Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/o9rIfGCgohyIZw2sylTuc5Y4fkI.roa
File: o9rIfGCgohyIZw2sylTuc5Y4fkI.roa (raw, json)
Hash identifier: qkImGke7Wdnfx/9AXhkEtSVIGHEU+YrLmV5ZsvKfA3c=
Subject key identifier: A3:DA:C8:7C:60:A0:A2:1C:88:67:0D:AC:CA:54:EE:73:96:38:7E:42
Certificate issuer: /CN=f0c104041691dc384f3b1a8cdf95c96628ea6daf
Certificate serial: 0190F9079F26204E77B53B4DD6D791F5796A
Authority key identifier: F0:C1:04:04:16:91:DC:38:4F:3B:1A:8C:DF:95:C9:66:28:EA:6D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8MEEBBaR3DhPOxqM35XJZijqba8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/o9rIfGCgohyIZw2sylTuc5Y4fkI.roa
Signing time: Sun 28 Jul 2024 11:09:04 +0000
ROA not before: Sun 28 Jul 2024 11:09:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204203
IP address blocks: 95.38.197.0/24 maxlen: 24
95.38.198.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:f9:07:9f:26:20:4e:77:b5:3b:4d:d6:d7:91:f5:79:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0c104041691dc384f3b1a8cdf95c96628ea6daf
Validity
Not Before: Jul 28 11:09:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a3dac87c60a0a21c88670dacca54ee7396387e42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f6:c0:7b:b9:b7:dc:7c:58:70:f3:c9:eb:75:
ca:27:09:b2:70:36:7f:ae:64:20:3b:fa:60:20:a6:
5b:a6:33:61:2f:5a:9e:2c:e4:90:40:23:87:8a:ec:
51:ca:a4:98:3c:20:a3:5b:21:1f:e9:ab:23:6f:d9:
4b:9d:54:c0:b1:f2:8e:09:82:6a:9d:f1:fb:c4:c0:
58:8c:69:4d:1a:dc:2c:7c:8e:24:5f:e3:60:a7:72:
80:97:53:a1:cb:7b:c9:b8:41:16:6c:81:09:12:4f:
5e:c2:8a:e9:5e:50:bf:55:9f:99:a5:73:a5:94:46:
69:12:ad:91:14:a6:7c:dc:c3:fa:d9:35:93:c6:35:
83:23:44:04:ce:a1:e9:02:18:40:17:a4:1a:31:62:
37:28:d6:07:0d:b2:1a:b1:67:57:a8:be:26:1b:5a:
39:0a:ec:8a:09:6c:c9:f9:d9:2e:7c:06:03:c3:4b:
22:e4:19:ca:e8:7b:35:60:d6:25:0a:d1:a2:29:8a:
58:8b:b5:b6:f8:37:4e:35:4c:a1:bf:f1:21:3a:8e:
40:a1:37:1d:8d:6c:4b:8c:7b:12:62:5a:14:fd:c4:
17:db:c6:92:20:b7:b1:e2:0e:6c:ec:4e:57:87:fb:
ea:3b:68:d9:97:d9:27:3f:da:5e:cd:f9:ff:4b:7e:
d6:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:DA:C8:7C:60:A0:A2:1C:88:67:0D:AC:CA:54:EE:73:96:38:7E:42
X509v3 Authority Key Identifier:
keyid:F0:C1:04:04:16:91:DC:38:4F:3B:1A:8C:DF:95:C9:66:28:EA:6D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8MEEBBaR3DhPOxqM35XJZijqba8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/o9rIfGCgohyIZw2sylTuc5Y4fkI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/8MEEBBaR3DhPOxqM35XJZijqba8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.38.197.0-95.38.198.255
Signature Algorithm: sha256WithRSAEncryption
45:2c:07:59:8a:ea:ae:5b:2b:bc:f6:f8:85:80:aa:32:21:fe:
1f:61:c3:bf:0d:2e:0f:8d:a5:0e:e8:0f:97:8f:10:b7:14:54:
7f:cc:99:60:10:dd:5a:2e:cf:d3:1e:a1:2f:74:12:c5:12:31:
4b:f5:a9:42:cc:ce:3d:c5:27:fc:e3:6d:d4:8f:d1:24:a2:69:
e9:23:90:41:37:10:c4:db:1e:fc:6d:61:3c:44:89:7a:bf:65:
d7:ec:7a:bd:7e:b1:0a:d7:38:b4:ec:30:95:c2:6f:35:ac:c1:
e8:1d:ad:41:a7:25:dc:3c:82:12:f9:3b:ae:2b:52:f4:ac:c3:
c7:0f:e6:03:a9:bf:01:6a:6c:c1:ca:f3:70:63:0f:d1:bf:ba:
2f:8a:26:1a:c7:57:14:f5:b2:37:e6:34:81:5c:8b:90:ce:96:
29:05:46:ed:88:8a:50:b5:3a:e1:a8:19:f8:ff:e3:64:e1:04:
f5:dc:4e:58:10:ff:53:37:2c:45:1d:de:65:49:42:dd:04:5e:
17:70:61:9f:fb:fc:02:29:15:9a:61:17:f5:3f:af:25:ab:cf:
27:c0:0d:ca:f3:b9:18:81:2b:78:dc:f3:2e:e6:0d:3d:59:34:
86:0a:d5:7d:39:41:fe:c8:e9:18:1f:33:66:0c:66:da:5c:be:
e9:a8:95:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 30 01:00:16 2024 by rpki-client on console.sobornost.net