Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/aec6e1-a20d-4238-b07d-1d74cf376a1d/1/pAncW7LEqXErZbanqhp-WjnQgLo.roa
File: pAncW7LEqXErZbanqhp-WjnQgLo.roa (raw, json)
Hash identifier: 0tt9DOMl7ttTSLQ2trKfjS6ID3ev6fZ6023vIXgpl3Q=
Subject key identifier: A4:09:DC:5B:B2:C4:A9:71:2B:65:B6:A7:AA:1A:7E:5A:39:D0:80:BA
Certificate issuer: /CN=ddf048ea02b7551533511bfa9040ddabe11974c6
Certificate serial: 30075912
Authority key identifier: DD:F0:48:EA:02:B7:55:15:33:51:1B:FA:90:40:DD:AB:E1:19:74:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fBI6gK3VRUzURv6kEDdq-EZdMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/aec6e1-a20d-4238-b07d-1d74cf376a1d/1/pAncW7LEqXErZbanqhp-WjnQgLo.roa
Signing time: Sat 01 Jan 2022 03:56:06 +0000
ROA not before: Sat 01 Jan 2022 03:56:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201255
IP address blocks: 185.179.42.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 805787922 (0x30075912)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf048ea02b7551533511bfa9040ddabe11974c6
Validity
Not Before: Jan 1 03:56:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a409dc5bb2c4a9712b65b6a7aa1a7e5a39d080ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:53:c3:cc:79:c4:1c:21:6c:76:f8:fe:83:53:
e5:ad:03:76:46:78:01:70:44:a8:b1:f8:aa:9e:00:
43:6a:dc:be:29:1c:a1:ff:89:44:cd:8b:0d:67:96:
60:de:c8:a1:f9:83:4b:c9:be:c7:26:6b:92:3d:a2:
b5:8d:75:6b:c4:02:b2:73:f1:3c:98:3f:3e:a8:f0:
07:1b:e8:a0:b4:d0:67:1d:a4:00:a1:f6:ad:0c:4c:
33:8c:86:38:f1:54:ce:14:bc:f1:2e:3e:2e:3e:84:
b0:a6:c0:67:16:9a:6f:26:fa:49:13:0e:8a:82:35:
40:d4:6b:ef:4d:66:61:0c:7a:69:f0:d1:1c:b7:5e:
94:a9:f3:39:4d:b3:0f:f0:13:16:08:b9:80:51:a9:
69:a5:5d:fb:90:63:af:32:db:f7:df:92:39:70:33:
7f:e5:8d:99:07:8e:7a:66:42:89:f4:d0:f8:fd:cf:
f6:7a:a3:66:f4:d1:82:31:87:7a:bc:e2:0e:15:fe:
b2:1f:53:1d:e2:6c:a3:ab:3b:00:bd:41:f8:ad:d7:
2d:af:ea:12:d6:9b:3f:26:47:7d:c8:5f:07:71:e6:
85:91:4d:1e:0c:cf:6d:b9:87:6e:e3:41:d4:c3:32:
b1:af:0d:86:48:06:a8:af:ad:89:0f:88:3e:53:14:
44:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:09:DC:5B:B2:C4:A9:71:2B:65:B6:A7:AA:1A:7E:5A:39:D0:80:BA
X509v3 Authority Key Identifier:
keyid:DD:F0:48:EA:02:B7:55:15:33:51:1B:FA:90:40:DD:AB:E1:19:74:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fBI6gK3VRUzURv6kEDdq-EZdMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/aec6e1-a20d-4238-b07d-1d74cf376a1d/1/pAncW7LEqXErZbanqhp-WjnQgLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/aec6e1-a20d-4238-b07d-1d74cf376a1d/1/3fBI6gK3VRUzURv6kEDdq-EZdMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.42.0/24
Signature Algorithm: sha256WithRSAEncryption
07:18:51:86:a8:a6:5e:9b:eb:30:87:79:d5:fd:84:f2:7f:0b:
0f:a9:2d:06:69:da:3b:62:b2:a1:20:5b:c3:05:e8:87:d2:63:
66:e8:1f:a3:14:53:9c:a6:ad:ce:73:71:e6:93:ba:9c:c0:79:
36:fb:39:54:d5:65:4a:de:41:90:98:a5:e2:49:10:73:c9:f9:
c3:f3:68:e4:b1:12:1e:b3:53:0e:a1:17:e4:7f:ed:1a:ac:e8:
d4:71:b0:22:ef:e2:fd:c1:c6:db:e5:ab:98:79:a9:17:f6:18:
88:48:5c:79:1f:b8:46:14:d4:72:81:f1:e0:da:8c:15:a3:35:
f1:f2:35:2c:0a:6e:92:aa:d0:fd:6b:4f:cb:0e:cf:0f:c4:ff:
fd:39:71:36:e8:58:0e:33:eb:85:4a:9f:84:99:8d:fd:8c:28:
2d:0d:6c:e1:bc:c1:77:06:47:04:7a:47:76:de:89:f6:18:d5:
aa:83:6c:b3:f6:59:d7:6c:6a:b8:76:fc:e2:f8:7d:f1:5a:ff:
2f:cf:2f:fb:da:27:82:c9:fc:39:d0:a4:ab:8e:b4:59:c2:9f:
9d:97:89:d0:1f:da:c9:52:7e:97:e8:4e:67:af:e4:61:9a:e6:
41:bf:bc:63:9d:85:95:52:4c:e4:0a:45:b4:3a:33:e7:e2:d4:
93:0c:35:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:22 2023 by rpki-client on console.sobornost.net