Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/e085e4-ec02-41dd-8204-24c2311f6a49/1/QZlsjfEW5uGTUr_j4_GXULEHY1Y.roa
File: QZlsjfEW5uGTUr_j4_GXULEHY1Y.roa (raw, json)
Hash identifier: oy8GQvuEsoM+y1yQZ5UEOXEzQnZg55VADv+0N+f7/N8=
Subject key identifier: 41:99:6C:8D:F1:16:E6:E1:93:52:BF:E3:E3:F1:97:50:B1:07:63:56
Certificate issuer: /CN=5bb6650b6cd17bab32a22f8d24b88d00fb13a12e
Certificate serial: 0189654A8C88AB2FF4AB55391BE74FDCB179
Authority key identifier: 5B:B6:65:0B:6C:D1:7B:AB:32:A2:2F:8D:24:B8:8D:00:FB:13:A1:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W7ZlC2zRe6syoi-NJLiNAPsToS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/e085e4-ec02-41dd-8204-24c2311f6a49/1/QZlsjfEW5uGTUr_j4_GXULEHY1Y.roa
Signing time: Mon 17 Jul 2023 19:18:51 +0000
ROA not before: Mon 17 Jul 2023 19:18:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49505
IP address blocks: 176.116.12.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:65:4a:8c:88:ab:2f:f4:ab:55:39:1b:e7:4f:dc:b1:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bb6650b6cd17bab32a22f8d24b88d00fb13a12e
Validity
Not Before: Jul 17 19:18:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41996c8df116e6e19352bfe3e3f19750b1076356
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:87:ac:51:6b:52:6f:5b:d6:9e:06:c0:c1:af:
c4:5a:8b:31:69:ff:bd:80:72:c7:1e:f9:5b:02:86:
17:45:58:7d:f3:98:e5:1a:dc:a7:7f:5a:46:f0:d3:
6c:52:b6:40:42:d3:ad:5d:39:67:7c:07:53:73:51:
52:b7:dc:85:70:13:b4:8d:73:f7:07:29:f1:e8:7d:
6f:fe:23:b0:0f:e2:19:33:ec:a5:34:b4:86:0a:32:
52:21:75:fb:32:58:c6:18:b2:88:ee:05:43:89:d4:
da:a2:e5:4b:cc:5c:ef:ce:ab:30:54:74:b1:6f:ac:
07:ea:db:c1:7d:dd:8f:f0:75:98:a8:b3:00:18:2c:
b4:8a:5b:f5:cc:1f:93:1c:cb:6f:55:0d:ee:f7:ba:
06:ef:43:30:b8:c3:c8:ee:87:b6:7e:89:1c:31:5b:
38:e9:bb:6a:b5:ea:11:a8:c9:c7:8a:ba:27:c9:f6:
18:39:cd:cd:6d:2d:ea:f2:3b:42:5b:11:1d:69:eb:
11:b3:fd:95:de:d1:66:77:79:c9:b4:33:c1:b0:0a:
b0:02:ef:65:fe:9c:23:79:5b:3c:8c:7c:a8:f6:fb:
e8:89:c1:a9:30:ee:cb:19:83:b0:73:1c:5f:64:dc:
7a:df:02:a5:97:7a:04:e7:e1:3b:e0:f0:e6:47:32:
38:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:99:6C:8D:F1:16:E6:E1:93:52:BF:E3:E3:F1:97:50:B1:07:63:56
X509v3 Authority Key Identifier:
keyid:5B:B6:65:0B:6C:D1:7B:AB:32:A2:2F:8D:24:B8:8D:00:FB:13:A1:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W7ZlC2zRe6syoi-NJLiNAPsToS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/e085e4-ec02-41dd-8204-24c2311f6a49/1/QZlsjfEW5uGTUr_j4_GXULEHY1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/e085e4-ec02-41dd-8204-24c2311f6a49/1/W7ZlC2zRe6syoi-NJLiNAPsToS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.12.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:31:b5:4d:8c:4a:f5:e9:34:c5:4c:fc:0f:b2:58:18:9d:cf:
7a:e9:2a:61:56:f1:15:5a:f0:e7:65:2f:14:cb:1b:19:f4:41:
62:e7:a1:85:11:66:e5:ae:1e:ae:11:36:f1:5f:46:65:c8:3e:
55:bf:5f:0c:e9:88:41:76:5d:7a:08:fe:8d:d2:99:b7:2f:5c:
65:d9:da:b3:76:ad:88:ba:e4:6e:e6:a8:59:6f:0e:5a:d0:fe:
79:96:d3:48:79:d1:b8:70:b1:c7:23:04:65:01:58:7c:04:ea:
36:e8:e7:3a:13:da:78:d2:7b:7f:6e:f2:b4:ac:90:ae:6c:77:
68:60:ef:62:3c:4f:0e:7a:2e:a4:b1:14:06:da:6c:b7:2e:da:
6a:dc:a8:09:c2:17:5e:e7:d9:cc:86:60:c7:c0:de:74:09:76:
33:0c:51:12:64:7c:ce:2d:61:00:16:72:76:00:6e:10:73:65:
5a:06:80:7c:15:20:70:74:9f:de:30:67:20:b3:3f:3a:ab:e5:
ce:cf:cd:ad:47:e7:66:21:35:5c:c3:43:70:17:14:50:77:0d:
a1:20:d5:69:ba:38:19:03:5f:ea:0b:b6:8c:a8:d8:8c:b5:4c:
ba:3b:52:3d:3e:f0:d5:13:03:87:64:ac:e1:18:b0:6b:3e:39:
8a:3f:99:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:49 2023 by rpki-client on console.sobornost.net