Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/6bbb62-a915-41af-887f-99e65d1cca64/1/TDSrLGqoXMHvDHsfCVgDPJfSel0.roa
File: TDSrLGqoXMHvDHsfCVgDPJfSel0.roa (raw, json)
Hash identifier: FVbAezXQjOfIDAgGC1Vkn5+tBjxCF9snF2Vg3d/N1bA=
Subject key identifier: 4C:34:AB:2C:6A:A8:5C:C1:EF:0C:7B:1F:09:58:03:3C:97:D2:7A:5D
Certificate issuer: /CN=33c676946369f548ce6218fe473f3da4d1a5d1a8
Certificate serial: 018CC424A4275AE8C0059064F46C98CA9621
Authority key identifier: 33:C6:76:94:63:69:F5:48:CE:62:18:FE:47:3F:3D:A4:D1:A5:D1:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M8Z2lGNp9UjOYhj-Rz89pNGl0ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/6bbb62-a915-41af-887f-99e65d1cca64/1/TDSrLGqoXMHvDHsfCVgDPJfSel0.roa
Signing time: Mon 01 Jan 2024 08:29:44 +0000
ROA not before: Mon 01 Jan 2024 08:29:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204978
IP address blocks: 92.118.80.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:a4:27:5a:e8:c0:05:90:64:f4:6c:98:ca:96:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33c676946369f548ce6218fe473f3da4d1a5d1a8
Validity
Not Before: Jan 1 08:29:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4c34ab2c6aa85cc1ef0c7b1f0958033c97d27a5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:f7:8b:bc:18:ad:62:94:64:77:9e:95:00:72:
e9:ee:e8:cd:5f:98:df:9e:da:b7:e7:53:0f:fa:c3:
4d:e2:46:62:07:57:a5:5f:82:78:2f:e7:30:77:8f:
1e:42:9d:70:9d:48:15:ed:b8:d5:52:90:d2:a1:40:
63:61:18:55:1a:ea:d1:e1:1b:63:75:65:3a:00:59:
1a:fe:c5:38:da:fa:c7:c3:ac:ed:ed:e9:49:3a:35:
c9:e7:24:17:04:26:85:c3:47:a8:34:80:c5:a7:f7:
11:b8:0f:cb:39:c3:4a:b0:3d:49:14:31:24:0a:55:
cc:d1:4d:11:18:47:1b:20:c4:d7:0b:b7:5c:be:d3:
62:64:05:a3:4d:89:8d:4d:7d:bf:7f:46:19:9e:c9:
1e:17:4b:63:15:04:be:de:31:52:80:d0:38:32:c6:
5b:4a:fc:01:a9:49:20:a9:96:57:4c:f5:3a:7e:da:
eb:d7:27:dc:8b:55:61:bb:cd:d7:ac:60:46:04:24:
7c:93:d4:4e:b5:b0:19:27:39:27:9e:d1:09:70:f4:
10:57:42:f7:5c:16:8b:46:04:09:4a:89:81:7f:4d:
06:7a:0a:59:91:25:fa:e9:1c:b5:b0:5e:46:0b:d7:
88:17:79:da:0b:7f:1a:db:2b:09:86:f0:59:c4:0f:
d2:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:34:AB:2C:6A:A8:5C:C1:EF:0C:7B:1F:09:58:03:3C:97:D2:7A:5D
X509v3 Authority Key Identifier:
keyid:33:C6:76:94:63:69:F5:48:CE:62:18:FE:47:3F:3D:A4:D1:A5:D1:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M8Z2lGNp9UjOYhj-Rz89pNGl0ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/6bbb62-a915-41af-887f-99e65d1cca64/1/TDSrLGqoXMHvDHsfCVgDPJfSel0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/6bbb62-a915-41af-887f-99e65d1cca64/1/M8Z2lGNp9UjOYhj-Rz89pNGl0ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.118.80.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:c2:b0:e4:16:fc:17:8f:c0:ca:10:5f:22:2e:d7:50:92:53:
87:b4:43:2c:c7:8b:21:aa:57:82:fa:2e:d0:d8:8d:59:46:61:
e1:4e:3a:75:63:be:0e:6c:66:40:6c:71:21:93:94:92:3f:f3:
c4:0b:06:cb:f6:ad:5b:14:84:93:1c:e4:93:22:7d:01:57:eb:
b4:31:7b:e0:5b:89:31:17:f2:5c:c0:9a:80:43:38:a9:b2:fd:
38:91:8a:3a:b5:59:e1:a3:87:2c:57:55:1f:71:ab:a3:b0:20:
e0:33:9e:58:fc:e9:7f:f1:10:fa:e3:e0:0b:0e:e2:b8:a9:36:
21:1b:78:7e:ac:e0:00:c5:95:cc:42:3e:d7:01:38:ee:2d:4f:
06:1b:91:dd:06:45:79:a1:05:42:eb:cb:d1:bd:35:46:1c:1a:
16:de:e1:f0:0b:3d:17:79:84:c4:2a:c2:94:26:fe:bb:25:50:
85:98:dd:7a:ea:48:83:43:8f:b5:6f:e5:dd:29:ff:d5:0b:80:
40:af:64:a1:93:9b:84:82:33:34:38:82:a7:2c:0a:c5:95:39:
ab:bb:85:aa:09:51:8e:9b:09:d4:f4:29:40:1e:12:d2:5e:33:
c3:e8:8c:31:7d:c4:8f:30:1c:96:38:01:de:ea:40:df:3b:c1:
1f:5a:65:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 11 06:10:27 2024 by rpki-client on console.sobornost.net