Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/a4d3f6-1e46-47d3-a5d0-ff89917d40d0/1/L8JV679d20stFIAz6DseyMURZlw.roa
File: L8JV679d20stFIAz6DseyMURZlw.roa (raw, json)
Hash identifier: NUMfMr85jK1wWhz2MB/q7+VA3AiAC0CCqbg14mb9YHg=
Subject key identifier: 2F:C2:55:EB:BF:5D:DB:4B:2D:14:80:33:E8:3B:1E:C8:C5:11:66:5C
Certificate issuer: /CN=147ced88a406124c8c4df166c5740509e6415d2a
Certificate serial: 01856EAFB65B259ABB40CC7B89179A4113BC
Authority key identifier: 14:7C:ED:88:A4:06:12:4C:8C:4D:F1:66:C5:74:05:09:E6:41:5D:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FHztiKQGEkyMTfFmxXQFCeZBXSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/a4d3f6-1e46-47d3-a5d0-ff89917d40d0/1/L8JV679d20stFIAz6DseyMURZlw.roa
Signing time: Sun 01 Jan 2023 18:54:47 +0000
ROA not before: Sun 01 Jan 2023 18:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 37.140.247.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:af:b6:5b:25:9a:bb:40:cc:7b:89:17:9a:41:13:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=147ced88a406124c8c4df166c5740509e6415d2a
Validity
Not Before: Jan 1 18:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2fc255ebbf5ddb4b2d148033e83b1ec8c511665c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c9:ae:da:59:7f:70:43:5e:e4:af:0e:7b:9c:
eb:dd:cc:a6:86:0a:c9:29:e5:9a:c5:6c:c5:08:b2:
a0:12:5d:6a:fd:f7:c2:da:22:34:15:10:56:84:31:
22:23:88:65:b7:e1:6d:5c:8a:b6:94:db:b1:de:42:
7e:d5:8d:4b:5e:8f:78:5c:f6:e9:95:d5:b4:20:6c:
ee:aa:f2:8d:90:4b:f1:5c:03:ca:51:3d:ef:2f:ae:
fb:54:ae:e8:36:4e:f9:00:8a:0f:f3:5c:23:d4:6d:
bb:30:43:db:a4:f0:51:68:cc:4c:5a:5d:bb:ae:93:
a3:7c:aa:fa:02:e2:5b:cd:05:99:01:13:5d:3c:4a:
c6:e0:f1:cd:7b:51:aa:08:86:43:ac:f7:b3:42:a4:
44:a3:31:04:27:ba:56:80:6d:7a:55:3a:9b:b8:e3:
17:b4:9c:bc:d6:8b:87:42:5c:e0:fd:1e:92:ac:8f:
c8:2e:21:12:a9:88:6d:9c:e9:fd:63:0a:47:6b:a9:
d6:40:70:d0:f6:e1:b4:bd:fa:81:a0:8f:e2:63:44:
a5:e3:ab:19:08:fb:40:24:5a:00:dc:ca:03:4e:fc:
37:3c:5a:12:31:f0:2f:8d:06:ef:9a:0c:f7:55:b6:
2d:0d:b0:36:5b:cf:87:ab:a6:51:41:65:c6:3d:84:
a1:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:C2:55:EB:BF:5D:DB:4B:2D:14:80:33:E8:3B:1E:C8:C5:11:66:5C
X509v3 Authority Key Identifier:
keyid:14:7C:ED:88:A4:06:12:4C:8C:4D:F1:66:C5:74:05:09:E6:41:5D:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FHztiKQGEkyMTfFmxXQFCeZBXSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a4d3f6-1e46-47d3-a5d0-ff89917d40d0/1/L8JV679d20stFIAz6DseyMURZlw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a4d3f6-1e46-47d3-a5d0-ff89917d40d0/1/FHztiKQGEkyMTfFmxXQFCeZBXSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.247.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:d5:af:da:da:57:7e:2e:7c:33:00:fb:5f:0b:38:ce:3d:5d:
80:0e:7b:e0:f3:1a:06:b8:52:bd:65:3f:2b:f3:09:2c:d1:de:
05:12:66:15:45:38:39:32:d9:8e:36:92:57:53:b5:38:f3:7e:
d8:34:7c:30:2a:32:cf:6c:6e:90:07:7e:46:ab:b9:29:f3:4e:
47:73:4b:6c:06:e3:38:d1:5b:62:35:18:33:63:a9:45:9d:34:
61:2c:09:c3:95:5d:3a:30:2e:f4:40:07:19:00:c8:d5:7a:39:
23:92:33:a4:fd:d1:22:3b:78:31:52:20:1b:43:db:9e:46:ce:
94:24:c1:bc:a5:01:7a:dc:c9:90:bb:41:b4:95:f1:9a:5d:68:
64:dd:73:0e:08:98:ef:5d:63:e9:85:69:76:8d:93:94:e3:b0:
3f:fe:b8:ab:92:74:97:5d:b4:c8:ac:03:4b:b4:86:55:af:02:
f4:13:0d:21:59:70:9e:e4:6d:52:e9:23:1e:eb:da:92:37:a0:
75:99:52:13:11:50:78:e7:67:59:a5:c8:5a:b3:c3:dd:58:16:
af:e4:4c:7c:29:8b:5c:66:4f:90:84:d9:65:cf:75:cf:9b:48:
5d:3c:51:29:60:b8:8f:72:89:47:97:8c:24:b3:50:a2:8e:cd:
9c:48:90:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:55 2023 by rpki-client on console.sobornost.net