Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/65398a-0faa-4b64-bd09-09886c0c46a0/1/5KBPzuzyNkKeBWaHR2bBjrHdLUk.roa
File: 5KBPzuzyNkKeBWaHR2bBjrHdLUk.roa (raw, json)
Hash identifier: 8r2KahlYLQCX2BqagLvUNdLUmMWYqESzeNPInQqK5OI=
Subject key identifier: E4:A0:4F:CE:EC:F2:36:42:9E:05:66:87:47:66:C1:8E:B1:DD:2D:49
Certificate issuer: /CN=e2e7af73c07a5782af24834ebddb74a9c897c4ff
Certificate serial: 0193C0DB8B657FD6ADE91D2A95E33044E16D
Authority key identifier: E2:E7:AF:73:C0:7A:57:82:AF:24:83:4E:BD:DB:74:A9:C8:97:C4:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4uevc8B6V4KvJINOvdt0qciXxP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/65398a-0faa-4b64-bd09-09886c0c46a0/1/5KBPzuzyNkKeBWaHR2bBjrHdLUk.roa
Signing time: Fri 13 Dec 2024 16:30:33 +0000
ROA not before: Fri 13 Dec 2024 16:30:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 553
IP address blocks: 141.31.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:c0:db:8b:65:7f:d6:ad:e9:1d:2a:95:e3:30:44:e1:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2e7af73c07a5782af24834ebddb74a9c897c4ff
Validity
Not Before: Dec 13 16:30:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e4a04fceecf236429e0566874766c18eb1dd2d49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:21:ad:26:e7:17:92:73:7a:5f:db:f7:27:72:
68:eb:6a:52:e0:e8:5f:c7:b7:2c:86:5d:3c:e1:92:
ba:91:65:0b:39:d7:c6:2d:59:30:7b:25:9c:a7:07:
8b:70:ac:48:c6:f8:c4:3d:6d:28:ce:d6:94:e1:f7:
d9:a9:7c:09:66:a7:fa:d7:e6:21:fc:20:e7:2a:cf:
36:19:6b:bd:bf:06:3a:d4:0e:8c:7b:1d:49:f8:4a:
83:a8:33:17:13:de:3e:b3:06:e4:05:39:14:e4:ee:
e5:f9:ac:7e:a7:c2:be:09:ae:4b:93:7d:8f:a2:b1:
e6:1a:07:23:87:d2:b0:b5:18:c6:51:57:2d:85:79:
c3:1a:f9:b6:6f:27:ea:42:a1:55:6d:a2:f2:d8:bc:
d0:b0:09:d2:0e:2e:b7:24:81:02:0f:f9:fe:2b:f9:
3d:f9:40:31:5f:7e:36:2a:72:76:64:e7:ae:f4:70:
ad:da:39:11:fe:2b:67:f4:0c:87:99:40:d3:0b:34:
7e:c6:ae:59:eb:19:37:06:0f:dc:c9:24:91:3d:6f:
11:78:73:86:4a:af:b3:b8:75:b9:57:97:ea:90:d9:
97:23:43:42:76:78:be:42:43:f1:c4:e8:72:1d:43:
9f:5c:0b:f1:d0:da:f7:de:8d:5a:66:d9:4f:af:dc:
ae:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:A0:4F:CE:EC:F2:36:42:9E:05:66:87:47:66:C1:8E:B1:DD:2D:49
X509v3 Authority Key Identifier:
keyid:E2:E7:AF:73:C0:7A:57:82:AF:24:83:4E:BD:DB:74:A9:C8:97:C4:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4uevc8B6V4KvJINOvdt0qciXxP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/65398a-0faa-4b64-bd09-09886c0c46a0/1/5KBPzuzyNkKeBWaHR2bBjrHdLUk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/65398a-0faa-4b64-bd09-09886c0c46a0/1/4uevc8B6V4KvJINOvdt0qciXxP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.31.0.0/16
Signature Algorithm: sha256WithRSAEncryption
45:7a:84:69:ed:15:20:70:a2:70:af:6e:1c:6e:9f:8e:25:e7:
84:ef:6c:28:64:39:0b:5c:c9:a8:8c:df:3a:3c:2e:40:2d:bc:
e8:e0:46:59:5b:4c:27:65:b7:a9:1b:2a:a2:cb:53:b5:ee:f8:
2a:08:22:24:1b:17:b2:90:49:f6:76:96:44:d9:f7:b1:02:94:
f8:66:42:02:2d:d5:c7:64:87:f8:16:d0:b9:b6:0b:c8:17:be:
8c:07:4f:4b:b7:8d:b2:99:bc:a6:d4:6c:8e:c4:1b:05:d4:2d:
31:79:90:2e:fa:35:2c:23:97:69:83:ef:a4:2e:87:11:6c:ec:
87:d8:a7:9c:5c:91:e2:43:f0:ae:c8:6e:0d:cf:be:84:3d:0a:
76:ce:d7:36:d9:ec:16:6f:53:b4:46:cd:08:83:12:74:7b:67:
27:f3:f6:aa:57:21:93:c3:5c:0c:e9:8a:d7:23:c5:a2:d4:04:
02:56:60:b5:ef:18:e7:3f:9c:65:97:61:66:68:bb:cf:94:e5:
c7:f3:22:ea:03:a4:d2:44:f9:63:52:97:91:bd:4e:3b:38:41:
bc:2e:3e:02:87:12:2a:17:0d:33:20:23:f4:a4:8a:fd:9a:23:
9b:55:3d:4b:91:e0:c8:0b:ab:c7:c8:35:33:ca:1b:59:07:3f:
79:75:43:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:38 2024 by rpki-client on console.sobornost.net