Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/895662-a417-435c-8365-1ad5e9c52318/1/jF9uCjByaglhRxR3ptQ_xrLgbo8.roa
File: jF9uCjByaglhRxR3ptQ_xrLgbo8.roa (raw, json)
Hash identifier: 84CpWHeaON2Tqt5or5jfLSgKrBI9xyQDJi+1stPPXyA=
Subject key identifier: 8C:5F:6E:0A:30:72:6A:09:61:47:14:77:A6:D4:3F:C6:B2:E0:6E:8F
Certificate issuer: /CN=432ccf681e1720f3ce39e73001fee16c2e3ec217
Certificate serial: 018572FA832A97DAE4D0036E37CC4763EB10
Authority key identifier: 43:2C:CF:68:1E:17:20:F3:CE:39:E7:30:01:FE:E1:6C:2E:3E:C2:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QyzPaB4XIPPOOecwAf7hbC4-whc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/895662-a417-435c-8365-1ad5e9c52318/1/jF9uCjByaglhRxR3ptQ_xrLgbo8.roa
Signing time: Mon 02 Jan 2023 14:54:58 +0000
ROA not before: Mon 02 Jan 2023 14:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48031
IP address blocks: 109.107.141.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:fa:83:2a:97:da:e4:d0:03:6e:37:cc:47:63:eb:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=432ccf681e1720f3ce39e73001fee16c2e3ec217
Validity
Not Before: Jan 2 14:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c5f6e0a30726a0961471477a6d43fc6b2e06e8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:96:d7:6e:e8:2b:8f:2f:af:81:ca:4a:08:1b:
1b:ec:42:7d:85:cc:9e:25:e8:de:b9:73:c1:14:fe:
2a:d7:d7:83:72:69:88:dc:8b:ee:f6:ec:39:cb:65:
80:f7:b6:0e:8b:64:40:52:59:4b:76:fc:9a:92:fc:
55:42:92:26:eb:e2:e4:17:b4:c8:cc:87:8f:1d:f6:
5d:81:6e:10:5f:4b:b8:cb:28:41:cd:f5:66:28:70:
cc:b9:48:c9:a9:44:54:c1:5e:c9:d2:9f:ea:d5:57:
f4:19:8d:f6:6a:7b:f3:a2:a7:86:13:7e:23:ea:e9:
ae:71:8f:1b:62:4c:1e:f0:61:c9:0f:97:8f:2e:c6:
1f:49:4f:a6:3c:5a:6d:30:7c:d9:a6:06:02:c6:61:
20:6f:0e:e0:28:19:26:17:43:73:fe:f7:f8:ff:dd:
30:fe:c1:77:cb:7f:b8:f7:e3:71:15:c7:22:e9:e7:
84:37:05:92:5a:f0:45:61:42:48:59:69:5c:a0:e8:
b8:15:f2:4d:76:67:ce:c9:7e:2e:e1:8b:0f:07:16:
c0:8a:03:7b:fd:54:a7:64:f1:af:92:71:14:8f:e4:
c4:23:5c:3c:ef:0e:2d:6e:3e:a9:c6:67:c7:cc:82:
d1:58:31:ab:15:90:8d:30:1b:c8:ad:b8:31:d7:bf:
ed:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:5F:6E:0A:30:72:6A:09:61:47:14:77:A6:D4:3F:C6:B2:E0:6E:8F
X509v3 Authority Key Identifier:
keyid:43:2C:CF:68:1E:17:20:F3:CE:39:E7:30:01:FE:E1:6C:2E:3E:C2:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QyzPaB4XIPPOOecwAf7hbC4-whc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/895662-a417-435c-8365-1ad5e9c52318/1/jF9uCjByaglhRxR3ptQ_xrLgbo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/895662-a417-435c-8365-1ad5e9c52318/1/QyzPaB4XIPPOOecwAf7hbC4-whc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.107.141.0/24
Signature Algorithm: sha256WithRSAEncryption
72:3a:63:d0:df:3a:70:8d:60:94:9b:58:1d:e0:02:79:d3:73:
f6:d8:40:c9:03:22:4c:64:e0:b6:3b:b9:5f:9b:9b:da:5e:d7:
85:8e:6f:02:41:17:44:6a:ba:c3:61:3e:3c:6c:30:34:df:f1:
73:79:5c:4c:4a:bb:e2:c0:a0:3b:e0:cb:9d:02:50:3c:2d:fc:
ff:07:0c:ee:9a:2b:be:fe:70:e0:0b:4d:ff:0e:6f:97:68:28:
bf:d8:75:48:33:57:a7:b1:fa:b2:0c:bd:b5:84:93:ad:c9:fd:
dd:36:15:77:47:c2:03:8c:5a:47:e2:97:68:d4:a3:8a:f4:d8:
cd:ce:60:c0:f1:03:51:ad:c8:96:a3:2c:cb:4f:7d:4d:b5:10:
b4:97:81:0e:f7:06:53:f9:a8:c2:9c:4d:e0:e1:b9:e2:a0:01:
4d:30:93:2a:3f:1e:ad:d8:82:ce:50:d0:b7:04:55:12:c1:61:
aa:5b:a5:9a:7e:42:d2:37:a5:21:3e:32:17:f2:8e:f5:32:c6:
15:5d:64:37:09:af:98:73:a7:91:8a:f7:13:08:43:16:db:b5:
b2:d2:6a:f9:1d:cc:0f:f6:1e:d2:3b:2c:40:de:2b:36:cc:49:
29:de:c7:41:b4:69:28:f2:50:14:73:a8:4d:6f:b3:fd:e9:72:
1d:60:d3:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:26 2023 by rpki-client on console.sobornost.net