Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/04946b-22fe-4a33-b6ac-d05f0ff4c243/1/lMwOzxNj7BUAWzs3-SUsakvm1t4.roa
File: lMwOzxNj7BUAWzs3-SUsakvm1t4.roa (raw, json)
Hash identifier: rChlVmjrJgMobRWa9eiRaoRXBrmyPkVdnkmXPX12KZ4=
Subject key identifier: 94:CC:0E:CF:13:63:EC:15:00:5B:3B:37:F9:25:2C:6A:4B:E6:D6:DE
Certificate issuer: /CN=5814cb3885fd336d414e70dce3ed190d79243263
Certificate serial: 019179014787E4598D67A6F28907EED6684E
Authority key identifier: 58:14:CB:38:85:FD:33:6D:41:4E:70:DC:E3:ED:19:0D:79:24:32:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WBTLOIX9M21BTnDc4-0ZDXkkMmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/04946b-22fe-4a33-b6ac-d05f0ff4c243/1/lMwOzxNj7BUAWzs3-SUsakvm1t4.roa
Signing time: Thu 22 Aug 2024 07:33:32 +0000
ROA not before: Thu 22 Aug 2024 07:33:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35263
IP address blocks: 86.109.64.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:79:01:47:87:e4:59:8d:67:a6:f2:89:07:ee:d6:68:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5814cb3885fd336d414e70dce3ed190d79243263
Validity
Not Before: Aug 22 07:33:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=94cc0ecf1363ec15005b3b37f9252c6a4be6d6de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:8b:a4:25:97:20:dc:11:be:d1:83:28:fb:1e:
6b:bb:2c:3f:8a:ea:b3:6e:fd:33:fd:94:ae:81:b7:
3b:d1:30:2a:74:96:62:80:6b:78:c2:7e:89:c8:3a:
3a:97:0c:37:de:30:56:7d:31:e8:cf:82:1a:3d:5b:
e7:d6:9d:bf:9f:45:3c:f0:87:d6:a5:a2:ef:33:41:
80:0c:6e:d4:49:11:0c:c3:8f:a1:7d:0d:22:ba:e3:
ba:ff:28:2e:e9:a1:e5:75:44:bf:b1:d0:63:55:f3:
8c:aa:9c:9b:9e:05:46:4e:41:60:9d:73:bb:ae:3c:
9a:ba:df:89:75:a1:21:ab:d9:12:be:39:45:0f:5b:
1d:9d:a2:dc:75:ea:4a:7d:3e:f7:5d:13:13:3c:c3:
54:76:74:d6:18:6e:ce:f8:11:96:12:0e:e4:a6:21:
70:6e:aa:df:f8:5a:40:4e:2d:6b:c9:3f:51:7c:09:
64:fe:bb:70:bf:ed:09:9e:76:b7:b5:ff:fc:7f:3c:
c8:ca:44:64:79:03:01:10:53:61:7b:f7:51:b8:9e:
5e:6a:6d:7f:69:0a:6c:dd:75:3f:c9:3d:87:64:9e:
58:e7:2d:73:a9:83:1e:62:9f:44:8e:61:a5:b0:65:
9e:3b:9e:52:58:01:fe:43:28:3e:8f:a6:07:81:15:
6e:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:CC:0E:CF:13:63:EC:15:00:5B:3B:37:F9:25:2C:6A:4B:E6:D6:DE
X509v3 Authority Key Identifier:
keyid:58:14:CB:38:85:FD:33:6D:41:4E:70:DC:E3:ED:19:0D:79:24:32:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WBTLOIX9M21BTnDc4-0ZDXkkMmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/04946b-22fe-4a33-b6ac-d05f0ff4c243/1/lMwOzxNj7BUAWzs3-SUsakvm1t4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/04946b-22fe-4a33-b6ac-d05f0ff4c243/1/WBTLOIX9M21BTnDc4-0ZDXkkMmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.109.64.0/19
Signature Algorithm: sha256WithRSAEncryption
0c:73:f6:65:c4:16:95:06:e6:88:a3:d9:3c:b6:b5:f6:90:e3:
32:62:f6:c3:cb:63:97:0d:6f:ef:be:6d:0a:d2:d6:a3:4b:e5:
09:98:6a:6e:b6:07:ac:51:d0:ff:f3:f6:61:50:fd:b9:ad:f4:
83:8c:ac:4d:f0:5c:06:a7:4a:bf:70:8f:4a:43:a1:97:b0:0a:
a3:28:5e:06:32:3e:c0:0c:7b:1b:80:27:c9:2c:c9:8f:ac:73:
a2:07:99:6f:8d:b5:2d:90:47:f8:bc:93:43:b1:53:d0:2a:73:
e2:4a:a5:26:b5:65:f5:66:ac:e1:bc:1c:a5:87:17:72:89:36:
48:5b:d5:01:3e:33:db:78:b0:21:96:b3:f2:5e:15:35:cf:aa:
ff:8c:36:c7:d6:50:78:e1:57:ff:19:a8:06:2a:46:b2:87:5a:
27:7f:f8:c3:95:ef:62:ab:a5:10:91:17:47:ff:c4:53:c9:c5:
f3:81:48:63:22:7b:40:c9:9e:8e:55:8c:f8:6a:8b:1e:5d:8d:
a7:4a:0e:4c:be:6c:7e:2a:84:58:e2:d2:e7:3a:ef:58:92:46:
d5:ee:8e:7d:5c:21:a5:49:f1:8f:36:09:79:01:1f:41:e0:ed:
b7:a1:9b:6c:b8:6d:ed:be:84:60:c1:27:9e:d7:0c:fa:79:47:
d7:87:ab:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 11 06:09:06 2024 by rpki-client on console.sobornost.net