Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/cJVgl1RJqgxvTK6788u-GrKipEU.roa
File: cJVgl1RJqgxvTK6788u-GrKipEU.roa (raw, json)
Hash identifier: X43KHC+LhVjGBj7rmi6sp8J8Q/MTpF0ufFgu2aNlHaU=
Subject key identifier: 70:95:60:97:54:49:AA:0C:6F:4C:AE:BB:F3:CB:BE:1A:B2:A2:A4:45
Certificate issuer: /CN=624039399017fa093dc8d503799f6ca403f0bd05
Certificate serial: 0184FF0CD04D93B9BC50E0A0581EBA3946FF
Authority key identifier: 62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/cJVgl1RJqgxvTK6788u-GrKipEU.roa
Signing time: Sun 11 Dec 2022 02:39:00 +0000
ROA not before: Sun 11 Dec 2022 02:39:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 45.95.212.0/22 maxlen: 24
45.95.212.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ff:0c:d0:4d:93:b9:bc:50:e0:a0:58:1e:ba:39:46:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=624039399017fa093dc8d503799f6ca403f0bd05
Validity
Not Before: Dec 11 02:39:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=709560975449aa0c6f4caebbf3cbbe1ab2a2a445
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:0e:6f:cc:b9:ec:ee:3c:72:47:a5:5a:dc:8a:
cc:c6:e0:15:51:6b:cf:52:7d:91:23:79:93:89:8a:
96:26:37:da:86:07:00:b3:e8:94:8c:fa:29:eb:43:
66:d6:5c:00:b3:a8:ed:f7:a6:13:3c:a6:f6:9a:25:
db:4d:39:2f:a7:e6:8a:01:76:b0:c3:b2:14:47:7f:
7d:26:4a:3c:1f:f0:48:6e:3f:6b:f7:31:6a:50:44:
93:e4:47:7d:a6:09:f7:8b:3d:d3:c9:5d:7a:96:f5:
9d:84:08:04:ce:07:ec:35:5d:f9:f9:a6:5e:c1:21:
f5:fa:cf:75:e1:ba:e1:b0:6c:1c:7e:c8:09:80:03:
a1:2c:d3:0a:e9:51:c2:10:78:13:2a:2c:51:0d:ed:
8b:71:98:65:bf:d2:b6:c8:59:c7:31:cf:e4:f5:33:
8f:7a:fc:4e:99:cb:69:1c:b6:80:82:92:9f:b6:85:
ef:14:4f:46:f7:06:63:da:28:fc:5b:0f:52:8f:43:
50:99:70:f9:bd:06:37:b5:e9:9a:21:97:0f:2c:2c:
99:7f:3c:8f:ae:6f:cf:54:65:de:9c:d6:96:fe:bf:
b8:7b:c5:67:f6:fc:36:ae:9a:5a:06:a0:b9:99:8f:
19:92:6e:2a:99:ed:f1:f1:63:6d:a9:76:33:1e:a1:
8e:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:95:60:97:54:49:AA:0C:6F:4C:AE:BB:F3:CB:BE:1A:B2:A2:A4:45
X509v3 Authority Key Identifier:
keyid:62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/cJVgl1RJqgxvTK6788u-GrKipEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/YkA5OZAX-gk9yNUDeZ9spAPwvQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.212.0/22
Signature Algorithm: sha256WithRSAEncryption
20:7e:3a:69:02:0c:54:8e:ec:29:89:41:da:6d:fb:16:c3:4b:
41:64:b3:11:2b:0a:07:c2:9c:24:b3:e1:3a:b5:3b:55:01:31:
0c:25:76:7e:1e:65:9c:44:2b:60:03:74:23:81:37:82:ee:a8:
0b:b5:85:52:48:4f:cc:2f:59:46:c4:fb:2a:63:a8:32:1e:b6:
b7:05:2b:f8:ec:9a:8b:ac:fe:90:71:53:86:fd:0d:c1:bd:6d:
fd:72:5d:2f:85:c4:dd:53:c5:a5:f7:73:f7:b9:ec:c5:07:f6:
eb:2e:92:c6:e6:45:da:a3:98:34:aa:e6:a1:07:1a:08:96:a2:
48:06:ca:04:31:e7:c7:d2:e4:cf:3f:81:79:66:d3:09:00:d2:
14:05:28:d1:ca:da:09:51:89:2c:09:c1:da:77:ac:58:cc:b2:
71:94:fc:c8:f6:0c:c2:55:9a:4e:a1:ec:10:ff:06:7e:42:40:
c8:a8:40:08:00:b3:4b:70:c6:7c:5f:d4:6f:0f:a5:cb:c3:df:
e5:e7:17:e4:0d:7f:f9:c7:c0:80:13:86:ea:5d:3f:c9:53:b9:
9a:e9:10:02:ce:0c:d0:9f:24:49:fa:33:95:f9:d6:19:9a:de:
06:e6:ee:6e:20:9a:a8:60:fa:ae:20:5d:4c:2e:02:f6:92:1c:
dd:08:8d:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:39 2023 by rpki-client on console.sobornost.net