Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/9d8836-1c82-4cee-a57d-40cdd9a37892/1/O21RLDsF-VePLrxmVrUHobfKQOw.roa
File: O21RLDsF-VePLrxmVrUHobfKQOw.roa (raw, json)
Hash identifier: SWtZNh/RKhhfMQ8XatqSjE322JYFTmMLq89GVOaL+yI=
Subject key identifier: 3B:6D:51:2C:3B:05:F9:57:8F:2E:BC:66:56:B5:07:A1:B7:CA:40:EC
Certificate issuer: /CN=80c02a105f1fc894a48ab3079707748ade069c4f
Certificate serial: 08614D35
Authority key identifier: 80:C0:2A:10:5F:1F:C8:94:A4:8A:B3:07:97:07:74:8A:DE:06:9C:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gMAqEF8fyJSkirMHlwd0it4GnE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/9d8836-1c82-4cee-a57d-40cdd9a37892/1/O21RLDsF-VePLrxmVrUHobfKQOw.roa
Signing time: Sat 01 Jan 2022 01:57:12 +0000
ROA not before: Sat 01 Jan 2022 01:57:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34993
IP address blocks: 141.98.220.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140594485 (0x8614d35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80c02a105f1fc894a48ab3079707748ade069c4f
Validity
Not Before: Jan 1 01:57:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b6d512c3b05f9578f2ebc6656b507a1b7ca40ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:4b:ef:a8:8c:91:d7:36:fd:bf:86:97:81:4d:
c1:01:44:be:84:18:c8:11:a3:21:07:58:e7:20:e9:
50:db:e4:7d:05:b6:1b:b3:e5:a2:12:cd:5d:43:78:
41:be:0f:d9:4a:e1:1d:8a:83:9d:56:a7:73:7e:7f:
06:0d:25:d2:4e:61:a0:c6:13:ca:3e:89:e7:03:0f:
e1:21:9d:a6:bb:a9:ae:ae:69:ca:21:79:06:dc:9b:
04:8d:fc:07:e1:95:61:4b:02:42:a6:6e:31:d2:6d:
30:80:4d:d2:07:c2:59:bc:2e:70:1d:de:1f:e0:70:
bb:cc:70:f3:ff:63:da:ed:22:a2:32:1a:7c:6e:41:
17:41:94:4b:08:7e:ea:c1:c0:11:3f:89:5e:8d:4b:
ad:9b:8d:90:80:d5:93:61:8f:24:d7:1e:c5:b8:06:
4d:a8:a3:29:4f:0d:7d:db:92:74:dc:e7:ac:4f:3a:
99:4c:a8:f6:56:f2:0b:60:82:37:da:09:95:cc:13:
f1:cb:a5:42:28:ab:53:ea:47:26:ea:1b:9b:3b:9d:
eb:15:19:61:e2:3a:3a:51:42:2d:e5:f7:4e:79:97:
c7:5d:0c:aa:08:96:c2:cd:f3:25:aa:c3:b1:f6:3f:
16:aa:8b:86:d6:c3:76:27:52:26:1c:0b:18:26:09:
7a:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:6D:51:2C:3B:05:F9:57:8F:2E:BC:66:56:B5:07:A1:B7:CA:40:EC
X509v3 Authority Key Identifier:
keyid:80:C0:2A:10:5F:1F:C8:94:A4:8A:B3:07:97:07:74:8A:DE:06:9C:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gMAqEF8fyJSkirMHlwd0it4GnE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/9d8836-1c82-4cee-a57d-40cdd9a37892/1/O21RLDsF-VePLrxmVrUHobfKQOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/9d8836-1c82-4cee-a57d-40cdd9a37892/1/gMAqEF8fyJSkirMHlwd0it4GnE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.220.0/22
Signature Algorithm: sha256WithRSAEncryption
82:48:23:27:26:36:17:4e:7c:73:d4:bb:d5:90:14:45:cb:32:
af:51:80:91:c8:0d:86:2a:b1:4b:5a:df:e7:ba:a6:9a:63:9d:
6a:1f:e8:81:22:4c:ab:25:00:9a:8e:5b:d3:4c:35:02:27:4c:
e0:2a:a3:e8:0d:ef:2f:cc:ca:28:ff:39:5a:eb:21:8a:27:4e:
f1:35:5b:3c:06:a7:ea:16:23:cb:ae:ba:e5:9c:9f:d6:6b:45:
8d:cd:da:cb:c9:da:0a:5c:31:ed:98:c0:67:63:93:f3:18:43:
4d:a8:7a:51:11:56:30:f7:5b:42:1a:1f:28:e0:c6:ca:03:80:
ee:86:5d:e8:11:96:45:b9:8e:93:4f:3c:19:b3:36:af:f6:d7:
06:e5:d1:e7:c7:54:35:a4:a8:9c:13:ec:a7:0f:3e:bb:5f:b8:
01:12:6f:e3:52:de:8c:60:49:84:53:c5:23:31:a9:16:65:bf:
72:c8:7b:50:67:7c:0c:aa:cf:97:6d:a8:13:c0:66:57:ad:0d:
ca:07:33:b4:1f:d4:61:05:ad:8c:e4:f6:6e:4b:e8:0a:0c:78:
00:f1:92:27:50:1f:c4:99:ef:c1:f7:59:44:8e:d9:a4:d9:00:
d7:69:47:f6:b9:92:68:71:8e:7f:65:5a:3a:15:95:c4:e4:e6:
fb:94:c9:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:06 2023 by rpki-client on console.sobornost.net