Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/372143-5dba-4dc3-a04b-9fa1e69103b0/1/kqIIGWJZRTtLO5LSdJ5A7j43mhk.roa
File: kqIIGWJZRTtLO5LSdJ5A7j43mhk.roa (raw, json)
Hash identifier: SNqXYUodwHz+zLrwkgwoP+GLYdAEm8Fm5TrMxv6iqeo=
Subject key identifier: 92:A2:08:19:62:59:45:3B:4B:3B:92:D2:74:9E:40:EE:3E:37:9A:19
Certificate issuer: /CN=2f2ac25de2d9ba70c463fa95ef3aa5a412c87498
Certificate serial: 01856DC1DA3F916F5AC1D24305745E86F26A
Authority key identifier: 2F:2A:C2:5D:E2:D9:BA:70:C4:63:FA:95:EF:3A:A5:A4:12:C8:74:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LyrCXeLZunDEY_qV7zqlpBLIdJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/372143-5dba-4dc3-a04b-9fa1e69103b0/1/kqIIGWJZRTtLO5LSdJ5A7j43mhk.roa
Signing time: Sun 01 Jan 2023 14:34:58 +0000
ROA not before: Sun 01 Jan 2023 14:34:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14576
IP address blocks: 94.154.127.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:da:3f:91:6f:5a:c1:d2:43:05:74:5e:86:f2:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f2ac25de2d9ba70c463fa95ef3aa5a412c87498
Validity
Not Before: Jan 1 14:34:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=92a208196259453b4b3b92d2749e40ee3e379a19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:af:64:62:ff:18:e2:f6:38:14:d5:7f:60:29:
06:e5:bd:6a:e0:b6:8d:22:31:ac:0c:f8:2b:aa:4e:
9d:53:2f:cb:6a:db:fa:d6:f4:cf:75:9f:85:86:ba:
8f:85:cf:08:34:79:92:6e:f7:72:7d:54:19:30:8e:
3a:5a:a2:1a:1e:94:07:8d:71:30:1d:7e:ad:09:89:
33:ae:ce:ae:ef:0a:96:ae:16:af:39:8b:2c:b4:38:
db:d7:78:7d:eb:b7:2f:55:8d:a2:55:43:32:c7:6e:
25:33:13:8a:26:6e:b5:51:5a:5b:49:1c:c3:a3:49:
33:e5:69:51:c1:1b:64:13:b3:f0:52:b9:34:e1:e0:
e3:fe:ea:ff:7b:7a:48:8d:61:d4:e1:0f:d3:68:d9:
be:7d:f1:b0:f1:27:b9:24:24:0e:df:5e:db:39:f6:
27:fe:96:85:92:68:87:1e:2e:5a:3d:25:58:e7:5e:
f7:7d:5c:2b:cb:22:17:2d:3c:a2:2b:b0:c8:e4:8d:
20:54:05:7e:64:7e:c4:a1:0b:00:6d:b1:0b:3d:ac:
11:68:07:51:3b:c2:a1:e0:39:2e:31:11:49:43:62:
2a:59:c8:02:22:96:0b:ff:01:95:b2:bb:7d:75:81:
b7:78:2f:23:33:97:39:35:65:c8:f8:37:68:cd:85:
e7:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:A2:08:19:62:59:45:3B:4B:3B:92:D2:74:9E:40:EE:3E:37:9A:19
X509v3 Authority Key Identifier:
keyid:2F:2A:C2:5D:E2:D9:BA:70:C4:63:FA:95:EF:3A:A5:A4:12:C8:74:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LyrCXeLZunDEY_qV7zqlpBLIdJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/372143-5dba-4dc3-a04b-9fa1e69103b0/1/kqIIGWJZRTtLO5LSdJ5A7j43mhk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/372143-5dba-4dc3-a04b-9fa1e69103b0/1/LyrCXeLZunDEY_qV7zqlpBLIdJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.127.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:44:c6:47:c2:69:ac:17:49:ec:0e:1c:42:b2:9f:51:ae:3b:
50:80:a3:7d:c5:99:57:d7:6f:3c:6b:ad:80:b7:c8:9d:e8:5b:
0d:68:a8:7b:c6:e2:c5:b3:d5:ee:4e:c1:94:ba:74:0e:a2:06:
72:81:35:fa:90:71:2f:a7:36:af:42:c3:92:65:a6:d3:06:8a:
01:2f:dc:92:4c:b1:1e:b3:e5:2d:ae:41:7c:69:ec:ea:13:4e:
b1:fc:cc:26:19:e9:ff:d1:33:d6:79:91:7b:42:f4:12:57:8f:
2c:b4:d0:14:eb:64:e2:49:ea:5b:a6:10:55:c6:ef:99:ed:dc:
bb:42:a7:fd:80:5c:e8:86:9f:3a:bc:07:0c:16:96:89:7b:68:
5d:69:ed:d7:0d:63:42:cd:63:df:b2:83:61:39:d5:a9:f6:a4:
7f:a1:8e:ee:ce:f9:df:a3:95:2a:ad:b4:77:6f:16:60:82:48:
2d:b5:9a:22:51:aa:3b:38:9f:7b:4f:1f:12:88:90:07:18:6b:
e0:00:5c:3b:77:56:21:e0:75:83:de:69:8f:8c:45:06:6b:82:
c0:47:94:73:e9:c2:2a:7a:e3:2e:6c:44:73:3c:82:0e:13:13:
6c:8b:8c:9b:d8:fa:53:f6:58:bc:73:c4:f4:4a:61:05:d5:69:
f1:20:6a:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:16 2023 by rpki-client on console.sobornost.net