Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/3c64ad-fe08-43d8-aba7-0c5573cab8c0/1/iJpC8qre6bMKziJnZsGhYrKguQk.roa
File: iJpC8qre6bMKziJnZsGhYrKguQk.roa (raw, json)
Hash identifier: hHtsxJ5pYObh3C5R+dD2/kTYifHV+ToKn4/P0sXBP54=
Subject key identifier: 88:9A:42:F2:AA:DE:E9:B3:0A:CE:22:67:66:C1:A1:62:B2:A0:B9:09
Certificate issuer: /CN=83306a3a8d8bcba39f92ef1ac49a559b0bce8a58
Certificate serial: 018571B9FDABF5562C4B379B8A4774A0C029
Authority key identifier: 83:30:6A:3A:8D:8B:CB:A3:9F:92:EF:1A:C4:9A:55:9B:0B:CE:8A:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzBqOo2Ly6Ofku8axJpVmwvOilg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/3c64ad-fe08-43d8-aba7-0c5573cab8c0/1/iJpC8qre6bMKziJnZsGhYrKguQk.roa
Signing time: Mon 02 Jan 2023 09:04:52 +0000
ROA not before: Mon 02 Jan 2023 09:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399641
IP address blocks: 31.41.248.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b9:fd:ab:f5:56:2c:4b:37:9b:8a:47:74:a0:c0:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83306a3a8d8bcba39f92ef1ac49a559b0bce8a58
Validity
Not Before: Jan 2 09:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=889a42f2aadee9b30ace226766c1a162b2a0b909
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:1e:ed:9b:c1:9f:f3:9f:a5:cf:b7:8f:77:84:
47:a7:d8:2b:33:53:ed:a5:e5:71:aa:44:e6:55:03:
45:99:d6:34:0a:de:25:87:24:e6:00:b2:d1:2a:11:
da:d4:80:27:b5:ec:76:8b:0d:c6:ea:ea:eb:fb:c5:
9a:e3:40:dd:d9:be:fa:6d:6f:19:cd:61:a1:63:f2:
ca:68:e8:de:86:11:af:42:95:03:86:e0:ac:fa:b6:
bb:61:98:34:37:42:d3:ec:87:f8:54:12:8b:eb:95:
31:29:37:af:cd:80:f4:24:0a:5c:95:05:20:44:82:
81:9a:44:ef:8b:0d:4e:66:b7:81:be:5a:79:dc:85:
54:35:5e:7b:07:92:4f:4e:65:00:35:c4:f0:84:6d:
e7:94:27:bd:38:c8:e8:57:96:5a:05:e7:d1:ec:23:
5e:b2:42:72:dd:22:3b:91:b7:4c:e3:11:ee:6f:86:
7f:d1:33:b2:e4:65:3e:65:09:71:fc:d1:fa:01:eb:
7d:77:07:58:2a:80:e8:10:ac:b8:8f:5a:9d:7f:81:
0e:d9:ca:af:55:c3:d9:d2:ac:41:40:3a:bb:b0:85:
21:43:6d:ca:3b:00:2e:0e:50:2d:eb:0b:89:7c:8c:
6d:77:2e:df:0a:98:a0:d3:0a:53:ff:51:a5:ce:5b:
61:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:9A:42:F2:AA:DE:E9:B3:0A:CE:22:67:66:C1:A1:62:B2:A0:B9:09
X509v3 Authority Key Identifier:
keyid:83:30:6A:3A:8D:8B:CB:A3:9F:92:EF:1A:C4:9A:55:9B:0B:CE:8A:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzBqOo2Ly6Ofku8axJpVmwvOilg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/3c64ad-fe08-43d8-aba7-0c5573cab8c0/1/iJpC8qre6bMKziJnZsGhYrKguQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/3c64ad-fe08-43d8-aba7-0c5573cab8c0/1/gzBqOo2Ly6Ofku8axJpVmwvOilg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.41.248.0/24
Signature Algorithm: sha256WithRSAEncryption
12:fa:fc:44:26:fb:4c:53:7e:cf:d2:8a:d6:f7:31:8a:1c:64:
79:45:af:bc:60:aa:2a:db:6f:61:f0:ad:b1:fd:d4:96:5e:bc:
b9:93:86:9e:9c:a2:75:ea:0b:82:70:dd:c4:8f:54:b2:1a:9b:
6f:a9:82:9a:37:98:2b:d5:55:f7:8d:ba:58:0e:2c:68:55:34:
96:c1:46:6a:fd:c6:7a:56:3f:90:50:96:56:6d:b9:62:eb:a2:
80:a8:ca:44:90:61:2f:50:3b:96:d2:87:db:2b:b2:05:23:22:
2a:58:e8:80:3b:c9:ec:47:5d:0b:e1:f9:14:d9:ac:75:fb:bc:
2e:73:21:b7:4a:9c:9d:41:07:af:6a:ca:20:dd:35:1f:73:8d:
9b:a3:1b:77:4b:d8:46:5a:9c:64:58:17:6e:f6:fa:a1:7f:f8:
70:bb:51:41:a0:d1:bb:a0:8c:24:0a:b9:2e:9d:0d:fd:1c:37:
b2:df:f7:c8:a6:57:ae:2b:b1:73:f6:45:9f:d6:69:22:96:bd:
2e:f6:ff:88:9e:ee:32:1b:d9:d2:58:5f:47:26:20:c1:05:f9:
41:60:a2:e9:ed:f8:3f:24:c6:97:ed:e4:52:bc:84:35:f2:ab:
99:be:ec:d3:70:47:13:7d:cd:34:93:3c:9b:c3:94:ca:c4:61:
0e:6f:fe:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:29 2023 by rpki-client on console.sobornost.net