Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/84ac87-869e-4266-a759-eb6e2c13e340/1/CQ3l8asJHg3x6TTYG6VqrBN_IWk.roa
File: CQ3l8asJHg3x6TTYG6VqrBN_IWk.roa (raw, json)
Hash identifier: 09zuXIraK1ASiwvjac4WElFFvNUWxy6XT+7X94zhNDw=
Subject key identifier: 09:0D:E5:F1:AB:09:1E:0D:F1:E9:34:D8:1B:A5:6A:AC:13:7F:21:69
Certificate issuer: /CN=669fb61f94b679dce9855754f2aa8424d23d6952
Certificate serial: 04466B03
Authority key identifier: 66:9F:B6:1F:94:B6:79:DC:E9:85:57:54:F2:AA:84:24:D2:3D:69:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zp-2H5S2edzphVdU8qqEJNI9aVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/84ac87-869e-4266-a759-eb6e2c13e340/1/CQ3l8asJHg3x6TTYG6VqrBN_IWk.roa
Signing time: Sat 01 Jan 2022 15:00:19 +0000
ROA not before: Sat 01 Jan 2022 15:00:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31448
IP address blocks: 194.106.208.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71723779 (0x4466b03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=669fb61f94b679dce9855754f2aa8424d23d6952
Validity
Not Before: Jan 1 15:00:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=090de5f1ab091e0df1e934d81ba56aac137f2169
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:64:2f:f1:50:ae:88:f0:78:7f:c0:30:d5:74:
f9:dc:8a:d0:b5:43:7a:bb:5b:e2:ec:87:34:ee:32:
d4:a6:f8:0d:dd:6a:b3:5c:a7:be:a1:e2:b0:eb:b0:
61:0c:6d:fe:f6:d9:77:4e:5e:d4:9b:b7:f0:28:04:
d4:bd:90:81:c8:80:27:42:9b:a7:1e:63:c8:4b:e5:
9b:8e:9c:3c:24:2d:60:02:07:0c:11:b3:57:e6:eb:
3a:18:34:6f:b5:b7:f5:e6:60:4b:77:76:3a:3b:47:
54:d7:64:7f:12:6a:9b:ac:c6:b1:5d:64:76:ef:bf:
d6:f1:c2:98:03:0d:3a:26:53:80:d4:92:0a:7b:4c:
21:e1:74:b7:66:36:b4:11:b6:41:61:39:11:03:2f:
6f:35:1a:cc:28:d1:dd:0e:eb:c8:10:a1:5e:9f:48:
38:eb:1b:d3:0a:22:d6:32:61:91:c3:ed:db:09:95:
c7:99:ad:4f:2f:77:ef:7c:d5:ef:f4:fc:3b:e1:f0:
30:60:da:86:cf:3a:5b:75:c9:0f:b2:92:70:e4:6e:
90:4b:11:d4:4d:a9:a0:39:ed:fb:78:e5:53:49:29:
4a:ac:32:62:21:bf:3f:bb:13:dd:4c:ec:cd:72:9a:
63:a5:4e:96:94:40:f7:83:28:75:b8:39:4c:70:1b:
30:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:0D:E5:F1:AB:09:1E:0D:F1:E9:34:D8:1B:A5:6A:AC:13:7F:21:69
X509v3 Authority Key Identifier:
keyid:66:9F:B6:1F:94:B6:79:DC:E9:85:57:54:F2:AA:84:24:D2:3D:69:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zp-2H5S2edzphVdU8qqEJNI9aVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/84ac87-869e-4266-a759-eb6e2c13e340/1/CQ3l8asJHg3x6TTYG6VqrBN_IWk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/84ac87-869e-4266-a759-eb6e2c13e340/1/Zp-2H5S2edzphVdU8qqEJNI9aVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.106.208.0/23
Signature Algorithm: sha256WithRSAEncryption
40:35:42:44:15:59:61:a1:bc:db:20:4a:24:e7:20:7b:ba:37:
4e:50:18:ed:50:33:f4:74:f3:b9:f0:44:a3:e5:c6:03:26:f4:
6c:6c:f0:c1:3f:8f:b7:18:fe:68:71:a5:9d:6b:da:9d:11:8d:
fb:19:cf:33:44:dd:08:38:74:aa:50:0d:99:b5:7f:c9:3b:35:
d7:5a:8c:a4:da:52:13:0f:a5:ff:c9:2c:dd:8f:14:68:0b:a3:
4e:d2:2b:0f:6f:7c:07:2c:fe:49:22:c5:3d:73:cf:e4:3f:10:
83:7f:a9:35:5a:07:41:2d:a6:b0:73:d1:3a:8e:ba:20:e5:68:
8c:e7:f3:fa:d3:54:f3:6b:f0:fa:2e:7a:65:6f:33:dd:a2:fe:
9e:68:fd:9e:e1:ff:75:ef:91:fa:f7:a7:b5:59:76:15:e6:ed:
c3:3d:4d:9a:f3:56:57:16:77:84:40:a2:a0:07:02:c1:96:eb:
8f:8c:0a:99:e2:ac:ca:66:40:16:11:1f:3b:47:89:7d:8f:7f:
6e:03:99:00:7b:21:c4:a6:96:88:72:b4:b4:c9:3c:3e:e0:90:
f1:a2:bb:85:4c:ae:b1:d4:37:33:dc:b8:3e:0b:92:b6:3b:57:
bf:b5:37:85:e0:9c:9a:a7:c2:9a:1e:ea:30:59:2f:f3:41:f2:
35:c9:fd:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:40 2023 by rpki-client on console.sobornost.net