Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/28cd48-6a7c-4d05-b4b9-87aa5a2dd122/1/T7GDBjHirIq597a663-VsvTA2_s.roa
File: T7GDBjHirIq597a663-VsvTA2_s.roa (raw, json)
Hash identifier: kFyd6iRpDrcfead7d3gjvPAoNnctsK2xhO6obZdUv/s=
Subject key identifier: 4F:B1:83:06:31:E2:AC:8A:B9:F7:B6:BA:EB:7F:95:B2:F4:C0:DB:FB
Certificate issuer: /CN=b12caece23c6adf6917039293e25baaa906ce556
Certificate serial: 16CD5187
Authority key identifier: B1:2C:AE:CE:23:C6:AD:F6:91:70:39:29:3E:25:BA:AA:90:6C:E5:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sSyuziPGrfaRcDkpPiW6qpBs5VY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/28cd48-6a7c-4d05-b4b9-87aa5a2dd122/1/T7GDBjHirIq597a663-VsvTA2_s.roa
Signing time: Sat 01 Jan 2022 01:52:53 +0000
ROA not before: Sat 01 Jan 2022 01:52:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34653
IP address blocks: 37.157.160.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 382554503 (0x16cd5187)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b12caece23c6adf6917039293e25baaa906ce556
Validity
Not Before: Jan 1 01:52:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4fb1830631e2ac8ab9f7b6baeb7f95b2f4c0dbfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:19:4a:0a:f5:90:a0:56:9b:33:11:55:c5:72:
86:d1:db:4b:f5:a4:c3:a8:9e:51:44:4a:72:a2:79:
de:25:65:fa:70:e4:cf:ea:f7:aa:32:2a:52:6a:6e:
94:a2:10:99:d4:22:3d:28:6b:c0:f3:15:cb:9a:6c:
90:76:a2:0a:87:ee:d2:ae:2a:46:8d:f7:29:5a:12:
3c:d4:2d:b9:91:1f:06:42:ce:ec:3a:cc:ce:0a:4b:
df:d5:05:fe:64:19:7d:7d:2a:31:0c:46:7b:89:72:
38:d9:5a:6e:35:cd:66:88:97:21:98:cf:75:b6:19:
e8:2e:36:50:d5:6d:7b:3c:ca:08:a1:60:6b:ce:a6:
bb:d4:f6:88:f1:f6:53:30:1c:4f:78:3a:36:11:3d:
99:74:79:d5:d9:23:d2:7d:ec:7d:7c:fe:3d:83:74:
ea:78:f4:13:09:40:2e:65:fb:a2:e0:50:6e:6c:bb:
46:c1:8a:39:4c:58:f1:37:dc:2f:02:0c:7b:60:8e:
68:6a:99:66:15:a9:6b:fa:9c:6f:46:07:7c:bb:bd:
00:fa:b5:64:25:55:bd:a0:a3:8b:f3:ef:3f:be:53:
55:5b:75:dd:84:4d:9d:e7:c9:d0:4f:ec:17:9a:ae:
c9:60:b0:0d:54:8e:32:fd:88:4e:76:35:58:26:90:
22:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:B1:83:06:31:E2:AC:8A:B9:F7:B6:BA:EB:7F:95:B2:F4:C0:DB:FB
X509v3 Authority Key Identifier:
keyid:B1:2C:AE:CE:23:C6:AD:F6:91:70:39:29:3E:25:BA:AA:90:6C:E5:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sSyuziPGrfaRcDkpPiW6qpBs5VY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/28cd48-6a7c-4d05-b4b9-87aa5a2dd122/1/T7GDBjHirIq597a663-VsvTA2_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/28cd48-6a7c-4d05-b4b9-87aa5a2dd122/1/sSyuziPGrfaRcDkpPiW6qpBs5VY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.157.160.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:a6:d1:a9:45:7b:52:f5:a2:22:45:90:d1:c5:a2:f1:24:8f:
01:a8:24:e5:45:06:bf:6d:2b:65:bf:b4:87:a7:20:46:70:de:
6c:ed:cc:31:dc:c9:f1:49:a1:18:8d:67:9d:9a:c5:bd:d7:f0:
8e:62:69:7c:a3:dc:a3:f6:d4:46:d3:d1:a4:c1:ec:52:26:57:
32:c3:09:83:94:ce:30:32:fd:79:69:9d:a1:07:5d:48:6f:19:
c9:52:81:65:8e:54:8e:88:d4:3c:29:be:29:d6:91:df:69:b7:
83:b4:d9:07:8f:d4:99:58:99:99:27:98:f8:0d:56:a3:71:c5:
cc:de:31:e3:83:57:ff:bb:01:0d:5f:68:0d:25:0a:b4:9f:4c:
48:2f:a1:54:0d:bf:03:50:42:56:a4:2b:65:c9:36:a9:31:d6:
a2:84:a9:ee:57:02:b4:b8:e5:c3:2b:7d:93:17:6c:a4:97:e5:
7e:d2:d0:30:cb:00:56:bf:69:d6:ce:07:67:cd:a7:13:1f:20:
9c:85:ef:81:65:8a:6e:7e:9e:48:cc:69:7d:49:8f:be:e8:00:
ca:5d:aa:b2:7c:be:1a:cb:e2:a7:0c:be:3f:f6:dc:74:e4:04:
2f:e9:76:c3:87:c1:ff:87:5a:7e:f1:75:18:3a:18:4a:5b:78:
89:1e:b2:8c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFs1RhzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MTJjYWVjZTIzYzZhZGY2OTE3MDM5MjkzZTI1YmFhYTkwNmNlNTU2MB4XDTIyMDEw
MTAxNTI1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGZiMTgzMDYzMWUy
YWM4YWI5ZjdiNmJhZWI3Zjk1YjJmNGMwZGJmYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANQZSgr1kKBWmzMRVcVyhtHbS/Wkw6ieUURKcqJ53iVl+nDk
z+r3qjIqUmpulKIQmdQiPShrwPMVy5pskHaiCofu0q4qRo33KVoSPNQtuZEfBkLO
7DrMzgpL39UF/mQZfX0qMQxGe4lyONlabjXNZoiXIZjPdbYZ6C42UNVtezzKCKFg
a86mu9T2iPH2UzAcT3g6NhE9mXR51dkj0n3sfXz+PYN06nj0EwlALmX7ouBQbmy7
RsGKOUxY8TfcLwIMe2COaGqZZhWpa/qcb0YHfLu9APq1ZCVVvaCji/PvP75TVVt1
3YRNnefJ0E/sF5quyWCwDVSOMv2ITnY1WCaQIrsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRPsYMGMeKsirn3trrrf5Wy9MDb+zAfBgNVHSMEGDAWgBSxLK7OI8at9pFw
OSk+JbqqkGzlVjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3NTeXV6aVBHcmZhUmNEa3BQaVc2cXBCczVWWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDcvMjhjZDQ4LTZhN2MtNGQwNS1iNGI5LTg3YWE1YTJkZDEyMi8x
L1Q3R0RCakhpcklxNTk3YTY2My1Wc3ZUQTJfcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDcv
MjhjZDQ4LTZhN2MtNGQwNS1iNGI5LTg3YWE1YTJkZDEyMi8xL3NTeXV6aVBHcmZh
UmNEa3BQaVc2cXBCczVWWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACWdoDANBgkqhkiG9w0BAQsFAAOC
AQEAXKbRqUV7UvWiIkWQ0cWi8SSPAagk5UUGv20rZb+0h6cgRnDebO3MMdzJ8Umh
GI1nnZrFvdfwjmJpfKPco/bURtPRpMHsUiZXMsMJg5TOMDL9eWmdoQddSG8ZyVKB
ZY5UjojUPCm+KdaR32m3g7TZB4/UmViZmSeY+A1Wo3HFzN4x44NX/7sBDV9oDSUK
tJ9MSC+hVA2/A1BCVqQrZck2qTHWooSp7lcCtLjlwyt9kxdspJflftLQMMsAVr9p
1s4HZ82nEx8gnIXvgWWKbn6eSMxpfUmPvugAyl2qsny+Gsvipwy+P/bcdOQEL+l2
w4fB/4dafvF1GDoYSlt4iR6yjA==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:36 2023 by rpki-client on console.sobornost.net