Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/92e76f-16c3-45d2-8647-a89abe45edf6/1/hEaVOik0SkzRD4ePUiEw3t4fh_o.roa
File: hEaVOik0SkzRD4ePUiEw3t4fh_o.roa (raw, json)
Hash identifier: h7Mimf2ZcD4iB9pJPVzQWgpbWTBYSJB+4v6hEhgxH9k=
Subject key identifier: 84:46:95:3A:29:34:4A:4C:D1:0F:87:8F:52:21:30:DE:DE:1F:87:FA
Certificate issuer: /CN=54e660b48c8f04c9a32dcdea1cfeee5180446bd9
Certificate serial: 018CC5DCB5D45BE99563D3496CF50F03F663
Authority key identifier: 54:E6:60:B4:8C:8F:04:C9:A3:2D:CD:EA:1C:FE:EE:51:80:44:6B:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VOZgtIyPBMmjLc3qHP7uUYBEa9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/92e76f-16c3-45d2-8647-a89abe45edf6/1/hEaVOik0SkzRD4ePUiEw3t4fh_o.roa
Signing time: Mon 01 Jan 2024 16:30:25 +0000
ROA not before: Mon 01 Jan 2024 16:30:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31285
IP address blocks: 193.19.114.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:b5:d4:5b:e9:95:63:d3:49:6c:f5:0f:03:f6:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54e660b48c8f04c9a32dcdea1cfeee5180446bd9
Validity
Not Before: Jan 1 16:30:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8446953a29344a4cd10f878f522130dede1f87fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:2e:13:bb:0c:94:02:2b:ae:a0:ce:d2:53:cd:
b2:63:f9:19:1b:6f:bb:dd:b9:32:eb:db:52:87:20:
99:d3:98:11:9d:1a:f6:e7:a6:58:d4:6c:96:92:18:
44:71:d2:73:c7:0e:cd:1e:46:29:3e:fc:70:72:f4:
c8:0e:07:d2:97:c6:50:77:49:ad:3d:14:32:06:bc:
ad:23:5d:d3:aa:00:e9:97:67:7d:99:4b:1a:49:c5:
6d:ca:8d:b4:52:82:07:d7:d8:87:d6:e0:b4:e6:4a:
4a:23:76:71:93:e4:c2:5d:e9:0d:18:53:de:7c:69:
cd:34:95:c5:15:61:93:12:a9:27:14:0e:c5:b5:14:
17:b5:d5:da:9d:5a:6b:2c:28:a4:2d:4d:f4:3b:7c:
2e:3b:4d:42:fe:fe:38:5b:80:2c:02:54:be:3f:31:
60:cb:97:fe:7b:71:cc:c7:8f:fa:28:00:ea:a3:22:
d6:20:19:19:1c:5e:b5:6b:8c:0a:f8:ee:87:70:db:
6f:c5:db:dc:65:ca:24:e9:91:34:36:e9:55:b4:3b:
5f:02:01:54:bb:d9:ec:03:98:b9:d4:7b:4b:01:1e:
9a:17:39:a3:d6:d4:ee:a4:5d:00:b5:0f:37:ff:15:
00:72:9f:0c:e4:cb:5d:18:53:bd:bb:4c:24:e1:5f:
21:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:46:95:3A:29:34:4A:4C:D1:0F:87:8F:52:21:30:DE:DE:1F:87:FA
X509v3 Authority Key Identifier:
keyid:54:E6:60:B4:8C:8F:04:C9:A3:2D:CD:EA:1C:FE:EE:51:80:44:6B:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VOZgtIyPBMmjLc3qHP7uUYBEa9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/92e76f-16c3-45d2-8647-a89abe45edf6/1/hEaVOik0SkzRD4ePUiEw3t4fh_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/92e76f-16c3-45d2-8647-a89abe45edf6/1/VOZgtIyPBMmjLc3qHP7uUYBEa9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.19.114.0/23
Signature Algorithm: sha256WithRSAEncryption
51:c3:fd:1d:e9:b7:b5:26:ae:e9:8a:ce:a8:08:7f:3e:98:09:
94:5e:61:0a:4c:a0:58:a9:4d:35:9f:09:a6:f1:ff:df:cf:e5:
e4:84:b9:f0:31:21:be:a3:5d:90:4a:8e:6f:1e:a4:16:e5:22:
e3:0d:78:2b:5c:81:89:e3:a7:65:2f:5f:00:f2:43:95:b4:31:
94:16:53:c7:4a:de:90:e1:4f:81:2d:71:b5:a2:c2:14:9d:71:
e3:67:0c:d3:0e:34:e5:61:34:81:20:6c:ba:4e:b2:4f:ab:2d:
19:f8:a6:1b:b9:47:f3:bd:f6:cc:66:79:fd:02:29:24:92:9b:
1e:38:0d:e1:33:9b:5b:4b:00:6b:e1:29:31:5f:c9:3c:93:8b:
7a:8a:f6:2c:94:68:9d:7b:c1:55:c4:87:a7:23:4a:fe:a6:86:
8a:f7:97:b3:54:79:2f:e2:b6:9f:b2:58:14:f0:26:a1:1f:26:
27:46:e1:85:51:43:37:81:9e:6c:d7:64:95:ff:7c:a6:3f:df:
82:05:09:09:1a:00:7d:75:00:a9:f4:0e:e1:5d:33:5b:92:c1:
96:6e:30:00:a1:3e:40:e6:1b:3d:7b:3d:98:b9:d9:82:a9:dc:
eb:d3:01:80:8a:ca:bc:cb:7a:21:57:e8:f9:1a:2f:5c:4c:8b:
bf:a2:6c:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:24 2024 by rpki-client on console.sobornost.net