Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/bc401a-6938-4fdc-9c6e-fac3d5543a2c/1/N6U54Yowha9RrEhO6MXWcJX_SBk.roa
File: N6U54Yowha9RrEhO6MXWcJX_SBk.roa (raw, json)
Hash identifier: PtkjnioyzXG9YpjvYFzjRSFyDMHeZvkN63Ouk4/1iyk=
Subject key identifier: 37:A5:39:E1:8A:30:85:AF:51:AC:48:4E:E8:C5:D6:70:95:FF:48:19
Certificate issuer: /CN=0babd682c1a8fc5037adbf68143ae77fd00f38ab
Certificate serial: 018D8030741B8DC2B032C94CE9DB62CC32F1
Authority key identifier: 0B:AB:D6:82:C1:A8:FC:50:37:AD:BF:68:14:3A:E7:7F:D0:0F:38:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C6vWgsGo_FA3rb9oFDrnf9APOKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/bc401a-6938-4fdc-9c6e-fac3d5543a2c/1/N6U54Yowha9RrEhO6MXWcJX_SBk.roa
Signing time: Tue 06 Feb 2024 20:51:15 +0000
ROA not before: Tue 06 Feb 2024 20:51:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201811
IP address blocks: 185.159.89.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:80:30:74:1b:8d:c2:b0:32:c9:4c:e9:db:62:cc:32:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0babd682c1a8fc5037adbf68143ae77fd00f38ab
Validity
Not Before: Feb 6 20:51:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=37a539e18a3085af51ac484ee8c5d67095ff4819
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:1b:6d:ce:2e:20:37:ca:68:be:9d:6a:a5:5d:
e7:1c:cd:f7:6d:31:ca:4b:3e:e7:e4:b9:11:00:41:
44:bd:44:f9:60:6e:85:3c:d8:9d:90:9c:1c:70:09:
cd:b1:d8:f0:e7:85:ca:61:47:a8:63:e3:0f:43:62:
ed:63:92:26:4f:19:cb:ae:95:75:96:67:1c:b4:fa:
6b:ba:e0:91:fd:8d:89:02:3a:8d:48:65:27:75:bb:
db:ec:8a:0c:5e:ab:24:c1:21:52:4a:60:95:d8:ca:
f7:26:99:e3:de:5b:7c:1f:7a:62:da:1c:c3:e2:36:
28:e1:20:d2:39:d4:3d:e4:71:f9:a5:47:00:db:ba:
52:22:ef:79:47:89:77:8e:ff:ab:f1:20:37:48:56:
b3:d8:e9:7b:db:00:1a:06:dc:2b:1c:e4:82:1f:09:
75:82:6b:7d:40:30:e8:81:17:22:02:14:db:f8:e4:
0b:0b:d2:80:1f:46:93:ee:d3:1a:98:7b:dc:8e:71:
e4:d3:bb:42:5f:85:68:2c:75:bf:a1:7d:8c:bf:96:
69:2a:07:50:c5:2b:5b:ce:aa:cf:6b:1b:8e:08:11:
32:92:e4:81:52:65:d7:11:b1:17:55:0d:26:bc:ae:
b7:70:5d:46:df:54:b3:38:5e:cf:f9:99:69:80:93:
99:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:A5:39:E1:8A:30:85:AF:51:AC:48:4E:E8:C5:D6:70:95:FF:48:19
X509v3 Authority Key Identifier:
keyid:0B:AB:D6:82:C1:A8:FC:50:37:AD:BF:68:14:3A:E7:7F:D0:0F:38:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C6vWgsGo_FA3rb9oFDrnf9APOKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/bc401a-6938-4fdc-9c6e-fac3d5543a2c/1/N6U54Yowha9RrEhO6MXWcJX_SBk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/bc401a-6938-4fdc-9c6e-fac3d5543a2c/1/C6vWgsGo_FA3rb9oFDrnf9APOKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.159.89.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:48:11:e4:fa:c2:2a:d6:40:2e:4c:8b:08:08:61:45:03:4a:
93:ab:cb:f8:35:05:17:81:f9:35:93:b1:f1:20:80:34:e4:2f:
16:35:47:5e:68:54:2a:6b:80:83:d4:0d:41:00:c8:07:af:38:
1f:5e:89:89:44:57:cf:11:78:af:43:6f:60:79:5f:1c:dd:c7:
97:d6:18:c4:9c:cd:5b:01:bf:c7:4a:1c:7f:9e:7c:83:3b:ec:
b1:9e:c6:d7:36:01:21:78:b5:ee:23:ab:f8:00:e0:1c:7e:67:
75:c3:e8:82:c7:17:ce:f0:e9:f9:c5:b3:3e:e0:bb:63:f5:a9:
58:21:8b:98:8c:25:ba:42:e5:88:f4:4b:64:81:18:01:87:33:
11:7f:96:38:90:a0:e0:0d:30:5c:49:ee:de:4a:ed:35:c6:c6:
07:f9:f0:61:da:bd:c8:ca:53:db:41:55:8c:3f:65:b6:ec:3d:
7f:94:b8:de:b9:3d:8f:d4:f9:93:d9:2f:d6:cb:02:78:e0:8c:
d5:10:99:17:68:b0:e8:2e:38:47:13:d3:31:a9:ab:0c:e1:97:
a0:6b:29:f5:41:36:28:f7:f5:a9:d4:3a:05:ba:c4:db:1f:01:
1c:dd:90:5e:25:e1:f1:c1:ec:48:0b:39:96:f2:e0:11:5b:b5:
ec:46:a3:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 14 11:15:46 2024 by rpki-client on console.sobornost.net