Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/4eef24-29c1-4d16-b264-55fc997b9f7c/1/vMg1HZWWn4b4zAOlRg0ZVTrsAEY.roa
File: vMg1HZWWn4b4zAOlRg0ZVTrsAEY.roa (raw, json)
Hash identifier: AHnk4yri3/PLpg3uPHUGwrzG9vhdNXQyvAf37sa0jeI=
Subject key identifier: BC:C8:35:1D:95:96:9F:86:F8:CC:03:A5:46:0D:19:55:3A:EC:00:46
Certificate issuer: /CN=adafd284dfeccf745cb2e6d1391e260b13a34fe0
Certificate serial: 01857042915DA58A8D9279813F80F6504A6D
Authority key identifier: AD:AF:D2:84:DF:EC:CF:74:5C:B2:E6:D1:39:1E:26:0B:13:A3:4F:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ra_ShN_sz3RcsubROR4mCxOjT-A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/4eef24-29c1-4d16-b264-55fc997b9f7c/1/vMg1HZWWn4b4zAOlRg0ZVTrsAEY.roa
Signing time: Mon 02 Jan 2023 02:14:48 +0000
ROA not before: Mon 02 Jan 2023 02:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211119
IP address blocks: 212.18.104.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:91:5d:a5:8a:8d:92:79:81:3f:80:f6:50:4a:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adafd284dfeccf745cb2e6d1391e260b13a34fe0
Validity
Not Before: Jan 2 02:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bcc8351d95969f86f8cc03a5460d19553aec0046
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:28:ab:69:33:2a:ea:45:3b:ff:a3:ed:06:f0:
56:0c:b6:f0:b6:4a:37:39:03:c6:43:43:6c:4c:ce:
30:2f:b3:a9:93:ac:55:7b:8b:8e:c4:04:05:01:d0:
8a:79:16:f0:81:2f:3e:a1:ef:bb:59:4c:2c:af:be:
dd:8a:7c:c2:f7:69:0f:d1:ed:8c:64:d3:dd:17:2a:
9e:fd:fb:7c:74:49:82:97:14:3a:f1:dd:ec:d0:f9:
83:19:27:e1:b5:c8:ea:86:a4:b0:20:b4:84:47:02:
5f:7a:e8:56:27:93:f3:6b:d9:16:49:49:d0:e7:a4:
0f:fe:0d:c1:ea:a3:8c:90:b0:b5:f7:5b:fc:ce:4d:
a6:36:49:f2:65:ff:6d:95:6c:3e:f9:e6:bf:50:a9:
bd:7f:6c:c2:de:9b:cd:8d:8c:ba:3e:e6:34:c4:73:
3d:39:88:96:1a:d0:96:e6:5a:0f:37:2e:65:92:71:
e1:b2:88:68:3c:d6:94:2b:d0:43:ee:46:c7:50:f5:
25:a9:78:9f:3b:8e:a4:20:ba:14:10:63:87:3b:d5:
1b:fb:65:aa:d4:e1:bd:95:53:ef:8b:8a:2d:7d:b4:
bd:9d:c5:86:a5:80:3c:44:c8:72:b8:c5:4f:8f:17:
28:d0:ec:2a:13:b8:81:d0:c2:ee:38:19:ca:9d:1b:
43:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:C8:35:1D:95:96:9F:86:F8:CC:03:A5:46:0D:19:55:3A:EC:00:46
X509v3 Authority Key Identifier:
keyid:AD:AF:D2:84:DF:EC:CF:74:5C:B2:E6:D1:39:1E:26:0B:13:A3:4F:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ra_ShN_sz3RcsubROR4mCxOjT-A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/4eef24-29c1-4d16-b264-55fc997b9f7c/1/vMg1HZWWn4b4zAOlRg0ZVTrsAEY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/4eef24-29c1-4d16-b264-55fc997b9f7c/1/ra_ShN_sz3RcsubROR4mCxOjT-A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.18.104.0/24
Signature Algorithm: sha256WithRSAEncryption
63:c1:c7:83:bf:60:95:3a:47:a8:99:b5:57:65:c5:e4:72:8c:
d5:57:6a:e6:df:d0:61:2c:b9:a7:ef:2e:35:d1:fd:1e:2e:ef:
e8:36:8d:fa:76:e8:f0:e3:86:24:f9:67:58:20:30:65:8e:1b:
78:17:43:2b:75:dc:94:ee:bf:6c:70:1a:c2:9f:84:ef:7f:8a:
51:96:35:56:e4:6a:cd:75:c9:7c:2d:ff:36:c0:ec:b2:c6:35:
30:d0:c7:9e:b4:d1:f1:9f:1a:d5:0c:23:63:36:93:73:cc:fa:
6a:2f:3e:28:a9:ee:1d:58:28:a0:cc:ce:a1:96:67:65:51:06:
cf:0a:57:3c:e3:be:40:0a:f4:80:8f:ec:0b:79:f9:43:80:31:
cd:37:52:a1:b8:d8:4b:82:a8:f7:34:2c:70:88:ee:c6:dd:06:
da:d1:51:85:98:ce:02:21:1d:8c:ae:10:ed:90:3f:87:b9:96:
bf:0f:8c:6e:06:6f:36:d2:22:90:03:f7:45:c7:81:aa:a8:c0:
88:c4:e4:f3:e2:50:01:59:e1:9c:21:ee:08:55:01:d3:fb:45:
6c:3f:06:aa:71:5d:b4:70:4a:30:fd:f2:1e:8c:3c:68:38:41:
a0:d5:23:6a:a7:9d:27:19:35:74:e6:4a:89:d0:2b:c4:74:01:
0a:af:cf:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:16 2023 by rpki-client on console.sobornost.net