Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/VCpxqAyppXWW9LD-OgM_0J0UMtw.roa
File: VCpxqAyppXWW9LD-OgM_0J0UMtw.roa (raw, json)
Hash identifier: 304dWmL48v27jZ9sCjnU+aQZtWvFR3plowoj9kd4Ci4=
Subject key identifier: 54:2A:71:A8:0C:A9:A5:75:96:F4:B0:FE:3A:03:3F:D0:9D:14:32:DC
Certificate issuer: /CN=41c96492c00408ad54d730c0eb629e3a0b50d80f
Certificate serial: 01936877EC16C3D2F39AF7D4FD090B8664B7
Authority key identifier: 41:C9:64:92:C0:04:08:AD:54:D7:30:C0:EB:62:9E:3A:0B:50:D8:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QclkksAECK1U1zDA62KeOgtQ2A8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/VCpxqAyppXWW9LD-OgM_0J0UMtw.roa
Signing time: Tue 26 Nov 2024 12:35:09 +0000
ROA not before: Tue 26 Nov 2024 12:35:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42755
IP address blocks: 91.213.112.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:77:ec:16:c3:d2:f3:9a:f7:d4:fd:09:0b:86:64:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41c96492c00408ad54d730c0eb629e3a0b50d80f
Validity
Not Before: Nov 26 12:35:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=542a71a80ca9a57596f4b0fe3a033fd09d1432dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:a5:22:52:a2:8d:59:19:cd:99:72:c6:ac:f9:
ce:10:a2:57:f6:71:23:7c:19:b2:1e:73:51:fd:21:
dc:d5:22:d4:21:ac:13:57:49:2b:af:f8:c9:12:7d:
d9:70:e2:8e:09:72:53:c9:96:e9:c7:f7:e3:77:db:
5e:86:6b:e6:0d:ff:49:34:b7:2e:18:d5:69:fb:ef:
fc:7b:c9:46:86:a9:90:19:aa:ce:62:05:9c:1c:3a:
95:17:46:69:18:55:1a:9f:ec:ad:60:4a:96:c0:2d:
ac:64:10:be:d3:c4:cd:cd:b1:a4:99:78:84:f9:50:
87:f1:e2:0d:76:52:04:f0:91:36:8b:94:12:28:60:
6d:11:9f:19:a7:ee:94:e9:44:6c:0d:88:3b:58:05:
8f:e5:45:52:4c:f7:a8:7c:07:71:f7:74:e6:48:7c:
36:c5:44:e4:84:5b:ed:66:ec:a4:d6:ba:e6:c4:6d:
92:f8:61:bc:64:1c:21:37:00:db:b9:ed:c4:b4:4d:
68:4e:3c:c2:95:7b:1e:c1:17:4f:1c:95:d5:33:24:
4d:fa:e2:ae:7d:c7:75:43:79:b7:7d:31:7f:1c:bd:
04:43:8c:54:cd:b1:77:84:83:86:db:d0:2e:e6:65:
86:31:8c:71:f8:b9:cb:cc:e4:a6:3b:fc:f8:b8:e1:
8e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:2A:71:A8:0C:A9:A5:75:96:F4:B0:FE:3A:03:3F:D0:9D:14:32:DC
X509v3 Authority Key Identifier:
keyid:41:C9:64:92:C0:04:08:AD:54:D7:30:C0:EB:62:9E:3A:0B:50:D8:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QclkksAECK1U1zDA62KeOgtQ2A8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/VCpxqAyppXWW9LD-OgM_0J0UMtw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.112.0/24
Signature Algorithm: sha256WithRSAEncryption
39:29:bc:a3:07:b2:28:6d:3e:a7:6f:6c:49:34:c0:e0:4c:f4:
04:5f:3d:93:22:2c:ad:04:98:72:f7:3b:de:cc:30:1e:fd:8e:
ba:fd:81:67:23:54:de:81:b0:d7:78:f3:18:96:3f:fc:fb:70:
71:aa:b4:f3:6c:19:68:ae:16:90:f2:fc:65:ef:13:11:f1:9a:
0f:5a:64:b3:b1:be:1c:f6:ea:b2:f5:f9:d8:aa:82:69:09:b3:
a3:6b:b8:62:0c:63:64:91:cc:53:f4:89:77:ea:48:44:2f:d1:
e4:f6:8f:ba:e8:60:15:f0:9b:01:8b:30:57:26:08:c3:72:5b:
6d:cc:d6:40:19:92:8c:0b:9f:78:d8:22:43:1d:ba:4b:2d:eb:
99:2f:72:a8:eb:9c:33:20:90:3a:d7:8c:a0:5e:df:77:1f:cc:
3f:22:ce:c3:bb:f3:cd:71:8d:ab:12:f1:6a:a0:92:2a:bd:37:
c4:8b:d5:67:dc:23:45:67:67:e2:20:d3:45:a2:35:a5:08:1a:
5c:e1:5a:3e:37:16:be:67:b2:66:ee:a4:db:c2:00:91:3c:fc:
5e:b9:01:92:31:49:a8:43:4b:b8:d9:42:7f:1b:31:46:ba:b0:
d6:8d:3c:bd:78:90:5b:fe:92:fc:2e:a3:3b:1b:82:b2:6d:0a:
b0:42:39:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:17 2024 by rpki-client on console.sobornost.net