Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/8420e6-8c3e-4ccb-b143-e7acf941f375/1/i2m2rdjlvJiih-CPYLfAFqvrhc0.roa
File: i2m2rdjlvJiih-CPYLfAFqvrhc0.roa (raw, json)
Hash identifier: s28UOn9M+Ypox41oSTeqYKyVQT0vQgVR0JybrTaKzfY=
Subject key identifier: 8B:69:B6:AD:D8:E5:BC:98:A2:87:E0:8F:60:B7:C0:16:AB:EB:85:CD
Certificate issuer: /CN=8f3f9e7ffe8858387ed1b3a7eca76205ef0e21f6
Certificate serial: 018CC4939C2CE2D4AEF4D31215C22D668218
Authority key identifier: 8F:3F:9E:7F:FE:88:58:38:7E:D1:B3:A7:EC:A7:62:05:EF:0E:21:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jz-ef_6IWDh-0bOn7KdiBe8OIfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/8420e6-8c3e-4ccb-b143-e7acf941f375/1/i2m2rdjlvJiih-CPYLfAFqvrhc0.roa
Signing time: Mon 01 Jan 2024 10:30:57 +0000
ROA not before: Mon 01 Jan 2024 10:30:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2200
IP address blocks: 134.206.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:9c:2c:e2:d4:ae:f4:d3:12:15:c2:2d:66:82:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3f9e7ffe8858387ed1b3a7eca76205ef0e21f6
Validity
Not Before: Jan 1 10:30:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8b69b6add8e5bc98a287e08f60b7c016abeb85cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:65:f7:3a:08:80:e0:ac:07:04:30:71:21:71:
f0:7e:88:16:31:8b:9e:15:b9:00:63:0e:cf:02:c6:
27:18:ee:3f:84:2d:d4:cc:4a:2a:5b:70:e0:87:71:
21:14:6d:d1:bf:6b:5c:48:ca:76:03:f0:4e:d7:5e:
a9:53:26:9c:86:a8:51:f3:41:5c:0b:d7:94:48:62:
e5:91:b5:c8:bb:5f:86:3c:51:69:46:1d:32:c5:bc:
bf:db:e2:08:da:68:7c:38:28:4f:5e:6e:b5:2f:b8:
e2:88:c1:91:ca:61:8b:70:4c:11:27:54:01:9f:0c:
da:34:e8:30:58:b9:ac:1d:36:17:5d:1c:dd:79:b0:
29:09:55:1b:56:b5:18:45:b3:8f:41:ae:d3:b3:9f:
e0:6e:bd:fa:19:9f:7e:49:e5:8b:1f:54:41:b1:a5:
94:26:d5:c6:be:a0:dd:b8:65:09:8c:29:1c:03:3e:
0d:87:26:ef:31:f5:64:97:fc:39:3c:b8:c6:3b:ea:
c0:76:6e:f4:09:0f:f0:01:e8:50:eb:81:92:02:5d:
60:81:c2:2d:01:31:ff:b3:fd:66:ca:04:80:fd:64:
5b:c6:6b:0b:a7:66:e2:70:b2:39:f4:af:1d:e5:1e:
d1:90:d8:9c:74:e1:35:19:86:0f:27:74:fb:5f:b7:
ec:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:69:B6:AD:D8:E5:BC:98:A2:87:E0:8F:60:B7:C0:16:AB:EB:85:CD
X509v3 Authority Key Identifier:
keyid:8F:3F:9E:7F:FE:88:58:38:7E:D1:B3:A7:EC:A7:62:05:EF:0E:21:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jz-ef_6IWDh-0bOn7KdiBe8OIfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/8420e6-8c3e-4ccb-b143-e7acf941f375/1/i2m2rdjlvJiih-CPYLfAFqvrhc0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/8420e6-8c3e-4ccb-b143-e7acf941f375/1/jz-ef_6IWDh-0bOn7KdiBe8OIfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.206.0.0/16
Signature Algorithm: sha256WithRSAEncryption
4e:c2:cd:32:a7:52:c9:c4:7a:38:b7:4e:72:7c:5b:3b:98:33:
a4:8b:3e:18:33:2c:7d:85:18:14:58:40:d3:03:c7:7f:d3:d7:
9b:48:45:bf:24:a9:ac:c1:19:46:16:0d:8e:c3:ff:78:23:c1:
1b:ff:c1:a8:3e:d0:b2:ec:2c:5b:4e:c8:0f:56:0f:d0:c8:70:
af:2f:ce:e6:51:58:c5:13:b6:4f:4e:c9:63:2d:b5:59:7b:e2:
41:f5:0c:ac:2f:c5:29:d7:7e:18:27:f9:6e:0f:ad:63:88:eb:
22:f4:76:60:10:48:9f:d2:97:05:e9:bb:03:56:a4:7e:ee:a9:
b9:e0:0d:66:35:9e:99:eb:ff:01:4b:4c:31:f8:e8:41:5d:b0:
cb:97:ed:8f:6e:0e:b5:d7:c9:b0:03:e0:e9:73:9a:02:b0:b8:
ad:23:e1:70:fd:74:ac:6a:07:33:fd:3b:1d:59:b7:3c:4c:d1:
9e:e6:ce:65:02:cc:66:f9:0b:a2:fe:88:de:6d:21:16:f3:8f:
d9:c9:68:6a:a5:d7:c9:98:ef:02:d6:78:75:c8:d5:cd:fc:2d:
56:3f:d5:46:0a:39:f3:b5:07:8a:7a:a7:26:f3:f2:8b:75:2e:
10:43:10:cf:f9:2b:51:54:4e:2b:2b:a1:58:d3:20:c6:d1:32:
13:91:2d:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:53 2024 by rpki-client on console.sobornost.net