Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/4eef24-29c1-4d16-b264-55fc997b9f7c/1/ht7aIeOXsxLOz1hTjeev9ccgF1k.roa
File: ht7aIeOXsxLOz1hTjeev9ccgF1k.roa (raw, json)
Hash identifier: 7VU6vA65yM6exhj+eYp++v7Tr9zr96gbl+d8jbGQwVE=
Subject key identifier: 86:DE:DA:21:E3:97:B3:12:CE:CF:58:53:8D:E7:AF:F5:C7:20:17:59
Certificate issuer: /CN=adafd284dfeccf745cb2e6d1391e260b13a34fe0
Certificate serial: 018611F588F228F372F0816103E108CBB8AE
Authority key identifier: AD:AF:D2:84:DF:EC:CF:74:5C:B2:E6:D1:39:1E:26:0B:13:A3:4F:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ra_ShN_sz3RcsubROR4mCxOjT-A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/4eef24-29c1-4d16-b264-55fc997b9f7c/1/ht7aIeOXsxLOz1hTjeev9ccgF1k.roa
Signing time: Thu 02 Feb 2023 11:49:09 +0000
ROA not before: Thu 02 Feb 2023 11:49:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203735
IP address blocks: 212.18.104.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:11:f5:88:f2:28:f3:72:f0:81:61:03:e1:08:cb:b8:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adafd284dfeccf745cb2e6d1391e260b13a34fe0
Validity
Not Before: Feb 2 11:49:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=86deda21e397b312cecf58538de7aff5c7201759
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:16:be:bc:93:fb:5a:1a:76:85:1b:3c:08:b4:
cd:f2:a8:51:f9:6c:2e:dd:39:8b:bb:71:17:9e:c4:
dc:e2:34:d9:dd:25:f8:c4:94:d3:ef:96:bf:d2:42:
a9:0d:a3:78:9e:37:7f:3a:4d:04:ad:39:ef:e5:14:
56:f7:4a:e5:42:d2:2b:36:42:d4:1c:de:54:e7:c6:
7d:da:f7:2e:3e:96:ea:e7:9a:b5:77:04:70:34:f0:
1f:0f:bf:4b:67:05:af:f0:32:50:63:db:0a:7f:46:
72:68:33:f7:ea:25:5c:3a:b3:ff:aa:22:c6:dd:e2:
f9:fd:3c:92:60:e2:15:a9:d1:22:98:cc:14:42:54:
32:61:b6:50:d9:a3:6e:3b:9b:11:25:51:34:6f:9a:
2e:1e:2d:fc:ca:f0:77:c5:16:ec:df:f1:44:7c:59:
eb:1d:52:b9:60:d9:e5:c4:b1:80:c4:e3:3b:4a:da:
84:67:7c:50:af:d5:81:7b:64:e5:64:51:c8:79:29:
af:38:3c:64:7d:80:69:0c:5a:39:8e:78:37:a1:3b:
1a:77:47:2e:50:89:64:e9:f3:29:53:ed:0b:3d:73:
01:ee:b9:b7:b9:7f:4f:c0:c8:b3:03:5d:43:88:db:
8a:8c:42:12:14:6f:a6:bd:17:59:46:14:28:3b:98:
d9:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:DE:DA:21:E3:97:B3:12:CE:CF:58:53:8D:E7:AF:F5:C7:20:17:59
X509v3 Authority Key Identifier:
keyid:AD:AF:D2:84:DF:EC:CF:74:5C:B2:E6:D1:39:1E:26:0B:13:A3:4F:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ra_ShN_sz3RcsubROR4mCxOjT-A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/4eef24-29c1-4d16-b264-55fc997b9f7c/1/ht7aIeOXsxLOz1hTjeev9ccgF1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/4eef24-29c1-4d16-b264-55fc997b9f7c/1/ra_ShN_sz3RcsubROR4mCxOjT-A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.18.104.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:69:af:4a:34:58:22:b0:01:f1:11:2f:0b:99:95:63:6f:2e:
ae:71:7a:b3:80:91:67:06:84:ec:19:c8:0b:a1:6a:2a:22:a0:
a4:c0:7c:4a:47:2a:a7:1f:25:95:a3:7a:c6:ff:ed:74:19:bb:
8a:9c:99:cb:cd:78:bf:5c:b7:36:fa:92:11:3d:e8:13:55:1c:
6c:ff:bc:b9:28:5d:26:bf:eb:14:ca:97:09:4d:43:c1:98:66:
94:5b:b6:16:95:9f:20:8b:41:b8:7c:cc:46:f5:b5:ab:3e:a9:
a5:1e:3a:70:ce:88:a6:0a:f5:39:b7:60:67:bc:85:75:31:e6:
58:9b:cb:47:69:4e:98:ae:b6:81:fc:67:f3:61:e7:64:bd:af:
7c:cf:c8:0b:04:a2:c4:45:2a:c9:00:3f:79:23:0e:30:c0:b3:
2d:75:8f:c1:a2:5f:9b:fc:b2:06:50:6d:1e:dc:41:95:5e:22:
4b:4c:42:f5:4e:67:96:a9:67:19:05:be:f6:08:e0:33:1f:cf:
48:8a:6e:07:40:cd:7b:f8:3e:06:7c:77:60:80:1b:14:ae:b8:
ad:da:92:ab:61:7b:9d:63:ae:f5:bb:06:78:9b:e6:fa:55:7f:
e3:b7:03:65:df:20:50:e6:6a:de:78:3b:34:bb:65:53:ea:7e:
7e:16:48:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:16 2023 by rpki-client on console.sobornost.net