Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/B-pk-YlXIg4aZp6IG9Cc3sfSTm0.roa
File: B-pk-YlXIg4aZp6IG9Cc3sfSTm0.roa (raw, json)
Hash identifier: roYN9p8ivMsLa9Xru5FwqaWmiew/jH1G33/BFB9WkO4=
Subject key identifier: 07:EA:64:F9:89:57:22:0E:1A:66:9E:88:1B:D0:9C:DE:C7:D2:4E:6D
Certificate issuer: /CN=ad9681f144db1430ac315c8306e1c14730c5fec2
Certificate serial: 0193F2E6629EDBA415EE36B62A9E25A39BFD
Authority key identifier: AD:96:81:F1:44:DB:14:30:AC:31:5C:83:06:E1:C1:47:30:C5:FE:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rZaB8UTbFDCsMVyDBuHBRzDF_sI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/B-pk-YlXIg4aZp6IG9Cc3sfSTm0.roa
Signing time: Mon 23 Dec 2024 09:43:25 +0000
ROA not before: Mon 23 Dec 2024 09:43:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44889
IP address blocks: 78.157.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:f2:e6:62:9e:db:a4:15:ee:36:b6:2a:9e:25:a3:9b:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad9681f144db1430ac315c8306e1c14730c5fec2
Validity
Not Before: Dec 23 09:43:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=07ea64f98957220e1a669e881bd09cdec7d24e6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:66:43:e2:8e:22:bb:c7:c3:44:dc:73:94:af:
94:0e:93:db:4e:31:6c:e9:17:5d:5a:19:74:a6:ed:
51:4e:dc:49:7c:68:41:9f:a8:cb:14:5d:98:f4:e7:
79:83:44:ec:e3:bb:50:12:b5:d3:2f:80:73:35:d0:
6b:0e:ce:fc:bd:aa:05:27:c7:4a:08:e8:35:33:cb:
8b:3e:c0:33:49:cf:1a:5c:55:a4:c7:30:8e:86:03:
13:70:8e:92:63:f6:52:8e:ad:dc:46:01:53:40:52:
d4:40:fa:67:a7:88:e8:7a:fa:ff:10:c0:02:92:cf:
e6:33:49:6a:af:e3:27:ec:21:a0:e4:d4:0c:27:72:
6f:bb:e1:19:ba:e4:87:4d:a7:70:49:9f:68:aa:85:
40:62:69:81:9f:29:59:82:cd:91:c6:35:4e:20:fe:
83:9a:1b:67:62:81:7e:92:25:99:0d:b4:10:cf:bf:
7e:c0:ba:19:f8:57:2c:36:db:80:d5:37:07:20:63:
35:d5:a1:7e:e6:b5:bc:62:48:29:6c:f9:a9:43:a8:
96:50:30:b8:bb:cd:68:ec:19:8b:0d:86:2b:17:c7:
07:97:05:c8:93:df:b8:2d:a8:36:79:16:07:af:5e:
94:e0:33:86:c3:00:09:54:71:e0:7c:40:92:f8:bd:
ef:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:EA:64:F9:89:57:22:0E:1A:66:9E:88:1B:D0:9C:DE:C7:D2:4E:6D
X509v3 Authority Key Identifier:
keyid:AD:96:81:F1:44:DB:14:30:AC:31:5C:83:06:E1:C1:47:30:C5:FE:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rZaB8UTbFDCsMVyDBuHBRzDF_sI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/B-pk-YlXIg4aZp6IG9Cc3sfSTm0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/rZaB8UTbFDCsMVyDBuHBRzDF_sI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.157.33.0/24
Signature Algorithm: sha256WithRSAEncryption
21:2a:97:9a:ae:7c:78:28:c7:64:87:9d:1c:6b:f5:7e:46:a4:
16:d2:05:c2:79:46:00:f8:d8:c1:a1:00:32:82:ed:23:16:28:
3d:ae:78:57:14:ef:fe:9b:00:30:c0:d7:85:97:59:f8:a2:9c:
0a:c3:52:f0:65:3f:18:d7:a6:71:5e:04:16:51:c3:93:49:9a:
b0:dc:f0:71:82:8a:53:0d:6e:9b:df:09:e9:e3:42:94:67:dd:
0d:ec:34:05:72:a6:a0:2a:79:cb:c9:d0:59:e3:6d:3b:3a:d5:
46:d1:0d:57:26:48:53:36:58:4c:dd:6a:b7:b1:65:39:c6:79:
e0:bc:ef:6c:99:fa:a7:03:52:2d:c1:8a:29:01:da:80:ac:68:
fb:f6:a0:e1:63:25:cf:89:71:a4:16:45:60:d3:60:32:fe:94:
43:82:14:4b:12:4e:4d:69:c6:29:bf:60:0e:4d:74:2a:55:37:
ff:70:90:bb:f2:06:d2:d5:85:98:0a:8c:e1:d7:b1:37:af:4b:
3f:75:03:95:3b:6b:63:f9:d9:96:02:39:e4:e3:21:f4:2e:c0:
e5:d8:b1:14:2d:5a:52:2c:04:cc:9a:76:31:cf:a1:8e:f2:c3:
66:e8:f4:b5:87:e6:dd:01:6d:e6:f0:ec:a8:04:2a:93:3f:00:
10:59:c1:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:53 2024 by rpki-client on console.sobornost.net