Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/2be87f-282c-4127-bf68-561407a83e35/1/VT6U8RRxqiYehXT5JaoNVcE7EGM.roa
File: VT6U8RRxqiYehXT5JaoNVcE7EGM.roa (raw, json)
Hash identifier: sMZvWt2M6W1NLXsnmLY+OgZkS+NQzvGQJEhDZkWdY0k=
Subject key identifier: 55:3E:94:F1:14:71:AA:26:1E:85:74:F9:25:AA:0D:55:C1:3B:10:63
Certificate issuer: /CN=a2bf6de589801fee3c21dadb7e480fc5c58fce8f
Certificate serial: 01857343A8B27ABCB80200763FFE244317CB
Authority key identifier: A2:BF:6D:E5:89:80:1F:EE:3C:21:DA:DB:7E:48:0F:C5:C5:8F:CE:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/or9t5YmAH-48IdrbfkgPxcWPzo8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/2be87f-282c-4127-bf68-561407a83e35/1/VT6U8RRxqiYehXT5JaoNVcE7EGM.roa
Signing time: Mon 02 Jan 2023 16:14:51 +0000
ROA not before: Mon 02 Jan 2023 16:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49453
IP address blocks: 185.202.108.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:43:a8:b2:7a:bc:b8:02:00:76:3f:fe:24:43:17:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2bf6de589801fee3c21dadb7e480fc5c58fce8f
Validity
Not Before: Jan 2 16:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=553e94f11471aa261e8574f925aa0d55c13b1063
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:9b:1e:36:4f:09:5f:30:5c:b8:2f:18:71:c2:
57:91:42:ab:f7:ce:20:17:cf:ff:79:44:35:14:33:
33:60:b9:bb:42:66:ed:c2:f0:68:e2:07:d5:ee:99:
78:65:b3:ce:26:ef:67:91:bf:29:89:2b:e2:8f:7a:
4e:be:92:da:d7:ae:1f:e7:90:6d:dc:22:2f:dd:36:
aa:77:e4:9f:67:43:d7:cd:36:02:c1:8b:07:3b:86:
0b:4f:12:68:22:36:c9:1c:f8:d3:07:04:ab:78:b4:
fc:16:da:9f:b2:6d:1e:16:28:8d:d2:fd:45:42:b4:
ca:2a:08:1c:29:1c:47:25:a8:df:13:ab:96:1a:bf:
4a:14:ce:dd:84:76:fc:11:a0:54:a6:a3:8c:92:fb:
34:a7:ad:24:e0:f8:ad:b4:dd:c7:44:e8:5b:20:37:
e7:34:8c:e8:8c:ec:b4:28:70:6a:03:ba:be:6c:e3:
98:98:81:86:68:88:13:ff:2b:7e:2b:49:dd:29:9b:
de:8d:18:bf:2d:d7:41:a8:fe:e3:f5:16:a8:af:33:
60:c6:52:68:4b:53:db:f6:d2:78:0e:28:a6:a1:96:
36:cd:e5:d8:99:ac:4b:b7:cf:8f:27:67:ea:c5:09:
17:4f:87:c7:3c:02:bf:3a:f1:f3:d5:e2:f3:59:09:
6d:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:3E:94:F1:14:71:AA:26:1E:85:74:F9:25:AA:0D:55:C1:3B:10:63
X509v3 Authority Key Identifier:
keyid:A2:BF:6D:E5:89:80:1F:EE:3C:21:DA:DB:7E:48:0F:C5:C5:8F:CE:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/or9t5YmAH-48IdrbfkgPxcWPzo8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2be87f-282c-4127-bf68-561407a83e35/1/VT6U8RRxqiYehXT5JaoNVcE7EGM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2be87f-282c-4127-bf68-561407a83e35/1/or9t5YmAH-48IdrbfkgPxcWPzo8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.108.0/24
Signature Algorithm: sha256WithRSAEncryption
59:82:b7:3a:69:04:bb:8c:96:27:4b:98:67:47:3e:2f:0d:7d:
dc:dc:42:c7:eb:a5:b9:6d:3a:79:fc:c4:cc:2b:a7:fe:95:b9:
eb:fd:da:9f:f0:18:00:1d:7b:77:06:0c:89:31:61:64:c0:45:
33:10:6d:b3:fd:3b:f7:90:2a:ad:70:5a:ec:b5:9e:a1:ab:32:
20:95:c4:2e:4f:cf:f9:bc:36:1b:06:96:35:47:b6:da:c6:45:
77:bf:16:18:27:18:95:d3:62:8c:72:d5:8f:68:38:f0:c6:ad:
16:80:1c:3c:f4:b8:3e:98:69:4d:45:f5:33:e5:39:32:4a:cc:
0c:28:aa:ba:36:d1:29:98:30:13:47:2b:91:aa:92:b5:60:6d:
85:35:80:f1:e1:71:33:51:c8:51:ff:25:cf:c7:97:71:bd:9e:
c9:47:5c:ff:b5:c1:c3:95:3e:58:2a:12:30:a2:21:69:b9:88:
d9:28:2e:80:61:d8:82:bb:93:8e:97:cd:a6:2b:5e:00:21:02:
e8:7a:a1:44:71:22:23:44:47:40:98:3e:df:09:c4:c6:3d:7f:
4b:35:62:ce:59:8b:f9:76:3a:e6:f6:7c:51:a1:ab:74:0c:49:
06:6a:0c:e5:79:6e:26:9d:9f:fb:4c:f4:d8:e8:d4:42:3c:fb:
35:fe:e8:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:05 2023 by rpki-client on console.sobornost.net