:
78:c1:35:f4:93:de:c7:0b:dc:dd:45:3d:2c:a6:3e:
61:f8:5a:c0:15:72:57:3f:6a:92:5d:52:f5:a0:8b:
a2:18:dc:90:6d:ca:e2:fb:b4:e9:ac:6c:c9:7d:21:
35:73:32:d8:4a:59:11:7a:cb:5b:b2:42:23:0d:39:
ec:65:bd:60:a3:eb:a3:67:3b:24:f3:f8:64:27:38:
a3:73:7f:46:7d:a4:75:ca:8b:b0:f7:8d:41:c5:ca:
fd:01:34:b9:a8:3a:18:cd:10:57:b1:21:b3:7d:7a:
74:64:ae:de:cb:1c:55:e2:a3:88:6c:87:cb:20:44:
af:18:c8:c7:53:52:40:37:2c:8f:e0:2e:bc:f3:5c:
fb:c4:d0:4b:34:9d:87:70:ec:c9:86:ae:0e:0c:67:
51:cd:06:20:06:70:eb:08:d2:70:2d:38:e3:9b:ad:
85:22:86:bb:e2:61:6f:57:8f:68:cb:9c:9a:98:d1:
8c:d0:d4:7b:39:e4:7c:e8:77:aa:3b:f4:86:43:ea:
1a:ea:78:ae:fb:7b:7a:3b:0a:70:28:9a:b1:14:68:
2f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:F0:E5:61:DE:02:7D:39:DF:5F:E0:6F:1E:3C:85:5B:9B:49:82:3A
X509v3 Authority Key Identifier:
keyid:EE:AA:BC:A1:16:B4:E7:3A:99:44:AB:97:02:CF:98:66:57:80:35:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7qq8oRa05zqZRKuXAs-YZleANYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/DPDlYd4CfTnfX-BvHjyFW5tJgjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.96.236.0/22
Signature Algorithm: sha256WithRSAEncryption
53:fb:b6:57:8c:fb:39:dd:b2:44:27:6a:8a:84:67:f4:7d:f1:
b3:77:fa:2c:a8:ef:26:83:7f:dd:34:59:f9:dd:f1:05:67:ff:
7f:ee:92:12:f4:da:fd:c2:93:cd:07:2f:f3:0a:8d:59:18:c4:
d1:7c:ae:01:b9:ed:62:ef:22:2c:45:6e:7b:64:cc:57:a7:75:
b7:be:fd:a8:18:2c:a5:9c:b9:54:80:d1:c8:39:7a:16:38:be:
29:4f:63:aa:1c:33:96:c7:73:39:d7:b9:fb:a3:0e:3c:7c:a6:
40:3f:35:32:9b:2e:ee:bb:6c:e3:02:f2:ae:9b:8b:b6:7b:db:
88:5e:d5:ab:e9:c5:79:44:4f:12:ba:6e:47:9a:a7:db:55:2a:
b5:38:0d:06:80:c0:47:15:0e:42:15:36:bd:f4:f0:e3:b0:ef:
50:6b:b7:b6:16:25:11:59:5e:da:81:85:f9:9f:23:96:87:16:
c1:e5:62:51:cc:65:90:79:9d:4f:e1:b5:71:ff:81:45:24:87:
7a:e0:83:03:2b:9f:83:de:e8:93:dd:8c:55:bc:92:a1:66:4f:
33:11:cb:f3:cb:93:9c:2d:66:ab:48:65:fb:a6:6a:12:e4:47:
f6:27:a6:a9:d2:7f:92:02:0d:20:39:5f:6b:87:7d:21:19:ac:
ce:19:e6:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:23 2024 by rpki-client on console.sobornost.net