Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/YGkw1LHVUQFD3nuWxWq0O07SZvY.roa
File: YGkw1LHVUQFD3nuWxWq0O07SZvY.roa (raw, json)
Hash identifier: ebL4/C883i5pEQ87f0UAHu4ny4GHLg3BzzqZ/a/yn0M=
Subject key identifier: 60:69:30:D4:B1:D5:51:01:43:DE:7B:96:C5:6A:B4:3B:4E:D2:66:F6
Certificate issuer: /CN=a20018648c7afa144464d47bb1e2cb2ba786ebb1
Certificate serial: 0192714B6EC325C24327AC20466B2CEFE530
Authority key identifier: A2:00:18:64:8C:7A:FA:14:44:64:D4:7B:B1:E2:CB:2B:A7:86:EB:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ogAYZIx6-hREZNR7seLLK6eG67E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/YGkw1LHVUQFD3nuWxWq0O07SZvY.roa
Signing time: Wed 09 Oct 2024 12:40:21 +0000
ROA not before: Wed 09 Oct 2024 12:40:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25245
IP address blocks: 195.234.216.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:71:4b:6e:c3:25:c2:43:27:ac:20:46:6b:2c:ef:e5:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a20018648c7afa144464d47bb1e2cb2ba786ebb1
Validity
Not Before: Oct 9 12:40:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=606930d4b1d5510143de7b96c56ab43b4ed266f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ec:e0:84:dd:c3:12:95:2a:ad:05:47:fc:bf:
dd:c5:2f:35:6a:92:59:2e:5a:6e:15:cd:a4:61:08:
51:38:79:7d:44:24:ab:1a:34:e1:7c:60:d1:b3:18:
af:56:e3:10:cd:12:9b:89:dd:22:da:db:0d:60:44:
2c:85:65:02:ed:9c:1f:8c:48:db:50:62:d3:ed:c6:
d7:50:e7:76:40:f3:c0:ff:21:50:05:4a:17:d1:4e:
5a:50:cb:d6:45:21:5a:d9:de:53:ea:23:9d:28:da:
32:c0:3c:ec:1a:99:a1:26:16:5a:b4:d2:5f:b6:c7:
a3:06:2a:8e:7a:45:9c:62:6c:59:cd:d5:67:0a:01:
23:53:ab:d2:38:04:dc:d4:15:4b:be:1b:19:29:cf:
40:ed:03:28:9d:e1:d8:db:4a:9a:d6:22:42:96:fe:
9d:6f:bb:33:d0:3a:60:22:ec:fa:7a:76:80:77:de:
71:be:dc:f1:11:77:01:4a:9a:54:f9:ec:85:99:01:
72:13:3a:cc:d3:3f:a3:98:6b:a6:4f:0c:b9:9a:11:
bd:67:7c:33:70:45:9f:41:53:3e:7f:5e:f1:44:42:
07:38:19:df:9f:57:c3:b4:4d:4d:18:70:4c:ff:b5:
fd:1b:a8:15:e9:cb:bf:f2:12:e5:43:65:14:24:90:
66:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:69:30:D4:B1:D5:51:01:43:DE:7B:96:C5:6A:B4:3B:4E:D2:66:F6
X509v3 Authority Key Identifier:
keyid:A2:00:18:64:8C:7A:FA:14:44:64:D4:7B:B1:E2:CB:2B:A7:86:EB:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ogAYZIx6-hREZNR7seLLK6eG67E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/YGkw1LHVUQFD3nuWxWq0O07SZvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ogAYZIx6-hREZNR7seLLK6eG67E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.234.216.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:e6:07:b8:0b:00:d4:9d:e2:02:46:dd:36:4d:4f:9d:89:d3:
cb:f6:17:64:ba:58:9b:90:bc:63:70:43:5e:32:0c:15:83:fb:
91:9a:fe:5b:0d:03:7d:f2:dd:9b:50:ca:31:31:f5:df:09:dd:
c2:c8:e7:67:26:cd:f9:e4:ba:db:ed:9f:fe:b2:eb:01:0c:59:
a4:82:7e:5e:e9:9d:19:c2:27:ad:52:cc:ca:90:a1:a2:67:14:
18:23:cb:13:dd:be:36:a2:a7:9a:49:90:52:bd:e5:70:95:f0:
e0:4b:e2:81:ab:3f:b8:ec:96:28:08:d2:6c:fe:bf:5c:b5:d1:
50:d6:dc:e2:71:d6:51:70:c4:e1:01:1c:24:c5:9e:d2:bc:30:
7a:57:f7:4f:3d:5e:e0:10:72:55:81:2f:f2:00:6f:74:0f:4b:
e9:d7:ae:7c:1e:7a:ea:5a:77:f4:63:42:37:d0:9c:9a:00:f2:
aa:25:3c:8c:4c:a9:b1:7b:1f:eb:17:d1:be:78:5a:7a:bf:fa:
82:51:39:82:01:a8:9f:e6:07:11:c4:28:15:0b:bc:7f:e8:b1:
3a:a1:ec:53:b9:84:da:a9:81:5a:46:fa:be:4e:65:a9:27:b2:
6c:b7:f5:ac:f4:fa:b7:b2:75:f9:48:0e:0c:12:f7:66:6f:48:
40:69:c4:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:04 2024 by rpki-client on console.sobornost.net