Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/cda7c2-807f-4323-b3d7-962fe097f4b1/1/DgYe1OHWfy-b0eSdf-jPXlsS--4.roa
File: DgYe1OHWfy-b0eSdf-jPXlsS--4.roa (raw, json)
Hash identifier: re/qRvssnowjCT3zrkTOhua6zZI5qWkQeu6TVBBZkU8=
Subject key identifier: 0E:06:1E:D4:E1:D6:7F:2F:9B:D1:E4:9D:7F:E8:CF:5E:5B:12:FB:EE
Certificate issuer: /CN=bf42b84baeedc2c463de37fa4d146247f3e14ba1
Certificate serial: 018CC492EED10E9413709D5CFFAB5F43D98D
Authority key identifier: BF:42:B8:4B:AE:ED:C2:C4:63:DE:37:FA:4D:14:62:47:F3:E1:4B:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v0K4S67twsRj3jf6TRRiR_PhS6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/cda7c2-807f-4323-b3d7-962fe097f4b1/1/DgYe1OHWfy-b0eSdf-jPXlsS--4.roa
Signing time: Mon 01 Jan 2024 10:30:12 +0000
ROA not before: Mon 01 Jan 2024 10:30:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57990
IP address blocks: 176.112.160.0/21 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:92:ee:d1:0e:94:13:70:9d:5c:ff:ab:5f:43:d9:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf42b84baeedc2c463de37fa4d146247f3e14ba1
Validity
Not Before: Jan 1 10:30:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0e061ed4e1d67f2f9bd1e49d7fe8cf5e5b12fbee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:61:6e:9c:0b:11:64:bb:e7:b6:9d:6b:36:ff:
2f:e2:ab:ab:2b:b8:2c:61:49:33:6c:5e:1b:07:1f:
54:e4:a6:56:be:27:0f:db:27:2d:b0:f5:a3:3c:c4:
1f:7d:9c:2e:88:03:d5:a7:e2:76:da:bb:97:34:53:
54:08:ef:73:0c:4b:5d:15:42:79:03:0e:4b:7e:d8:
5a:2e:a5:cd:03:63:4b:2a:61:d1:cb:be:e5:f0:5f:
0a:fa:aa:5c:72:82:4c:0a:a7:93:6b:87:ec:ac:95:
55:e0:bb:cf:4e:3a:b8:de:2a:c0:b7:4b:1a:10:a4:
37:5e:89:ba:d7:83:3b:bf:66:48:28:0b:bd:89:2b:
66:1c:38:ea:b0:b0:02:be:cc:45:b5:ac:1b:09:eb:
33:2c:50:26:c4:c0:52:f2:dd:53:89:c2:09:42:74:
ee:56:2b:54:3f:d2:ac:3b:26:fe:a6:96:b8:11:11:
1a:84:5c:8d:ee:75:16:79:51:81:ae:67:82:41:d8:
30:1d:62:cf:44:81:25:bc:ee:a3:e4:79:88:42:2c:
4e:1d:de:4c:db:f6:df:2b:d3:83:e5:db:e9:7b:e9:
45:39:d4:9c:da:33:56:8d:12:8d:8f:b2:a5:aa:10:
d7:ad:c1:36:c8:8a:5e:3d:0b:40:6f:6c:1b:51:1e:
70:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:06:1E:D4:E1:D6:7F:2F:9B:D1:E4:9D:7F:E8:CF:5E:5B:12:FB:EE
X509v3 Authority Key Identifier:
keyid:BF:42:B8:4B:AE:ED:C2:C4:63:DE:37:FA:4D:14:62:47:F3:E1:4B:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v0K4S67twsRj3jf6TRRiR_PhS6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/cda7c2-807f-4323-b3d7-962fe097f4b1/1/DgYe1OHWfy-b0eSdf-jPXlsS--4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/cda7c2-807f-4323-b3d7-962fe097f4b1/1/v0K4S67twsRj3jf6TRRiR_PhS6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.112.160.0/21
Signature Algorithm: sha256WithRSAEncryption
90:3f:58:bd:b5:0e:a2:c2:c8:b1:7c:0c:15:60:89:a6:de:5e:
ee:69:61:9c:b4:93:2f:d7:61:3a:e5:5c:1e:53:2c:29:2c:1b:
3d:5a:8f:17:78:43:d3:71:f2:11:23:63:5b:c7:94:c5:84:a4:
5f:b6:4e:65:69:b5:7a:40:02:2c:9d:79:e8:4e:34:dc:15:56:
98:cb:30:9f:71:9a:54:63:7c:5b:a4:1d:b8:15:c5:a9:2b:68:
16:23:75:dd:c4:ec:50:80:74:d6:f9:0c:1c:88:94:ae:80:48:
b9:5c:fc:02:c4:c7:ba:d9:15:53:7f:aa:1c:a0:27:9d:ea:a6:
ba:74:8e:e2:72:ac:4d:4f:37:61:ad:15:78:46:1d:c5:f3:65:
c4:e6:13:f2:a5:b5:d5:0b:7e:d3:d1:d6:12:14:0e:4f:78:f6:
09:ec:18:c6:78:ab:3a:e7:84:27:76:ae:ab:0f:b8:c3:3c:4b:
33:16:e6:f5:73:21:16:a4:37:ec:5e:a3:bd:d9:5a:31:fd:0c:
92:70:7a:fd:bf:b3:e0:d9:9c:50:63:98:62:84:aa:c8:69:4c:
bc:90:ef:54:41:1d:97:d3:bb:cf:8a:b9:90:2c:59:9e:ef:a0:
2c:e3:e7:0e:3a:01:cc:23:b7:fd:d1:95:8c:45:85:f8:77:07:
d9:35:90:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:43 2024 by rpki-client on console.sobornost.net