Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/c938af-46b2-44f3-80de-052f5fd4e28b/1/N2DiRZsln06UH4QzNJo5mESOmrQ.roa
File: N2DiRZsln06UH4QzNJo5mESOmrQ.roa (raw, json)
Hash identifier: 9xOcVAU8lv1Li0y7k5m6gNbMuh6ewzTdH1gmAHQ5Utg=
Subject key identifier: 37:60:E2:45:9B:25:9F:4E:94:1F:84:33:34:9A:39:98:44:8E:9A:B4
Certificate issuer: /CN=ac5fddd0a8bb6761e41afcf2db765deb56cdb856
Certificate serial: 018964C05D140AA59520914DAAB48AAB70E4
Authority key identifier: AC:5F:DD:D0:A8:BB:67:61:E4:1A:FC:F2:DB:76:5D:EB:56:CD:B8:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rF_d0Ki7Z2HkGvzy23Zd61bNuFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/c938af-46b2-44f3-80de-052f5fd4e28b/1/N2DiRZsln06UH4QzNJo5mESOmrQ.roa
Signing time: Mon 17 Jul 2023 16:47:55 +0000
ROA not before: Mon 17 Jul 2023 16:47:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 194.104.142.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:c0:5d:14:0a:a5:95:20:91:4d:aa:b4:8a:ab:70:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac5fddd0a8bb6761e41afcf2db765deb56cdb856
Validity
Not Before: Jul 17 16:47:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3760e2459b259f4e941f8433349a3998448e9ab4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:a6:3f:f5:bd:ab:7f:7c:26:5d:72:76:1a:33:
2f:73:12:07:e0:f9:aa:4a:59:fe:21:13:38:a5:82:
04:66:b6:26:42:6e:f4:3b:6d:d9:37:f7:10:15:2a:
31:5e:d7:86:24:83:08:fe:3a:11:d0:3f:80:36:0e:
f3:f2:49:8e:33:4a:ea:1f:1a:19:51:a4:5e:16:4c:
74:2f:8a:29:3d:54:19:d2:cb:ae:7c:44:aa:4a:3b:
d7:fc:67:27:de:d0:c8:cd:b1:e4:a7:17:11:47:21:
5c:aa:05:23:83:86:8e:c2:45:29:43:09:b1:eb:79:
19:96:20:ab:90:c5:c6:6a:8b:df:ff:6c:81:c2:77:
9e:bf:16:25:08:c4:1e:9a:37:20:9c:9a:cc:59:6c:
78:3d:b4:c7:e8:7f:51:bf:36:ab:94:dd:70:b7:91:
15:02:c3:1e:bb:41:c8:9c:41:38:44:54:c1:ae:87:
36:d6:60:3c:e0:6a:06:6d:9f:d5:9e:48:9b:3e:7b:
3f:eb:1b:05:28:8b:32:3b:d3:28:d7:11:3d:ca:20:
fe:70:bb:f2:e1:e7:64:c5:57:b0:65:db:c2:1b:25:
5e:93:d8:35:8d:07:85:0c:76:8b:ea:b4:0f:0b:ae:
88:9b:2e:c8:f7:f2:63:a7:04:c0:27:cd:26:8f:c0:
43:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:60:E2:45:9B:25:9F:4E:94:1F:84:33:34:9A:39:98:44:8E:9A:B4
X509v3 Authority Key Identifier:
keyid:AC:5F:DD:D0:A8:BB:67:61:E4:1A:FC:F2:DB:76:5D:EB:56:CD:B8:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rF_d0Ki7Z2HkGvzy23Zd61bNuFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/c938af-46b2-44f3-80de-052f5fd4e28b/1/N2DiRZsln06UH4QzNJo5mESOmrQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/c938af-46b2-44f3-80de-052f5fd4e28b/1/rF_d0Ki7Z2HkGvzy23Zd61bNuFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.104.142.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:a5:72:7e:1e:ac:81:e7:84:d7:4d:74:91:3e:db:45:63:91:
c7:69:44:fd:5c:83:de:78:b5:0a:2a:ab:e5:5a:71:46:6e:3a:
37:7d:cb:02:31:92:4d:02:d6:6a:59:82:89:78:06:4b:dd:c8:
bc:61:7d:29:51:64:5a:04:fc:28:1d:33:cf:52:71:25:ac:07:
ea:78:a6:d2:e8:5e:b0:d8:5e:7b:eb:ec:40:72:6e:3b:c3:44:
f4:40:d5:0c:2d:01:18:43:58:7d:af:4d:d3:df:f9:d1:05:a8:
51:a9:17:b7:df:86:2a:a2:3a:89:c4:5d:73:72:6d:d7:21:67:
25:67:0a:2c:13:05:10:05:70:0e:fe:e6:22:78:95:40:43:08:
63:f6:cc:db:33:71:d9:a8:31:93:69:8a:1c:3d:ca:41:9f:db:
a3:96:ac:d3:7f:91:31:db:be:34:67:e3:74:1a:82:1c:5f:bb:
c5:c4:e8:c3:81:21:3b:41:c3:d5:ad:42:6f:14:b4:8f:45:10:
d4:e3:b6:14:5b:be:a4:ae:86:bd:eb:6a:34:1b:11:29:11:ea:
56:1a:29:9f:3e:3c:6d:11:6f:9e:99:cd:2a:fd:4a:f2:57:82:
88:4f:99:ad:2f:2f:d4:59:38:fe:b6:ae:28:6a:53:74:9d:52:
93:85:57:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:27 2023 by rpki-client on console.sobornost.net