Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/b0dcda-a37e-4703-8d5a-9aad903a7276/1/VDuRKIk3FvRuhs6nLELOnZt5pEM.roa
File: VDuRKIk3FvRuhs6nLELOnZt5pEM.roa (raw, json)
Hash identifier: fdxZmgnMkblsPEW+1omu0FmwzSTuwSI+0xVFwKuZx7Q=
Subject key identifier: 54:3B:91:28:89:37:16:F4:6E:86:CE:A7:2C:42:CE:9D:9B:79:A4:43
Certificate issuer: /CN=ca09149f34784f5b202c56761b01d35dd02569cd
Certificate serial: 019146BC208DD85FB7BFAE22C73A9052521C
Authority key identifier: CA:09:14:9F:34:78:4F:5B:20:2C:56:76:1B:01:D3:5D:D0:25:69:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ygkUnzR4T1sgLFZ2GwHTXdAlac0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/b0dcda-a37e-4703-8d5a-9aad903a7276/1/VDuRKIk3FvRuhs6nLELOnZt5pEM.roa
Signing time: Mon 12 Aug 2024 13:16:59 +0000
ROA not before: Mon 12 Aug 2024 13:16:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206855
IP address blocks: 185.136.24.0/22 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:46:bc:20:8d:d8:5f:b7:bf:ae:22:c7:3a:90:52:52:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca09149f34784f5b202c56761b01d35dd02569cd
Validity
Not Before: Aug 12 13:16:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=543b9128893716f46e86cea72c42ce9d9b79a443
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:44:2e:bb:9a:55:4c:cb:09:e3:95:57:dd:3e:
b3:6e:f8:d2:75:85:73:68:4b:fc:ee:c4:df:ce:b9:
4a:3b:15:87:c8:22:10:81:1a:50:ad:9e:55:43:27:
50:bf:41:2a:f7:5e:2c:37:ac:3d:38:29:60:92:f2:
58:b3:d7:a9:c3:66:31:7b:bf:bf:94:39:72:ca:d3:
95:3f:ef:f2:b1:a1:a6:80:e5:e8:41:e3:90:37:48:
50:c8:38:c6:c0:94:ab:8e:a2:32:b5:e4:37:1f:81:
f6:87:ab:76:f0:0a:2f:5c:f1:35:29:d0:2c:d1:f1:
47:4f:7d:cb:a1:79:4f:95:32:3e:c9:15:bf:89:51:
c4:1e:fa:2d:18:5b:02:97:e6:23:16:83:31:f5:af:
35:84:ce:7a:1c:99:1c:2c:bf:8e:ab:0a:fb:a9:21:
fa:3b:3f:0f:9f:91:6b:9a:4a:fb:b0:4f:ed:32:4c:
fd:b9:90:3e:6d:c8:75:5c:1e:76:f5:1d:81:c7:06:
9b:40:da:4b:d9:0a:f4:38:13:e9:1a:36:70:81:97:
31:cd:de:1f:7d:19:07:57:a3:46:d9:4c:e2:46:1a:
f2:3a:7e:96:40:3a:79:20:04:16:ba:d4:3c:bd:73:
ce:55:78:3e:e7:1e:51:f7:d5:a7:77:6e:12:d6:d2:
6d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:3B:91:28:89:37:16:F4:6E:86:CE:A7:2C:42:CE:9D:9B:79:A4:43
X509v3 Authority Key Identifier:
keyid:CA:09:14:9F:34:78:4F:5B:20:2C:56:76:1B:01:D3:5D:D0:25:69:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ygkUnzR4T1sgLFZ2GwHTXdAlac0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/b0dcda-a37e-4703-8d5a-9aad903a7276/1/VDuRKIk3FvRuhs6nLELOnZt5pEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/b0dcda-a37e-4703-8d5a-9aad903a7276/1/ygkUnzR4T1sgLFZ2GwHTXdAlac0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.136.24.0/22
Signature Algorithm: sha256WithRSAEncryption
29:82:59:fe:15:95:c2:7c:77:3e:62:ac:fd:43:9e:c9:2d:68:
85:6d:35:74:1b:e7:ca:c2:fd:20:2a:af:aa:42:a7:d2:3a:04:
96:81:80:5a:7a:ac:4d:87:24:db:e7:19:54:7a:cb:c3:6b:7e:
9d:b4:14:07:ea:59:89:1b:1e:52:5d:3a:82:ad:c9:a7:33:74:
66:fc:99:7b:fa:b2:a6:19:a2:8a:f4:80:7c:14:e7:8f:27:2b:
c9:8f:10:c4:39:15:6a:4f:59:1b:12:4a:f0:e3:f9:f4:25:93:
50:bc:1d:bb:53:ca:4e:62:0c:bd:96:64:de:fd:9a:33:e6:69:
2e:f9:94:7f:37:10:ce:94:b6:6e:b6:04:d4:13:fd:68:ff:c7:
7d:59:79:52:52:0e:22:5d:28:01:aa:ef:bf:0f:a6:27:34:c2:
51:7b:ac:59:07:a4:14:bd:ce:89:d6:f6:f7:e0:eb:be:68:d0:
76:62:c8:2e:c6:a1:a4:6d:be:b7:ca:c6:7a:a2:fe:4d:d5:7d:
c4:36:81:c8:21:a4:08:23:28:3e:49:f7:ae:c9:63:a9:aa:09:
6b:40:ca:35:77:a3:d2:6b:10:56:6b:1f:3b:9e:71:3f:f7:75:
77:0f:19:56:94:c7:c9:2a:eb:83:87:8b:43:19:4e:f0:5d:26:
72:e3:07:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:50 2024 by rpki-client on console.sobornost.net