Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/cbb5ed-65cc-4979-b0b1-a493fe7f2ae6/1/1-6kskZEUHZOqjs6PSpx-mwBR478.roa
File: 1-6kskZEUHZOqjs6PSpx-mwBR478.roa (raw, json)
Hash identifier: A11zYfrkhlWz2KqYQfyVAAUrCGng9LHTiRUkOgM5IAI=
Subject key identifier: FB:A9:2C:91:91:14:1D:93:AA:8E:CE:8F:4A:9C:7E:9B:00:51:E3:BF
Certificate issuer: /CN=b3bea0da56e55fa2eb500f150dc478ed1cb39daf
Certificate serial: 01856E0B065552D57EA30844D0155AE55597
Authority key identifier: B3:BE:A0:DA:56:E5:5F:A2:EB:50:0F:15:0D:C4:78:ED:1C:B3:9D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s76g2lblX6LrUA8VDcR47Ryzna8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/cbb5ed-65cc-4979-b0b1-a493fe7f2ae6/1/1-6kskZEUHZOqjs6PSpx-mwBR478.roa
Signing time: Sun 01 Jan 2023 15:54:54 +0000
ROA not before: Sun 01 Jan 2023 15:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 146.255.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:0b:06:55:52:d5:7e:a3:08:44:d0:15:5a:e5:55:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3bea0da56e55fa2eb500f150dc478ed1cb39daf
Validity
Not Before: Jan 1 15:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fba92c9191141d93aa8ece8f4a9c7e9b0051e3bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a2:02:c4:1a:07:fc:88:00:8a:6b:a5:65:5c:
26:bd:09:88:cc:04:50:89:54:6c:4f:8a:b0:51:f8:
30:ca:6b:c2:6b:5a:2a:ce:65:26:02:00:f0:d6:8b:
c4:e8:cb:13:4e:dc:e2:fc:b2:b2:de:6f:c8:52:45:
42:a4:e5:31:60:d6:17:95:f5:d7:3d:a2:a8:05:5c:
5f:5a:81:12:1f:61:40:91:c4:1c:2e:19:39:a8:15:
97:68:4c:eb:f7:0a:48:41:8f:3a:bd:b2:7f:ad:43:
80:fd:16:a3:9a:31:25:49:ac:ca:41:87:38:f8:fe:
12:01:0e:21:1f:be:76:0e:4c:39:3f:99:30:fd:07:
3a:7d:72:ab:48:01:ca:ee:f6:94:62:3c:ee:2f:dc:
90:7d:81:0e:ff:bb:d7:27:79:ff:e4:37:96:8d:f7:
31:54:77:cb:c1:09:46:60:52:0f:97:f1:00:21:83:
a5:d5:57:1b:c9:cd:0e:10:eb:72:91:da:9d:ad:6e:
6c:a2:a6:66:54:c2:3b:dc:3f:6a:b3:56:df:6c:62:
f0:c5:e8:1b:8c:ff:cc:11:c3:a6:1b:93:17:a5:0f:
9a:c6:ff:be:58:8b:3b:6c:3c:7b:d1:bf:15:b4:ba:
3a:00:a4:03:93:e2:96:94:c4:29:f7:96:01:f1:a4:
b3:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:A9:2C:91:91:14:1D:93:AA:8E:CE:8F:4A:9C:7E:9B:00:51:E3:BF
X509v3 Authority Key Identifier:
keyid:B3:BE:A0:DA:56:E5:5F:A2:EB:50:0F:15:0D:C4:78:ED:1C:B3:9D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s76g2lblX6LrUA8VDcR47Ryzna8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/cbb5ed-65cc-4979-b0b1-a493fe7f2ae6/1/1-6kskZEUHZOqjs6PSpx-mwBR478.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/cbb5ed-65cc-4979-b0b1-a493fe7f2ae6/1/s76g2lblX6LrUA8VDcR47Ryzna8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.255.189.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:e1:c8:7e:e7:79:c6:b9:f8:65:7b:1d:17:ce:93:b9:69:af:
0c:2c:1a:82:f4:85:99:6c:1d:1e:04:e3:d1:cd:9f:7a:ca:cd:
60:c5:56:70:7e:e5:cc:9e:8f:a0:ce:00:ca:38:ef:58:3e:a8:
a5:2e:fd:bc:1e:a8:10:bd:de:f4:68:81:5c:98:cf:c6:53:b5:
f9:b9:2b:3e:26:8e:31:a3:f0:18:10:ae:43:97:4f:63:cf:74:
67:f2:ec:17:7a:31:8b:ef:e6:c6:c9:73:29:1d:cc:a8:ac:1d:
10:84:62:a3:19:a5:b2:0b:6b:ee:b5:d0:be:85:6d:9a:30:91:
92:ed:bb:df:27:40:01:f9:dd:70:fb:03:37:89:e5:65:e6:7d:
f6:a4:d9:3e:2e:4b:dc:3c:6c:25:c6:63:c1:56:58:25:8f:da:
70:23:61:55:95:b0:b6:c6:51:bc:e0:21:17:e9:76:c6:d6:b6:
b3:ba:02:a6:69:c4:96:32:dc:3b:de:18:f6:2e:f0:a0:e2:44:
59:ae:6b:e2:ba:88:76:c8:f3:55:a1:6f:f9:60:4d:bd:d1:da:
3e:a7:97:41:6c:39:8d:75:02:19:bc:c4:2e:98:30:b8:2a:36:
a8:bb:99:54:2c:5f:6c:26:40:18:30:75:8a:84:1c:c0:00:4c:
7a:9b:b2:45
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVuCwZVUtV+owhE0BVa5VWXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzYmVhMGRhNTZlNTVmYTJlYjUwMGYxNTBkYzQ3OGVkMWNi
MzlkYWYwHhcNMjMwMTAxMTU1NDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYmE5MmM5MTkxMTQxZDkzYWE4ZWNlOGY0YTljN2U5YjAwNTFlM2JmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyKICxBoH/IgAimulZVwmvQmIzARQ
iVRsT4qwUfgwymvCa1oqzmUmAgDw1ovE6MsTTtzi/LKy3m/IUkVCpOUxYNYXlfXX
PaKoBVxfWoESH2FAkcQcLhk5qBWXaEzr9wpIQY86vbJ/rUOA/RajmjElSazKQYc4
+P4SAQ4hH752Dkw5P5kw/Qc6fXKrSAHK7vaUYjzuL9yQfYEO/7vXJ3n/5DeWjfcx
VHfLwQlGYFIPl/EAIYOl1Vcbyc0OEOtykdqdrW5soqZmVMI73D9qs1bfbGLwxegb
jP/MEcOmG5MXpQ+axv++WIs7bDx70b8VtLo6AKQDk+KWlMQp95YB8aSzTwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPupLJGRFB2Tqo7Oj0qcfpsAUeO/MB8GA1UdIwQY
MBaAFLO+oNpW5V+i61APFQ3EeO0cs52vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczc2ZzJsYmxYNkxyVUE4VkRjUjQ3Unl6bmE4LmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS9jYmI1ZWQtNjVjYy00OTc5LWIwYjEt
YTQ5M2ZlN2YyYWU2LzEvMS02a3NrWkVVSFpPcWpzNlBTcHgtbXdCUjQ3OC5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvZDkvY2JiNWVkLTY1Y2MtNDk3OS1iMGIxLWE0OTNmZTdmMmFl
Ni8xL3M3NmcybGJsWDZMclVBOFZEY1I0N1J5em5hOC5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJL/vTAN
BgkqhkiG9w0BAQsFAAOCAQEAmuHIfud5xrn4ZXsdF86TuWmvDCwagvSFmWwdHgTj
0c2fesrNYMVWcH7lzJ6PoM4AyjjvWD6opS79vB6oEL3e9GiBXJjPxlO1+bkrPiaO
MaPwGBCuQ5dPY890Z/LsF3oxi+/mxslzKR3MqKwdEIRioxmlsgtr7rXQvoVtmjCR
ku273ydAAfndcPsDN4nlZeZ99qTZPi5L3DxsJcZjwVZYJY/acCNhVZWwtsZRvOAh
F+l2xta2s7oCpmnEljLcO94Y9i7woOJEWa5r4rqIdsjzVaFv+WBNvdHaPqeXQWw5
jXUCGbzELpgwuCo2qLuZVCxfbCZAGDB1ioQcwABMepuyRQ==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:49 2023 by rpki-client on console.sobornost.net