Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c26199-3303-4223-9f0f-5dafc634ccd6/1/Yd6n32Hg3sQ1c0yXCr8GusBIv8c.roa
File: Yd6n32Hg3sQ1c0yXCr8GusBIv8c.roa (raw, json)
Hash identifier: wlvdC2tSWRH2L6V9KFvW9Dpgea1YkHun6Kwe96YczXI=
Subject key identifier: 61:DE:A7:DF:61:E0:DE:C4:35:73:4C:97:0A:BF:06:BA:C0:48:BF:C7
Certificate issuer: /CN=320ad0cb1c8fabd2a7172723f2eb53ea02e84a69
Certificate serial: 0193D96DAD0783EC0FA11A1001013DB62EFC
Authority key identifier: 32:0A:D0:CB:1C:8F:AB:D2:A7:17:27:23:F2:EB:53:EA:02:E8:4A:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MgrQyxyPq9KnFycj8utT6gLoSmk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c26199-3303-4223-9f0f-5dafc634ccd6/1/Yd6n32Hg3sQ1c0yXCr8GusBIv8c.roa
Signing time: Wed 18 Dec 2024 11:01:03 +0000
ROA not before: Wed 18 Dec 2024 11:01:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213757
IP address blocks: 217.119.138.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d9:6d:ad:07:83:ec:0f:a1:1a:10:01:01:3d:b6:2e:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=320ad0cb1c8fabd2a7172723f2eb53ea02e84a69
Validity
Not Before: Dec 18 11:01:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=61dea7df61e0dec435734c970abf06bac048bfc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:3f:5a:51:a0:a5:7c:fc:f0:b4:2a:af:eb:c5:
66:c6:2c:4a:3c:67:7f:03:5a:37:c0:7a:35:f2:ed:
22:f8:1f:21:a2:35:37:1d:d8:cf:4c:bf:46:50:01:
1c:d0:81:a2:c5:94:03:3a:0d:98:07:f8:7d:14:f4:
28:d6:4f:4d:20:82:a5:65:ba:c9:f5:e9:2d:90:70:
85:6e:f5:89:58:0c:0f:93:83:16:20:5a:be:27:ea:
1c:41:07:ab:66:0a:db:e8:55:9c:bd:3b:29:1a:57:
ff:9a:d8:7e:f8:20:0c:0b:1a:0f:da:ef:82:e6:5d:
cf:df:8b:09:80:9f:6b:36:32:81:8b:dc:b5:11:ac:
6c:6d:64:db:d8:1d:18:a9:5c:a6:fe:e0:f8:d8:c7:
af:ce:3a:74:42:37:ed:db:8b:a2:c7:19:79:b2:d2:
eb:c8:22:07:c2:2d:df:4b:12:51:ac:52:2b:a7:fd:
2a:46:72:3d:37:6d:0b:25:a6:3e:1e:58:81:12:38:
b4:4d:d7:bb:01:e1:92:1e:98:45:06:79:1b:dc:fb:
2a:6a:19:58:74:75:4e:e9:ae:5d:8f:1f:cc:b8:1d:
55:87:fe:4b:e5:df:8a:a4:93:d6:a5:6f:b1:13:19:
c6:6d:5a:0a:f5:f7:d5:2f:45:51:18:8f:03:67:ab:
95:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:DE:A7:DF:61:E0:DE:C4:35:73:4C:97:0A:BF:06:BA:C0:48:BF:C7
X509v3 Authority Key Identifier:
keyid:32:0A:D0:CB:1C:8F:AB:D2:A7:17:27:23:F2:EB:53:EA:02:E8:4A:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MgrQyxyPq9KnFycj8utT6gLoSmk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c26199-3303-4223-9f0f-5dafc634ccd6/1/Yd6n32Hg3sQ1c0yXCr8GusBIv8c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c26199-3303-4223-9f0f-5dafc634ccd6/1/MgrQyxyPq9KnFycj8utT6gLoSmk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.119.138.0/24
Signature Algorithm: sha256WithRSAEncryption
90:2d:03:18:6c:03:5b:88:af:26:d5:01:8b:24:ce:a7:e0:32:
41:56:1f:4f:c0:27:11:32:c1:d1:f6:76:70:c3:0f:87:de:db:
42:c4:9c:9b:aa:6d:9f:87:1c:78:3e:81:1c:07:42:b4:02:1c:
4a:83:5c:50:db:d5:d2:4a:76:4e:45:4d:d0:ab:e7:06:a6:73:
dc:aa:25:c2:bf:44:b3:07:a7:7a:fe:a5:f2:1b:2c:f6:26:9c:
2c:46:f5:37:de:88:ea:58:b4:7c:25:58:f7:31:32:6b:90:bc:
b8:27:4c:15:32:44:ad:02:c2:7e:38:9a:5d:9d:a5:30:0a:bd:
c2:a2:f7:cf:54:6b:94:06:0a:a6:4b:de:0d:64:da:0c:6a:f5:
91:07:33:f7:13:5f:81:40:5b:9d:c0:20:e3:f0:59:71:a2:7f:
0e:bb:58:f9:9e:78:67:c4:2a:e4:52:26:1a:29:81:b7:3a:06:
30:d1:59:11:e7:45:0e:74:40:8b:88:cc:c4:af:4b:8d:60:86:
6c:4a:b8:b5:35:d4:bb:08:9d:b1:9b:12:af:e5:81:ea:c0:70:
28:00:c5:1c:80:24:fd:80:e8:a8:9d:4e:6f:86:7d:da:ce:f8:
22:2c:df:93:11:0c:12:6d:21:1e:b1:0a:7f:61:32:1c:81:36:
fc:84:79:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:07 2024 by rpki-client on console.sobornost.net