Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/2be87f-282c-4127-bf68-561407a83e35/1/F7YG3bvihBFEFfKvxWZIu1yNUfo.roa
File: F7YG3bvihBFEFfKvxWZIu1yNUfo.roa (raw, json)
Hash identifier: NxZEtlIPpIfnPcEo3SI9NVFA8C39k9PlhLYh5P7U/qs=
Subject key identifier: 17:B6:06:DD:BB:E2:84:11:44:15:F2:AF:C5:66:48:BB:5C:8D:51:FA
Certificate issuer: /CN=a2bf6de589801fee3c21dadb7e480fc5c58fce8f
Certificate serial: 01857343A9C159D1DEB78FD1D1787A037814
Authority key identifier: A2:BF:6D:E5:89:80:1F:EE:3C:21:DA:DB:7E:48:0F:C5:C5:8F:CE:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/or9t5YmAH-48IdrbfkgPxcWPzo8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/2be87f-282c-4127-bf68-561407a83e35/1/F7YG3bvihBFEFfKvxWZIu1yNUfo.roa
Signing time: Mon 02 Jan 2023 16:14:52 +0000
ROA not before: Mon 02 Jan 2023 16:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52000
IP address blocks: 185.202.108.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:43:a9:c1:59:d1:de:b7:8f:d1:d1:78:7a:03:78:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2bf6de589801fee3c21dadb7e480fc5c58fce8f
Validity
Not Before: Jan 2 16:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=17b606ddbbe284114415f2afc56648bb5c8d51fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1d:b3:ea:06:b3:0a:f0:22:ae:59:65:71:a3:
db:32:36:51:a2:c0:df:a9:0f:8a:07:e4:88:6b:c8:
d4:44:b8:63:42:a8:60:4d:d0:5a:5a:22:1b:82:06:
b0:b3:9e:3c:99:28:b9:37:98:7c:e8:cc:f7:85:05:
e7:ab:83:1a:1e:1c:93:25:f9:30:ee:c1:ef:23:b8:
82:c3:b0:34:e8:18:11:0b:83:1a:88:a0:76:7f:ee:
b2:48:22:8d:4e:00:d1:11:e4:79:57:f9:19:09:7f:
ec:9d:62:34:47:97:82:76:d2:0c:7c:56:c4:dc:f3:
be:0d:eb:be:56:62:b7:d7:3e:af:1f:00:1f:91:da:
76:c5:3a:58:63:07:22:36:39:68:0c:58:8e:ea:41:
47:24:c4:be:8a:e7:c9:a9:51:14:58:17:8c:ba:86:
e4:15:69:ba:66:9c:ef:49:fe:ca:9e:0a:ae:ed:9a:
82:22:3e:2b:f3:e6:da:2e:55:cc:dc:e5:0f:1f:fe:
46:41:cc:25:53:3c:c1:08:91:a4:be:4f:da:8d:8b:
5a:8b:db:9b:a7:28:79:b7:00:2c:e4:f0:22:9f:af:
3d:90:ed:d9:e9:43:df:88:6e:03:4c:ef:6a:32:e0:
33:90:d0:dd:45:f3:e3:c2:c7:56:56:73:84:7c:b5:
1d:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:B6:06:DD:BB:E2:84:11:44:15:F2:AF:C5:66:48:BB:5C:8D:51:FA
X509v3 Authority Key Identifier:
keyid:A2:BF:6D:E5:89:80:1F:EE:3C:21:DA:DB:7E:48:0F:C5:C5:8F:CE:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/or9t5YmAH-48IdrbfkgPxcWPzo8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2be87f-282c-4127-bf68-561407a83e35/1/F7YG3bvihBFEFfKvxWZIu1yNUfo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2be87f-282c-4127-bf68-561407a83e35/1/or9t5YmAH-48IdrbfkgPxcWPzo8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.108.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:27:9e:0c:2f:1e:c1:a0:c4:02:01:67:c8:be:6a:d0:e7:23:
c8:e0:1f:e3:90:04:d0:1b:0c:62:27:4b:67:27:2a:dd:cd:83:
da:fc:38:d4:7a:53:f1:1e:01:dc:26:34:03:a8:c8:51:6e:71:
be:60:e8:04:d5:0d:9d:41:af:21:ae:6c:1c:63:17:6b:68:b3:
dd:23:94:c9:45:eb:5a:f2:5e:7f:10:dc:be:34:7a:ed:82:26:
2e:1f:f9:18:19:9d:21:de:42:71:f7:a9:25:3f:35:f6:af:22:
ac:a5:ff:d4:df:56:08:32:85:68:61:8e:41:26:0f:16:f6:af:
26:ba:07:51:e5:f5:38:16:be:78:38:ef:68:1a:1b:5b:c7:0e:
eb:62:d4:81:7d:a0:89:07:2b:93:08:c6:37:63:aa:65:c7:56:
c9:33:2e:e5:fc:51:47:3b:14:95:31:0d:23:40:fe:14:34:83:
35:ba:7e:df:a9:09:02:59:95:1c:ec:be:db:d0:57:ac:ec:90:
5e:a2:8a:8a:17:71:f1:d6:12:fd:a8:e3:ea:1b:ed:1a:8e:8b:
03:b8:0d:a1:01:2b:be:ae:8a:dc:d4:47:6d:a5:e2:64:d8:35:
e0:ae:46:ba:88:21:73:f2:74:b5:cc:20:69:91:43:c8:cc:a9:
60:18:da:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:05 2023 by rpki-client on console.sobornost.net