Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/5491a2-6222-4ec7-b927-3e6507b2a2b7/1/QvFtNOCUaXZtqAzbu38boUN9spU.roa
File: QvFtNOCUaXZtqAzbu38boUN9spU.roa (raw, json)
Hash identifier: fgqqhBxc8af1UPRuUCqDC/hL855PFAlq8WcyX6lQlHM=
Subject key identifier: 42:F1:6D:34:E0:94:69:76:6D:A8:0C:DB:BB:7F:1B:A1:43:7D:B2:95
Certificate issuer: /CN=33de5dc98887219264ac4e421d880e89290f456a
Certificate serial: 01C921DD
Authority key identifier: 33:DE:5D:C9:88:87:21:92:64:AC:4E:42:1D:88:0E:89:29:0F:45:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M95dyYiHIZJkrE5CHYgOiSkPRWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/5491a2-6222-4ec7-b927-3e6507b2a2b7/1/QvFtNOCUaXZtqAzbu38boUN9spU.roa
Signing time: Sat 01 Jan 2022 04:01:05 +0000
ROA not before: Sat 01 Jan 2022 04:01:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50043
IP address blocks: 193.228.125.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29958621 (0x1c921dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33de5dc98887219264ac4e421d880e89290f456a
Validity
Not Before: Jan 1 04:01:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42f16d34e09469766da80cdbbb7f1ba1437db295
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:58:af:98:05:2d:c0:13:63:c1:23:91:29:17:
49:e5:e7:c7:f6:86:74:ec:21:b2:33:a5:95:16:fc:
f5:af:28:7e:18:1a:6f:90:33:40:35:53:35:70:1f:
41:45:6a:a4:27:d9:a3:39:b6:37:d7:fc:b3:48:f9:
de:c1:08:9e:e7:b8:34:e4:a8:38:44:ae:b9:56:ad:
63:fd:76:fe:03:da:d9:5c:ae:74:72:64:2f:cf:33:
a4:98:91:32:1d:42:93:26:29:83:72:1f:2e:0f:c1:
18:58:7b:0d:f4:d5:1f:f0:29:e0:17:bf:9c:ce:33:
c8:24:49:4d:b1:3e:db:fb:f0:55:fe:db:31:19:82:
5e:46:58:2e:09:6a:75:20:9a:25:16:e5:7b:6c:84:
50:5c:0c:3e:6c:fc:9b:05:0b:79:5d:8e:35:53:1b:
da:d6:27:bb:e9:0d:22:87:51:67:ef:3c:ca:52:c8:
39:ce:1f:a7:08:01:f0:3b:34:71:e0:bb:cd:ee:20:
ab:e6:87:35:87:30:48:e3:ef:e6:16:f1:cd:8c:2c:
24:8d:8d:c4:79:58:43:eb:32:c3:2f:8b:1b:18:66:
d2:ec:23:99:67:d7:a0:bd:fd:e2:5b:c2:14:9a:de:
d9:88:e3:90:74:42:e2:f9:8e:07:d1:d8:d2:e7:b1:
25:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:F1:6D:34:E0:94:69:76:6D:A8:0C:DB:BB:7F:1B:A1:43:7D:B2:95
X509v3 Authority Key Identifier:
keyid:33:DE:5D:C9:88:87:21:92:64:AC:4E:42:1D:88:0E:89:29:0F:45:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M95dyYiHIZJkrE5CHYgOiSkPRWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5491a2-6222-4ec7-b927-3e6507b2a2b7/1/QvFtNOCUaXZtqAzbu38boUN9spU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5491a2-6222-4ec7-b927-3e6507b2a2b7/1/M95dyYiHIZJkrE5CHYgOiSkPRWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.228.125.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:4e:f5:12:73:43:10:1b:94:26:af:f8:7c:10:57:87:0f:5b:
75:c1:86:e8:40:4b:0a:73:71:34:08:b8:3f:87:ae:cd:6a:b8:
a8:94:b6:eb:3b:bd:4c:2a:d8:10:97:f3:f9:86:3e:12:4f:9b:
31:af:63:3d:df:8b:9f:37:13:ef:9e:17:08:9f:6b:dd:8b:bb:
13:ea:16:67:79:45:53:6c:af:b4:e9:b2:bb:d5:d0:83:5e:dd:
2d:2d:82:21:b0:92:f2:b6:d9:e0:bf:ef:60:0b:72:3a:f9:b4:
e3:c4:94:57:42:7d:e8:df:c5:bc:3c:55:0b:6a:56:65:ab:9f:
e9:40:c6:f6:36:38:af:39:1c:55:68:d5:05:19:0f:0b:9e:68:
7f:aa:35:ff:b1:d4:e2:0f:27:a7:74:ec:64:81:1d:1e:40:95:
10:c5:d0:d0:97:37:ec:e3:c5:11:3a:b5:96:44:cd:58:94:8a:
e2:2a:75:56:a7:8a:b5:5c:18:59:14:be:d9:30:f0:8c:47:b5:
f1:74:2b:18:27:52:76:8d:38:a9:b7:c7:d7:c4:54:89:0b:ce:
3e:f1:eb:b4:00:e0:94:c8:e4:22:10:b5:55:d2:6f:f1:92:1d:
fe:09:41:0f:00:c9:1b:bc:eb:fa:33:b2:9c:ba:85:ee:53:98:
4b:1b:dd:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:34 2023 by rpki-client on console.sobornost.net