Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/42eb36-81a5-49cf-9b46-10c54f95a9d2/1/Gq2-jlk41YxEWOZ5owuXSs_CBaU.roa
File: Gq2-jlk41YxEWOZ5owuXSs_CBaU.roa (raw, json)
Hash identifier: G1RuYwkiojfs+OHAAm3AtxzBqAAC1qPYe9bRbbW3p9I=
Subject key identifier: 1A:AD:BE:8E:59:38:D5:8C:44:58:E6:79:A3:0B:97:4A:CF:C2:05:A5
Certificate issuer: /CN=f58f0651a90aecf91a42c3cc9fcb95af95ed9171
Certificate serial: 01877447B1E9137ADBBA3E4E53CBB2D2102D
Authority key identifier: F5:8F:06:51:A9:0A:EC:F9:1A:42:C3:CC:9F:CB:95:AF:95:ED:91:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Y8GUakK7PkaQsPMn8uVr5XtkXE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/42eb36-81a5-49cf-9b46-10c54f95a9d2/1/Gq2-jlk41YxEWOZ5owuXSs_CBaU.roa
Signing time: Wed 12 Apr 2023 07:04:28 +0000
ROA not before: Wed 12 Apr 2023 07:04:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211415
IP address blocks: 188.244.121.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:74:47:b1:e9:13:7a:db:ba:3e:4e:53:cb:b2:d2:10:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f58f0651a90aecf91a42c3cc9fcb95af95ed9171
Validity
Not Before: Apr 12 07:04:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1aadbe8e5938d58c4458e679a30b974acfc205a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:be:30:e9:51:68:66:5e:b6:cc:f8:db:38:19:
eb:e2:ce:13:c4:7e:96:17:a4:c0:a0:ee:28:ab:eb:
9a:f1:4f:bb:0f:4c:82:e9:49:6a:e8:cc:55:99:67:
99:64:ad:35:e6:c0:d3:e8:08:99:8e:fe:8a:1a:68:
fc:08:ee:ee:13:32:60:5a:50:47:c2:9a:11:74:07:
5b:42:1b:8d:df:cf:bb:80:62:db:56:58:fc:78:e7:
d7:ee:85:81:6a:8a:9c:7c:78:02:af:23:2a:cb:ba:
cd:0c:d8:e0:e6:a0:5d:97:46:f8:d8:0e:d8:db:7b:
5d:a4:e1:0f:9a:87:c1:a1:e6:0c:24:83:80:a0:7a:
cf:75:8b:6b:0a:1d:ca:74:a2:58:92:ac:2b:9a:b0:
a0:9c:ff:04:9a:cf:40:76:ae:c7:e5:48:17:36:2c:
1f:73:4c:1e:ec:e3:70:a4:8c:70:f3:f9:0d:2e:f9:
dd:01:10:9e:30:f3:26:02:25:a7:b2:3c:3c:5b:31:
d6:96:1c:af:2b:2c:84:0a:ad:2e:f4:46:b4:29:73:
af:42:e7:99:d9:65:b5:22:21:f9:dc:13:cc:a3:2d:
ad:58:e9:4f:ec:e1:38:96:2b:73:c8:0f:69:2e:9d:
c7:73:b0:6c:75:8e:f7:ee:00:25:11:e4:0d:00:60:
f0:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:AD:BE:8E:59:38:D5:8C:44:58:E6:79:A3:0B:97:4A:CF:C2:05:A5
X509v3 Authority Key Identifier:
keyid:F5:8F:06:51:A9:0A:EC:F9:1A:42:C3:CC:9F:CB:95:AF:95:ED:91:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Y8GUakK7PkaQsPMn8uVr5XtkXE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/42eb36-81a5-49cf-9b46-10c54f95a9d2/1/Gq2-jlk41YxEWOZ5owuXSs_CBaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/42eb36-81a5-49cf-9b46-10c54f95a9d2/1/9Y8GUakK7PkaQsPMn8uVr5XtkXE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.244.121.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:92:6e:3b:ee:f3:0b:f1:25:ae:8c:05:2d:92:e6:b4:eb:72:
b5:b6:c4:cd:3f:4b:c7:44:9a:4c:57:00:ff:bb:60:c3:40:34:
65:37:aa:6c:c7:34:4f:1f:b8:27:f5:00:21:4e:fe:72:e0:cb:
24:cc:58:dc:8f:ed:d6:5f:33:99:cb:b7:82:c8:fe:5e:dd:b8:
da:a5:e5:1e:df:d0:a0:2a:fe:21:aa:0a:d9:17:91:e6:84:40:
61:51:12:cf:be:db:32:be:0d:ab:2f:81:e5:fb:b4:a0:04:ea:
1f:f7:74:58:9a:cf:5a:d8:35:55:2f:11:29:53:d4:b0:9a:1f:
f6:70:13:80:b5:d0:9b:cd:60:8f:01:64:e8:c3:fc:1a:a6:ea:
c7:21:f4:f1:40:8a:1b:3e:e4:ae:b4:f1:4d:91:c7:5e:d8:4b:
9a:f3:77:50:d7:5c:4b:64:63:3e:85:e4:63:19:92:04:24:bf:
38:e5:d0:d1:03:39:ce:46:bb:0e:3d:01:44:f5:f8:7b:0c:ea:
95:8c:bb:84:ca:27:53:ff:c3:79:bd:fb:8f:d5:79:3c:4f:1b:
5f:01:0d:89:72:87:21:dd:e6:3e:28:3e:c2:68:3e:c0:3e:6e:
74:40:2a:ca:0a:2d:1e:4e:58:9b:d7:04:0e:5f:13:4f:1b:8f:
32:aa:03:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:20 2023 by rpki-client on console.sobornost.net