Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/4728VxFF8FgXLIgH5bh5gVYDqAk.roa
File: 4728VxFF8FgXLIgH5bh5gVYDqAk.roa (raw, json)
Hash identifier: NOAzofdmgCfF4MqWho71gg/qVjGWqn8IsTOiN/MsRZQ=
Subject key identifier: E3:BD:BC:57:11:45:F0:58:17:2C:88:07:E5:B8:79:81:56:03:A8:09
Certificate issuer: /CN=56c8a1713c7476e00ed2b77fd98fd89330365d87
Certificate serial: 0193E03EAC92B9925567652927837BEFAD42
Authority key identifier: 56:C8:A1:71:3C:74:76:E0:0E:D2:B7:7F:D9:8F:D8:93:30:36:5D:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VsihcTx0duAO0rd_2Y_YkzA2XYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/4728VxFF8FgXLIgH5bh5gVYDqAk.roa
Signing time: Thu 19 Dec 2024 18:47:03 +0000
ROA not before: Thu 19 Dec 2024 18:47:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209625
IP address blocks: 84.238.133.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:e0:3e:ac:92:b9:92:55:67:65:29:27:83:7b:ef:ad:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56c8a1713c7476e00ed2b77fd98fd89330365d87
Validity
Not Before: Dec 19 18:47:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e3bdbc571145f058172c8807e5b879815603a809
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:df:cf:2a:30:60:e4:7d:50:16:9d:1c:48:04:
f1:4d:75:10:49:13:bd:f3:a8:14:66:3e:70:d6:ee:
a4:82:3d:82:27:3d:10:19:fe:f2:40:58:1c:61:77:
a5:6c:6c:f7:d2:26:a9:2c:49:98:ae:d8:a4:49:7e:
2a:be:2d:be:02:f6:0e:fa:6d:f8:0f:a8:05:8b:ce:
b8:12:1b:8a:96:68:5c:79:0c:b1:e5:80:c6:3d:60:
90:b6:79:52:1b:2e:f5:c4:18:bd:d6:e1:ac:26:51:
d9:7a:74:dc:2e:31:23:10:01:a6:1b:ca:14:25:7f:
b2:9d:d5:ac:22:e0:d2:0b:23:69:6e:d6:ca:d7:ab:
f3:5a:e4:37:31:ff:aa:e9:56:a7:da:97:d3:c9:58:
c6:5e:1d:61:ea:a0:65:60:d7:f0:27:21:68:43:d5:
b9:d0:e8:27:a9:ae:8a:1f:53:18:c8:f7:2a:72:c3:
f3:65:64:bb:10:d3:ce:57:ab:42:ae:de:1d:98:bf:
f0:85:0d:6e:6e:d3:45:30:a8:eb:43:b3:2a:28:b4:
46:d0:20:d2:37:82:dd:d2:8f:8f:50:d0:fa:1b:b6:
bc:ab:b0:d4:47:72:cd:af:d1:31:20:c3:2f:d2:a4:
4a:c6:82:0b:fb:c4:1f:ff:a2:97:2e:33:12:8d:cb:
9d:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:BD:BC:57:11:45:F0:58:17:2C:88:07:E5:B8:79:81:56:03:A8:09
X509v3 Authority Key Identifier:
keyid:56:C8:A1:71:3C:74:76:E0:0E:D2:B7:7F:D9:8F:D8:93:30:36:5D:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VsihcTx0duAO0rd_2Y_YkzA2XYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/4728VxFF8FgXLIgH5bh5gVYDqAk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/VsihcTx0duAO0rd_2Y_YkzA2XYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.238.133.0/24
Signature Algorithm: sha256WithRSAEncryption
af:c8:58:d2:a6:cd:3e:f7:f9:ab:f0:16:f5:dc:df:22:cc:f1:
10:6d:bf:2d:18:94:2a:a2:1c:f0:cf:e3:e5:6a:c5:d9:5d:f0:
03:a7:54:83:d2:8a:38:b8:b9:4c:14:20:54:61:ed:b2:c1:10:
53:d4:23:12:79:0d:fe:49:75:52:3e:1e:41:a3:6f:b3:0d:17:
73:8e:c9:94:dc:db:33:31:f9:cd:4b:56:bb:a6:2b:62:a5:71:
d7:8d:90:43:44:72:b2:7e:40:a4:3f:b5:b8:2e:a8:d4:2e:a8:
d2:0f:bb:4c:e5:16:a4:c2:94:4d:95:d6:01:8c:69:1d:2c:aa:
b2:34:bd:f3:1e:5f:09:4b:f3:46:60:bb:24:f3:af:25:8d:6a:
29:db:cc:41:f8:2f:b8:27:52:02:e6:3b:e6:89:b1:17:4c:30:
7d:0f:cc:01:49:f2:f7:9b:16:22:f2:15:1a:7f:7f:ab:3e:50:
fa:9f:d9:a9:ea:b5:e9:09:53:1c:78:93:41:77:f6:25:90:14:
13:4e:1c:0b:47:00:d9:88:c2:9b:27:b1:d5:be:b1:e5:8e:e9:
72:ca:e7:f6:fb:0a:4d:d6:9f:20:99:c6:80:d0:c7:82:40:68:
60:3f:fa:26:9b:4b:f1:9c:30:2e:2e:a1:44:73:20:59:04:ad:
ca:23:df:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:54 2024 by rpki-client on console.sobornost.net