Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/aa37b6-bf16-4836-bb9c-9208b0e2fa10/1/G-ln_pnU6HKApsqwumW8wDpgZUI.roa
File: G-ln_pnU6HKApsqwumW8wDpgZUI.roa (raw, json)
Hash identifier: Pe4Ly7095zMb4rQiAUsHnvQALP3E6wNGmlG+bS3zwPg=
Subject key identifier: 1B:E9:67:FE:99:D4:E8:72:80:A6:CA:B0:BA:65:BC:C0:3A:60:65:42
Certificate issuer: /CN=721deb13a3d93b7df66abed3c7987717aceb3cc9
Certificate serial: 01856C0A384A39F0BC6040B466B55DD1CE4E
Authority key identifier: 72:1D:EB:13:A3:D9:3B:7D:F6:6A:BE:D3:C7:98:77:17:AC:EB:3C:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ch3rE6PZO332ar7Tx5h3F6zrPMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/aa37b6-bf16-4836-bb9c-9208b0e2fa10/1/G-ln_pnU6HKApsqwumW8wDpgZUI.roa
Signing time: Sun 01 Jan 2023 06:34:47 +0000
ROA not before: Sun 01 Jan 2023 06:34:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211415
IP address blocks: 212.52.2.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:0a:38:4a:39:f0:bc:60:40:b4:66:b5:5d:d1:ce:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=721deb13a3d93b7df66abed3c7987717aceb3cc9
Validity
Not Before: Jan 1 06:34:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1be967fe99d4e87280a6cab0ba65bcc03a606542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:3a:3e:62:08:0d:65:fb:0b:59:29:be:f6:dd:
50:e4:45:36:79:8c:0e:d5:58:1f:06:f5:8b:4d:ab:
20:6e:6d:fa:dc:39:a0:3a:ca:9c:29:ec:64:e3:60:
43:32:a8:aa:9b:39:52:b2:31:9e:4c:6c:29:55:39:
67:3c:21:df:49:6e:b1:e2:50:de:1e:0f:aa:23:0f:
05:9b:72:80:c4:3f:fc:c5:f8:5e:23:f6:eb:fe:cb:
12:e0:a3:d5:25:39:6e:ca:b4:39:f0:13:7b:11:ae:
cf:f8:de:8c:23:6b:01:33:74:97:31:9f:19:e2:88:
07:56:e6:23:82:17:d5:9d:9d:1b:31:5c:c1:46:40:
93:ba:5e:59:a9:e0:4a:50:48:82:0b:a8:1f:24:9a:
9d:2f:78:36:46:a3:e0:a6:e3:b7:0e:d5:15:a7:a4:
34:1b:6b:6d:1c:a4:ea:58:d6:70:e9:3b:da:9e:37:
9a:e4:57:9c:1b:c1:cc:58:1c:6f:9c:00:6f:9d:2f:
99:36:a4:63:82:57:af:15:16:34:41:b1:b1:b4:bc:
e6:a3:fc:dc:00:05:70:82:e0:24:b6:3c:79:d0:f8:
9f:8d:51:2b:13:4a:40:4c:36:50:93:5d:35:92:77:
18:cd:b5:2c:47:4c:4c:a7:cd:54:dd:56:80:54:12:
70:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:E9:67:FE:99:D4:E8:72:80:A6:CA:B0:BA:65:BC:C0:3A:60:65:42
X509v3 Authority Key Identifier:
keyid:72:1D:EB:13:A3:D9:3B:7D:F6:6A:BE:D3:C7:98:77:17:AC:EB:3C:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ch3rE6PZO332ar7Tx5h3F6zrPMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/aa37b6-bf16-4836-bb9c-9208b0e2fa10/1/G-ln_pnU6HKApsqwumW8wDpgZUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/aa37b6-bf16-4836-bb9c-9208b0e2fa10/1/ch3rE6PZO332ar7Tx5h3F6zrPMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.52.2.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:56:2a:44:ee:62:d4:38:12:43:5d:4b:bd:36:47:15:8b:d5:
fb:42:49:29:78:69:dc:cf:5e:ea:b4:bc:f4:45:ce:03:36:41:
b5:78:a0:73:6b:08:1e:98:fe:04:dd:78:fc:6e:ed:85:a4:ec:
ea:3e:ff:78:f9:cc:a5:99:9b:1d:e3:3e:a0:f1:20:dd:ab:04:
a6:79:b3:41:b2:bd:41:5b:64:67:37:06:2e:ea:65:9a:a8:db:
45:78:0d:a7:57:b0:a0:94:eb:d1:75:f0:88:a1:2e:54:9a:04:
06:dc:d4:42:4b:07:70:a3:6c:94:b0:32:d1:12:e6:d3:14:1e:
61:06:15:d0:19:18:dc:01:4d:4f:28:4e:67:d0:97:29:a4:12:
ef:4d:d1:99:c7:86:5f:c8:01:ab:5c:0e:b4:31:76:0e:90:5a:
ff:91:8e:d0:fa:84:c2:74:e2:67:cf:ab:1f:15:d4:8c:be:f7:
fa:a2:45:12:c4:e9:33:9f:49:3f:25:f0:35:9b:b2:f1:21:54:
10:1b:68:72:b8:7a:ba:98:af:0e:3b:a1:c0:92:17:f3:67:2d:
bb:6b:4e:b1:b4:17:76:c1:b1:f7:b4:75:53:f4:a0:c1:a3:36:
53:22:a3:cd:f8:fa:b7:9f:3a:6c:74:c4:bf:21:a3:2b:a1:76:
91:f9:8d:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:35 2023 by rpki-client on console.sobornost.net