Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/9d6d79-eeb1-492a-b602-58eefcd652d8/1/A6IUTEvi7wxXW8-eKyj0PH86bAE.roa
File: A6IUTEvi7wxXW8-eKyj0PH86bAE.roa (raw, json)
Hash identifier: hDh8P7QOHea1wVNd56vBwxPBzPwGvxhlmiQgUr1vIt8=
Subject key identifier: 03:A2:14:4C:4B:E2:EF:0C:57:5B:CF:9E:2B:28:F4:3C:7F:3A:6C:01
Certificate issuer: /CN=1644e1ca9312ba79be559e11c8ea0910060dd48d
Certificate serial: 018CC72749C30C8677C299089A5D64DE18C5
Authority key identifier: 16:44:E1:CA:93:12:BA:79:BE:55:9E:11:C8:EA:09:10:06:0D:D4:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FkThypMSunm-VZ4RyOoJEAYN1I0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/9d6d79-eeb1-492a-b602-58eefcd652d8/1/A6IUTEvi7wxXW8-eKyj0PH86bAE.roa
Signing time: Mon 01 Jan 2024 22:31:29 +0000
ROA not before: Mon 01 Jan 2024 22:31:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203130
IP address blocks: 193.247.203.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:49:c3:0c:86:77:c2:99:08:9a:5d:64:de:18:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1644e1ca9312ba79be559e11c8ea0910060dd48d
Validity
Not Before: Jan 1 22:31:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=03a2144c4be2ef0c575bcf9e2b28f43c7f3a6c01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:28:0d:a3:1b:f3:93:30:6d:21:34:43:22:97:
72:68:6b:54:39:79:17:b7:9a:01:27:b6:ad:7f:6e:
90:ce:2c:ac:2b:5c:29:78:eb:3a:21:1e:4b:95:e4:
b8:9c:63:30:68:b1:7c:44:b8:2c:d4:22:c1:9e:a6:
13:f5:70:4d:68:29:f3:75:9b:1b:88:ff:e5:83:3a:
a5:f9:4b:a7:e7:8b:e8:08:5e:75:38:2e:c7:52:c5:
03:98:60:f0:6d:a6:4e:0e:af:db:59:62:38:8c:d7:
cb:00:32:ee:06:7a:6b:ac:99:66:29:4b:b3:d6:24:
29:f5:f2:af:f4:cc:cd:78:7f:f6:1c:9d:49:1e:35:
21:9a:95:b6:6f:62:ca:90:c8:c5:6c:b4:0c:ee:17:
93:b0:66:5d:c0:f8:58:1b:02:9c:de:34:09:09:1a:
3b:49:10:0b:87:3c:4b:5e:f1:7a:2e:3a:e2:74:0a:
a4:f2:39:60:74:9a:cc:7c:d8:f5:2c:77:14:6e:70:
f2:00:1e:ac:eb:db:48:2c:e2:24:a9:e7:fd:b4:06:
00:c3:c5:73:e2:96:fc:24:81:98:e8:b8:bc:68:e3:
b4:13:b1:85:2b:bd:6a:50:75:10:8b:99:32:8d:b8:
49:00:a8:e4:4c:ed:fc:12:13:56:c8:63:14:8a:f2:
f0:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:A2:14:4C:4B:E2:EF:0C:57:5B:CF:9E:2B:28:F4:3C:7F:3A:6C:01
X509v3 Authority Key Identifier:
keyid:16:44:E1:CA:93:12:BA:79:BE:55:9E:11:C8:EA:09:10:06:0D:D4:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FkThypMSunm-VZ4RyOoJEAYN1I0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9d6d79-eeb1-492a-b602-58eefcd652d8/1/A6IUTEvi7wxXW8-eKyj0PH86bAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9d6d79-eeb1-492a-b602-58eefcd652d8/1/FkThypMSunm-VZ4RyOoJEAYN1I0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.247.203.0/24
Signature Algorithm: sha256WithRSAEncryption
83:62:e0:37:af:63:18:62:98:1b:9b:70:7b:b8:ca:73:2b:82:
a8:33:f5:f8:22:5a:f0:ee:07:80:5d:6d:15:51:e5:97:68:d5:
ea:bb:70:6d:d6:4e:71:22:23:d9:73:e6:fd:60:67:35:68:e4:
64:c2:b0:c6:6d:ca:58:39:f2:ed:49:3e:a7:f2:9a:be:49:f1:
ab:6a:72:d0:08:42:ad:c6:f1:44:3e:3c:bd:4a:ba:da:b4:85:
c5:05:d0:99:ee:76:97:cd:d8:0d:00:1a:ac:f1:c5:1f:fd:4a:
d0:74:b2:97:4a:19:7b:07:b9:6c:63:35:63:f7:14:43:e6:e7:
ba:dd:1b:4d:02:09:a7:59:32:58:e9:a8:e8:93:ac:bf:e9:18:
74:e4:7a:a7:20:c7:5b:21:9a:89:2c:14:fa:a4:ef:6d:d7:7a:
3e:9c:d6:60:c0:61:fb:b7:8b:28:71:36:66:78:9d:c7:de:d1:
04:aa:d6:ff:47:8d:78:3f:a7:ef:35:32:95:1e:f2:f7:0f:fa:
06:0b:fd:9a:b8:bc:d3:86:ce:d5:42:5e:09:8e:c1:ab:d4:81:
ac:8d:30:41:9d:06:3c:e3:13:c2:dd:e7:b1:1e:88:23:1c:dd:
b2:f5:91:74:da:23:a1:d1:26:98:08:45:93:17:b9:36:75:bb:
a1:47:52:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:24 2024 by rpki-client on console.sobornost.net