Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/ccb162-949b-4837-b580-cf51d8e4c14b/1/d_HBu2xcUg4qKSSpoCI_NX06SUc.roa
File: d_HBu2xcUg4qKSSpoCI_NX06SUc.roa (raw, json)
Hash identifier: JOccG4jr7Wb5CjePQOsECcEy0uF1RgFeCfHSMl/aD2k=
Subject key identifier: 77:F1:C1:BB:6C:5C:52:0E:2A:29:24:A9:A0:22:3F:35:7D:3A:49:47
Certificate issuer: /CN=99e87d564ccb8611e140a7b2bf260c4a222b59d6
Certificate serial: 018CC4245EDE1EC5D0F4C0521521E5F0FE30
Authority key identifier: 99:E8:7D:56:4C:CB:86:11:E1:40:A7:B2:BF:26:0C:4A:22:2B:59:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/meh9VkzLhhHhQKeyvyYMSiIrWdY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/ccb162-949b-4837-b580-cf51d8e4c14b/1/d_HBu2xcUg4qKSSpoCI_NX06SUc.roa
Signing time: Mon 01 Jan 2024 08:29:27 +0000
ROA not before: Mon 01 Jan 2024 08:29:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48893
IP address blocks: 195.114.16.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:5e:de:1e:c5:d0:f4:c0:52:15:21:e5:f0:fe:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99e87d564ccb8611e140a7b2bf260c4a222b59d6
Validity
Not Before: Jan 1 08:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=77f1c1bb6c5c520e2a2924a9a0223f357d3a4947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:47:45:e2:c4:31:13:99:52:83:3d:e9:f3:a1:
3f:22:73:bb:e1:2c:77:54:a8:a7:0f:cb:cf:36:d1:
97:83:8e:5b:68:18:63:bf:6c:9a:cb:9b:f3:47:63:
b4:af:ab:57:53:0f:9d:57:be:2f:17:b6:46:5e:00:
7d:ef:82:ab:9b:40:64:77:9a:5d:62:84:52:1f:11:
33:8d:c4:f9:36:ae:58:c4:43:86:07:e4:a8:9b:e2:
73:44:7e:81:21:6e:79:20:43:5e:3f:94:59:7b:de:
f4:50:04:bc:04:ea:3a:c0:e9:b7:e3:97:f3:3e:2f:
8f:c2:4c:c1:a3:11:79:06:97:0c:1e:b9:f6:0a:7b:
cb:e9:29:06:aa:55:14:21:f1:3a:56:01:1e:42:67:
ce:6b:a7:e7:18:fc:9b:ad:30:c3:86:8a:81:6a:54:
b0:af:b6:09:a3:6b:ac:a0:ee:c1:5c:8e:2e:ec:f1:
f2:2d:3d:59:13:99:17:c8:c8:f4:79:3d:6a:ee:4d:
ff:8a:64:19:66:f9:cb:83:5b:2d:b3:91:27:37:af:
39:86:2d:e2:eb:f7:76:11:f9:e6:74:e0:78:96:01:
da:92:8c:f4:0e:73:55:d0:ad:94:05:a6:23:08:87:
dc:33:72:2c:86:97:26:84:c3:a9:c9:7a:ec:60:80:
9e:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:F1:C1:BB:6C:5C:52:0E:2A:29:24:A9:A0:22:3F:35:7D:3A:49:47
X509v3 Authority Key Identifier:
keyid:99:E8:7D:56:4C:CB:86:11:E1:40:A7:B2:BF:26:0C:4A:22:2B:59:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/meh9VkzLhhHhQKeyvyYMSiIrWdY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ccb162-949b-4837-b580-cf51d8e4c14b/1/d_HBu2xcUg4qKSSpoCI_NX06SUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ccb162-949b-4837-b580-cf51d8e4c14b/1/meh9VkzLhhHhQKeyvyYMSiIrWdY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.114.16.0/23
Signature Algorithm: sha256WithRSAEncryption
38:94:90:62:9e:a8:c9:2e:52:68:e7:92:41:59:9a:0c:b3:c6:
0a:a6:23:b4:9c:bc:d7:05:10:28:9d:ab:94:a3:59:8c:1f:32:
8e:cb:36:cf:41:14:0d:e4:e9:a6:10:43:66:65:a1:e8:00:e4:
7f:ae:02:d3:7b:3f:78:ee:8f:10:39:8b:00:35:b6:1f:3d:80:
c9:3d:5f:76:a3:b2:7f:47:8a:93:ab:13:09:9e:53:5e:58:9f:
c0:e5:39:ed:91:cd:51:f9:e7:56:c9:f2:2d:d7:e8:7d:c2:f5:
36:e1:5b:87:17:c5:ae:ca:7f:7f:7b:f0:69:7f:b2:52:af:9d:
a4:d2:9b:30:79:97:7d:a6:a9:a8:1b:11:67:66:0f:eb:96:9a:
ad:65:88:27:52:8c:b5:0a:c1:d7:7d:db:66:29:05:93:e4:89:
0b:dc:9f:c6:76:c6:fa:d2:78:a4:0a:fa:6b:1f:3b:90:f5:6d:
5c:0f:4e:b1:2d:25:82:94:44:94:2a:db:bf:47:40:96:a1:83:
6a:50:91:20:f3:10:07:e7:e2:82:b1:4a:0d:f7:74:e6:48:ea:
09:25:46:d3:60:4d:fb:75:17:72:11:42:e4:8a:d4:ab:ff:2a:
31:da:2c:7d:d9:ea:c2:2e:b3:d4:dc:a1:6f:48:eb:b6:bb:b5:
03:c3:50:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:53 2024 by rpki-client on console.sobornost.net