Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/f2b840-2c85-465b-8b93-5b5beb10513b/1/_-u6x8T7-x1bstVxoPfrBA5yP6g.roa
File: _-u6x8T7-x1bstVxoPfrBA5yP6g.roa (raw, json)
Hash identifier: Npg6wxXIegPZsFOUYsv/LxC7OWRKEY+I5DEr8j3BeEw=
Subject key identifier: FF:EB:BA:C7:C4:FB:FB:1D:5B:B2:D5:71:A0:F7:EB:04:0E:72:3F:A8
Certificate issuer: /CN=01c4b784d8166e8bd0f47d720fde5faec1645b34
Certificate serial: 018CC8714D9F64E70869846173420358A1AB
Authority key identifier: 01:C4:B7:84:D8:16:6E:8B:D0:F4:7D:72:0F:DE:5F:AE:C1:64:5B:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AcS3hNgWbovQ9H1yD95frsFkWzQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/f2b840-2c85-465b-8b93-5b5beb10513b/1/_-u6x8T7-x1bstVxoPfrBA5yP6g.roa
Signing time: Tue 02 Jan 2024 04:31:57 +0000
ROA not before: Tue 02 Jan 2024 04:31:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208128
IP address blocks: 193.108.111.0/24 maxlen: 24
193.108.110.0/24 maxlen: 24
193.108.110.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:71:4d:9f:64:e7:08:69:84:61:73:42:03:58:a1:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01c4b784d8166e8bd0f47d720fde5faec1645b34
Validity
Not Before: Jan 2 04:31:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ffebbac7c4fbfb1d5bb2d571a0f7eb040e723fa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:a0:08:88:80:38:a9:2a:6e:65:97:c4:4a:ba:
2e:95:fe:df:0b:c3:6d:69:e2:bb:3c:ce:3d:7c:e8:
2d:7c:fd:5a:79:46:49:6a:e2:4f:ad:36:f9:5b:57:
65:0e:84:5f:08:dc:79:db:88:f0:df:ec:c0:ad:17:
9b:9b:a3:09:0f:47:cb:13:f9:c7:e9:f3:0f:ad:92:
7b:f6:59:04:4c:93:62:3a:d1:ff:19:0e:28:f5:db:
e1:3b:58:9e:33:a6:18:52:71:10:46:07:4d:e9:a5:
3e:46:f1:d6:3e:1a:1c:60:5e:5b:bd:30:cf:c4:45:
57:b6:b2:41:c7:e1:42:dc:92:ce:0b:3d:39:ea:c3:
57:df:18:eb:63:d8:46:11:39:0b:fc:40:7c:29:5e:
18:18:d4:56:ca:db:a0:a6:f9:bf:e4:0a:24:9c:cf:
8d:a5:e7:13:24:62:32:d2:21:81:06:85:83:5e:97:
5f:0d:60:5e:3c:e0:1a:ec:fc:6e:62:cf:32:80:c1:
37:48:da:41:38:27:fe:c0:66:dd:b1:d2:36:e1:1b:
f2:36:e8:c7:48:75:f4:c3:13:6e:fb:94:85:6d:ac:
a9:d4:67:8d:33:cc:50:67:83:8e:ea:2f:4f:2d:f2:
5b:3c:e5:27:d9:51:22:07:d0:e4:e8:7b:4e:ce:16:
b3:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:EB:BA:C7:C4:FB:FB:1D:5B:B2:D5:71:A0:F7:EB:04:0E:72:3F:A8
X509v3 Authority Key Identifier:
keyid:01:C4:B7:84:D8:16:6E:8B:D0:F4:7D:72:0F:DE:5F:AE:C1:64:5B:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AcS3hNgWbovQ9H1yD95frsFkWzQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/f2b840-2c85-465b-8b93-5b5beb10513b/1/_-u6x8T7-x1bstVxoPfrBA5yP6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/f2b840-2c85-465b-8b93-5b5beb10513b/1/AcS3hNgWbovQ9H1yD95frsFkWzQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.110.0/23
Signature Algorithm: sha256WithRSAEncryption
72:6c:32:46:3a:6c:62:6b:ab:52:f6:d4:16:4f:33:ec:ee:7f:
a1:3a:0c:3c:98:18:0e:e6:e6:7f:1a:10:27:2f:16:54:6c:2e:
0d:d4:9d:eb:ff:0e:c2:69:cd:1c:ac:b3:d3:a6:77:59:5e:76:
5c:ae:7a:70:0f:6a:8c:9b:20:67:18:77:2e:61:ee:7d:ff:ef:
96:1b:b6:1b:e3:f0:56:99:21:d8:30:a2:fe:0c:17:7a:d4:b2:
9d:96:bc:6e:97:0e:e2:6c:99:89:7a:e2:88:24:4b:1f:52:93:
58:66:e3:60:d0:2f:47:bc:ed:7a:30:f4:be:57:7a:11:b9:c2:
83:d0:ce:3b:4b:38:22:5f:77:0d:33:99:b9:9e:11:0a:fd:e0:
8d:79:ad:5f:2a:1d:be:8a:66:c6:4f:60:a8:6d:92:83:b2:61:
27:2e:f2:42:47:39:77:0b:14:9c:77:94:2c:3f:16:94:b5:dd:
63:a2:cd:41:59:be:cd:dd:27:37:e2:59:93:70:26:c7:71:48:
5c:b9:f9:27:db:e1:3d:35:33:ac:29:29:a1:9d:a1:e6:66:5b:
43:5e:30:e6:0b:62:f9:af:a3:1c:f2:0d:29:23:6e:55:da:df:
69:25:26:70:bf:a2:ea:0f:f4:5e:74:a9:8b:2b:42:60:19:34:
0a:fe:0f:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:04 2024 by rpki-client on console.sobornost.net