Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/b722bd-a51e-451f-8ce6-6a8136f9ffe2/1/4StE6nGfQi12hHxP7bRvcB6A888.roa
File: 4StE6nGfQi12hHxP7bRvcB6A888.roa (raw, json)
Hash identifier: hdljs5dtMIFJch9WVvO/cPUwYr67xI6nwCwFQcv+4RI=
Subject key identifier: E1:2B:44:EA:71:9F:42:2D:76:84:7C:4F:ED:B4:6F:70:1E:80:F3:CF
Certificate issuer: /CN=b80fef22577fe3cdfe7004c49ccc8fcfa8820d88
Certificate serial: 0182207E04DC8311C24448030E3E02FD347F
Authority key identifier: B8:0F:EF:22:57:7F:E3:CD:FE:70:04:C4:9C:CC:8F:CF:A8:82:0D:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uA_vIld_483-cATEnMyPz6iCDYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/b722bd-a51e-451f-8ce6-6a8136f9ffe2/1/4StE6nGfQi12hHxP7bRvcB6A888.roa
Signing time: Thu 21 Jul 2022 11:21:45 +0000
ROA not before: Thu 21 Jul 2022 11:21:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 195.96.145.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:20:7e:04:dc:83:11:c2:44:48:03:0e:3e:02:fd:34:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b80fef22577fe3cdfe7004c49ccc8fcfa8820d88
Validity
Not Before: Jul 21 11:21:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e12b44ea719f422d76847c4fedb46f701e80f3cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:54:d2:35:d2:5c:ef:bd:df:53:20:29:93:df:
3e:48:a6:49:dd:14:6c:1e:b5:0f:5b:be:70:a5:00:
3b:c1:f6:7d:d4:35:51:72:de:55:cd:9a:c4:fb:61:
07:c9:33:ab:02:92:71:8c:91:ed:17:04:e3:92:7a:
09:ec:d2:87:b2:d2:38:3f:77:c7:54:02:a2:5b:10:
17:76:00:8a:59:d8:30:65:94:eb:42:16:3d:bb:bb:
8a:4d:47:b3:90:37:06:c9:ee:a5:0b:5c:59:a9:c8:
6a:bd:f1:bc:c3:2c:71:1b:81:1e:c4:80:c2:2c:49:
67:0c:30:16:c5:b7:38:61:5d:8b:fe:d0:16:12:0b:
21:e2:ce:c9:a9:13:00:4f:fd:49:98:15:7f:0b:b3:
65:16:13:47:a5:35:b1:a0:66:c8:3b:b4:b4:cb:b4:
1f:95:54:a7:80:30:2c:3f:88:7c:85:df:d0:90:1e:
7e:db:54:79:db:7d:bf:28:90:e8:c4:18:cc:ec:de:
4f:68:95:56:16:42:9b:f7:a4:0d:cf:c3:32:ff:87:
49:4c:2f:b8:e5:d3:55:d6:e1:22:9a:08:be:91:f5:
d0:65:63:dc:ee:5b:c9:f8:39:67:98:a7:5f:88:ea:
81:f3:4a:08:e3:63:06:72:24:fe:72:76:97:28:66:
88:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:2B:44:EA:71:9F:42:2D:76:84:7C:4F:ED:B4:6F:70:1E:80:F3:CF
X509v3 Authority Key Identifier:
keyid:B8:0F:EF:22:57:7F:E3:CD:FE:70:04:C4:9C:CC:8F:CF:A8:82:0D:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uA_vIld_483-cATEnMyPz6iCDYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b722bd-a51e-451f-8ce6-6a8136f9ffe2/1/4StE6nGfQi12hHxP7bRvcB6A888.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b722bd-a51e-451f-8ce6-6a8136f9ffe2/1/uA_vIld_483-cATEnMyPz6iCDYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.145.0/24
Signature Algorithm: sha256WithRSAEncryption
90:4c:e2:6b:a0:4a:cb:ff:49:df:33:17:ca:fa:3c:29:cd:c4:
d7:6d:22:a5:f5:69:4a:15:d0:e4:8e:87:fd:c7:db:ea:6c:21:
14:1a:22:2c:6a:64:04:14:28:47:35:27:cc:1b:32:ac:cb:3d:
85:d5:17:fb:53:5d:3a:fa:d4:a2:60:f5:0f:6a:98:cf:0c:66:
33:de:1c:eb:55:fd:a6:34:78:39:85:93:82:54:6d:0f:e0:71:
90:3d:65:96:a6:b7:f7:b5:06:4e:f2:a2:62:66:17:52:8c:24:
6a:59:35:03:84:52:58:94:a4:89:43:a0:aa:7e:1f:6f:a6:b0:
91:32:78:27:a2:1f:46:a2:c8:20:f0:01:69:88:3a:db:50:b8:
fa:31:c5:cf:da:f4:2d:1b:9a:f1:b1:ba:68:a4:bc:2f:5c:75:
91:6d:96:36:18:08:63:42:a3:ce:19:b5:03:9c:0c:eb:37:18:
7e:1c:79:3e:bc:4a:f8:60:f8:73:4f:85:db:73:10:4c:c4:d6:
25:b6:e1:0b:b3:78:22:33:d4:dd:81:ff:ec:f9:a1:3d:9e:a3:
a2:f1:a7:64:bb:38:b4:09:64:74:c1:e1:09:79:07:39:78:98:
55:64:13:72:1e:39:59:1c:c5:8a:a0:88:dc:96:2b:30:ca:58:
b6:41:df:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:49 2023 by rpki-client on console.sobornost.net