Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/1b8cb9-e49d-434c-8c75-501628c5a7c8/1/3f3C0DGiOXqKfpqjw5nw6nn8INw.roa
File: 3f3C0DGiOXqKfpqjw5nw6nn8INw.roa (raw, json)
Hash identifier: hnZDSTf8trjJDCVPdHSIxaPEZDcAYEhpNdPVmoE0hxE=
Subject key identifier: DD:FD:C2:D0:31:A2:39:7A:8A:7E:9A:A3:C3:99:F0:EA:79:FC:20:DC
Certificate issuer: /CN=1a349707197c73e414bf642c6042c7bfad600e54
Certificate serial: 0AD0D87F
Authority key identifier: 1A:34:97:07:19:7C:73:E4:14:BF:64:2C:60:42:C7:BF:AD:60:0E:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GjSXBxl8c-QUv2QsYELHv61gDlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/1b8cb9-e49d-434c-8c75-501628c5a7c8/1/3f3C0DGiOXqKfpqjw5nw6nn8INw.roa
Signing time: Sat 01 Jan 2022 11:54:49 +0000
ROA not before: Sat 01 Jan 2022 11:54:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206488
IP address blocks: 185.185.92.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181459071 (0xad0d87f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a349707197c73e414bf642c6042c7bfad600e54
Validity
Not Before: Jan 1 11:54:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ddfdc2d031a2397a8a7e9aa3c399f0ea79fc20dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:40:cc:6c:cf:24:38:04:80:80:af:a9:bd:13:
79:3b:05:b3:fc:6c:be:eb:92:6e:8e:19:00:5e:c8:
6f:2a:c5:3b:d3:6e:9a:2f:fb:02:0b:dd:a5:81:27:
02:89:5a:6c:7c:72:72:00:7e:2e:49:85:f2:11:f6:
cc:9a:45:73:56:da:27:33:a9:f8:5b:fd:05:39:5a:
c2:a6:ec:7c:2c:31:ed:0a:60:7c:9c:d3:82:e4:8e:
53:3c:78:bb:7b:e5:aa:79:d4:c3:98:a5:88:b9:44:
df:46:3b:c5:ae:e1:a9:6b:c6:47:ce:60:90:9e:49:
d9:bb:90:5f:4a:1e:19:4b:96:29:77:cc:7f:e6:84:
bb:9d:24:73:28:26:01:36:87:03:cf:27:09:db:e5:
0a:f9:aa:79:7e:db:f0:74:17:8f:d8:77:81:d4:4e:
66:0d:4b:e9:e9:a4:67:17:91:a0:47:83:59:7f:46:
55:04:a6:5b:b5:3f:72:b9:48:14:3a:b4:6b:35:a1:
ee:51:af:ef:22:6f:54:44:86:ce:15:50:1d:21:f7:
50:43:39:e6:59:b6:84:e1:08:df:3c:ff:0f:38:a6:
ff:6f:d1:a3:25:63:82:cd:d6:85:39:25:60:d0:83:
3e:ca:e1:83:c3:70:59:33:70:c2:4a:c0:b9:f9:b6:
e5:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:FD:C2:D0:31:A2:39:7A:8A:7E:9A:A3:C3:99:F0:EA:79:FC:20:DC
X509v3 Authority Key Identifier:
keyid:1A:34:97:07:19:7C:73:E4:14:BF:64:2C:60:42:C7:BF:AD:60:0E:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GjSXBxl8c-QUv2QsYELHv61gDlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/1b8cb9-e49d-434c-8c75-501628c5a7c8/1/3f3C0DGiOXqKfpqjw5nw6nn8INw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/1b8cb9-e49d-434c-8c75-501628c5a7c8/1/GjSXBxl8c-QUv2QsYELHv61gDlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.185.92.0/22
Signature Algorithm: sha256WithRSAEncryption
8e:93:db:aa:88:88:ee:c7:42:08:c4:0f:ea:54:a8:0f:ea:6f:
76:39:09:8f:73:10:f9:09:34:50:c3:61:27:1f:59:55:aa:32:
ff:cb:a8:20:cb:2c:4b:db:99:d5:84:14:52:81:3d:61:84:14:
a8:72:3f:0f:bf:d0:96:23:61:ea:f2:e4:4a:90:4c:ce:36:f5:
7e:59:63:84:d1:94:3d:f9:30:4a:a1:f2:6d:09:d9:7f:1c:c0:
f5:3f:77:49:ae:e8:86:d9:dd:b7:73:f3:4f:ab:e8:99:97:fc:
ad:23:ad:7b:99:82:c5:29:57:95:6f:37:03:c3:63:dd:c5:78:
2f:aa:67:50:59:e6:e8:59:5d:a9:47:44:62:1b:be:73:59:3f:
01:92:cd:a1:da:66:2d:2e:13:2a:f1:7f:80:e5:2a:7b:0a:9b:
ba:6c:e1:6b:80:ce:5e:52:59:1f:ba:a5:92:2a:89:10:f6:d7:
7a:bd:24:06:c0:ba:ac:f6:6e:65:ec:c3:55:69:14:82:53:96:
2d:de:dc:6e:0a:ad:e8:9d:06:62:53:8e:8d:a4:af:b0:4d:8a:
8e:52:72:e8:9e:75:0d:e1:14:56:f1:0f:2c:00:ea:b0:9f:3d:
45:77:cb:79:af:91:8d:57:92:79:72:eb:30:31:7f:b6:de:13:
28:d1:cc:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:33 2023 by rpki-client on console.sobornost.net