Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/bfa0d7-90b8-4a2c-92d3-cddc9e0c1b80/1/BvzBhyec7eHjzAIOlNHeIuhzvcA.roa
File: BvzBhyec7eHjzAIOlNHeIuhzvcA.roa (raw, json)
Hash identifier: cW3/cneq3MACq/ABY2RYGHvZdteicQKKEDjwsLQLPLQ=
Subject key identifier: 06:FC:C1:87:27:9C:ED:E1:E3:CC:02:0E:94:D1:DE:22:E8:73:BD:C0
Certificate issuer: /CN=965932de6700fda510516d1d3c85dd37aa3ff7ca
Certificate serial: 01856B8A1CC382C9044C7CDD4378EC2B6832
Authority key identifier: 96:59:32:DE:67:00:FD:A5:10:51:6D:1D:3C:85:DD:37:AA:3F:F7:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/llky3mcA_aUQUW0dPIXdN6o_98o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/bfa0d7-90b8-4a2c-92d3-cddc9e0c1b80/1/BvzBhyec7eHjzAIOlNHeIuhzvcA.roa
Signing time: Sun 01 Jan 2023 04:14:51 +0000
ROA not before: Sun 01 Jan 2023 04:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209326
IP address blocks: 194.69.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:8a:1c:c3:82:c9:04:4c:7c:dd:43:78:ec:2b:68:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=965932de6700fda510516d1d3c85dd37aa3ff7ca
Validity
Not Before: Jan 1 04:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06fcc187279cede1e3cc020e94d1de22e873bdc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:71:96:bb:11:64:e7:ab:e6:12:c0:99:55:24:
34:9a:80:4b:2a:55:b0:73:49:61:4a:6b:c9:0f:9d:
15:c3:20:e7:71:dc:d3:a4:9c:1e:a6:50:2a:5d:40:
1a:f8:7b:40:a1:07:af:81:1c:a0:c7:d7:41:9f:cc:
8c:90:d7:47:99:c0:d9:48:cd:91:60:b6:ac:9d:f4:
42:68:97:c9:7b:19:40:4d:a2:20:77:8d:fb:b0:86:
70:4f:7f:37:b4:00:4c:25:91:99:62:55:60:78:0d:
6a:7a:30:43:63:60:bb:60:ca:09:22:0c:44:03:c8:
49:78:9c:cc:a6:c5:fe:10:97:68:c2:7b:aa:3e:d1:
f8:f0:98:ab:fe:31:62:99:9c:44:27:70:c8:35:b7:
5d:f5:61:0f:29:db:19:a1:93:75:29:ec:f6:47:b5:
e2:13:1a:a0:44:d2:04:a0:80:5d:bc:a6:ab:ed:37:
21:95:16:d6:ed:3e:b5:72:da:8e:62:1f:62:d1:25:
ad:df:f4:c5:c8:a6:39:12:85:97:98:de:fa:bc:80:
f9:b8:02:75:45:80:53:59:b3:ff:a1:97:3c:92:a6:
37:59:d3:44:23:e4:9f:d1:d8:b8:81:1c:eb:c6:4c:
68:b2:58:dc:c9:7c:d7:70:1e:09:c1:82:80:75:46:
9e:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:FC:C1:87:27:9C:ED:E1:E3:CC:02:0E:94:D1:DE:22:E8:73:BD:C0
X509v3 Authority Key Identifier:
keyid:96:59:32:DE:67:00:FD:A5:10:51:6D:1D:3C:85:DD:37:AA:3F:F7:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/llky3mcA_aUQUW0dPIXdN6o_98o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/bfa0d7-90b8-4a2c-92d3-cddc9e0c1b80/1/BvzBhyec7eHjzAIOlNHeIuhzvcA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/bfa0d7-90b8-4a2c-92d3-cddc9e0c1b80/1/llky3mcA_aUQUW0dPIXdN6o_98o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.69.166.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:a7:ab:f5:85:65:81:69:1c:18:19:80:20:3b:d0:d6:98:32:
2e:fc:85:59:40:f6:bb:df:ce:fe:ff:e7:68:2f:21:c0:c7:6f:
3d:d3:cf:21:70:ab:dd:cc:94:c5:87:58:b3:96:0e:06:5e:5c:
e7:d8:93:ee:3a:25:f7:e9:06:9a:b4:e7:2f:17:b4:d5:b5:10:
6b:5d:b4:52:d7:56:5e:ec:11:81:78:60:a2:6e:16:1a:f7:3b:
fa:e6:8c:9c:16:0d:73:b6:8b:a2:02:7c:af:f0:b4:3b:df:00:
c9:31:e8:5b:c4:ce:8c:ac:d3:89:b6:7d:39:f7:42:5e:9f:fe:
91:aa:fa:0e:fd:fb:4a:a8:6e:be:fa:ce:51:c6:f4:98:0e:f8:
20:3a:d0:3a:f9:39:36:e8:75:fe:81:f3:db:58:b2:ac:c8:26:
b3:e7:2e:cd:4e:64:ed:bb:a6:70:3d:b2:1d:ed:37:d6:dc:b8:
dc:fd:55:d2:03:9f:96:7c:a3:26:35:1c:c6:af:1b:42:10:72:
a3:85:da:e3:84:54:a1:94:65:37:af:98:c4:3c:76:2f:c1:c5:
1a:10:b1:47:6b:65:24:4c:a1:8a:e2:b6:2b:9d:08:3f:7a:b6:
fc:97:82:bc:f6:d0:00:c9:10:9e:f3:de:e2:e0:35:4d:97:6e:
f6:a1:08:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:27 2023 by rpki-client on console.sobornost.net