Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/9653e5-79bd-48ae-86ed-f9bd384f6215/1/LximoE47E4akBjnJsAzWZHxU4yg.roa
File: LximoE47E4akBjnJsAzWZHxU4yg.roa (raw, json)
Hash identifier: VBujtxC8mf32HJITsL1ol786Bj17kjrC3w5ti2SzUbw=
Subject key identifier: 2F:18:A6:A0:4E:3B:13:86:A4:06:39:C9:B0:0C:D6:64:7C:54:E3:28
Certificate issuer: /CN=893cfadc6dbc1dd9ba0e47406cedb306c6a85957
Certificate serial: 0108B464
Authority key identifier: 89:3C:FA:DC:6D:BC:1D:D9:BA:0E:47:40:6C:ED:B3:06:C6:A8:59:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iTz63G28Hdm6DkdAbO2zBsaoWVc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/9653e5-79bd-48ae-86ed-f9bd384f6215/1/LximoE47E4akBjnJsAzWZHxU4yg.roa
Signing time: Sun 17 Apr 2022 09:57:58 +0000
ROA not before: Sun 17 Apr 2022 09:57:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 37.72.141.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17347684 (0x108b464)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=893cfadc6dbc1dd9ba0e47406cedb306c6a85957
Validity
Not Before: Apr 17 09:57:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f18a6a04e3b1386a40639c9b00cd6647c54e328
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:0a:22:f5:b0:9d:1c:43:86:1b:3b:82:9f:b8:
cc:bb:fa:bc:9b:d2:bc:e1:f7:bf:f4:e0:25:14:b6:
b6:7b:2f:a6:c9:8f:ee:e9:ce:fa:5f:d0:2f:93:b6:
2e:02:9f:13:b6:a2:3b:7d:69:87:f7:bf:76:bc:44:
52:11:6d:49:69:ec:ad:b5:87:de:47:76:2b:1e:54:
7a:2d:83:52:19:82:ef:6d:79:5c:b1:c6:39:8d:8e:
78:f4:f8:35:60:20:ec:15:36:dd:0d:d3:a4:c3:ad:
fa:51:71:23:6d:dc:de:65:85:63:93:a8:65:99:42:
a0:2a:6b:e0:7e:d1:4a:46:a2:c7:77:63:0c:48:86:
29:89:df:87:78:db:ce:77:03:18:38:bd:90:49:2b:
d8:14:5f:9b:52:f0:25:35:90:56:be:16:02:45:44:
ca:c0:50:34:54:ea:14:fa:3e:95:14:d0:2e:e4:cf:
ac:2e:bb:56:2c:79:ea:82:00:59:85:96:ac:80:da:
6c:1c:be:d9:94:d2:ea:af:3b:e2:cf:c1:f6:e4:db:
df:bd:ca:65:68:b7:d3:cb:94:9e:02:df:5f:73:93:
28:9c:07:6e:0e:21:09:da:40:ad:2c:17:8b:50:0b:
74:bc:56:b4:d3:c5:6b:aa:ef:19:2d:48:f8:21:b1:
28:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:18:A6:A0:4E:3B:13:86:A4:06:39:C9:B0:0C:D6:64:7C:54:E3:28
X509v3 Authority Key Identifier:
keyid:89:3C:FA:DC:6D:BC:1D:D9:BA:0E:47:40:6C:ED:B3:06:C6:A8:59:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iTz63G28Hdm6DkdAbO2zBsaoWVc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/9653e5-79bd-48ae-86ed-f9bd384f6215/1/LximoE47E4akBjnJsAzWZHxU4yg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/9653e5-79bd-48ae-86ed-f9bd384f6215/1/iTz63G28Hdm6DkdAbO2zBsaoWVc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.72.141.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:5e:a4:4f:2c:c1:a8:53:5e:69:d9:74:e7:8b:2d:be:6b:34:
60:80:e2:be:a7:56:a8:83:09:97:65:f0:19:be:2a:08:18:87:
0f:69:cc:8a:77:b3:cf:79:c6:5b:8a:dd:c8:a9:8e:89:94:9f:
27:ae:a4:93:8f:56:1b:cc:9c:d4:de:a2:d7:e3:f6:b9:31:2c:
a1:05:e7:73:94:3d:09:4a:9a:a6:43:8d:40:06:90:3f:48:3c:
b2:dd:c9:45:66:56:57:f1:6b:ff:4a:96:9e:16:39:ed:8e:c5:
0f:17:4c:51:2c:df:99:a7:d1:98:ff:1f:61:2f:fd:09:94:f7:
2a:2c:44:30:c4:ff:96:67:5a:78:a4:41:5b:6b:9e:f8:3d:05:
60:a4:7b:5e:fd:b5:ef:16:31:9f:82:4a:ed:56:b3:d3:79:fc:
98:bd:63:23:3a:92:2a:ba:23:08:84:1e:1f:1b:96:e4:e0:72:
70:c8:28:7f:95:f7:da:14:b6:89:29:56:43:69:74:29:30:0a:
56:70:7d:0e:43:bd:72:03:34:c1:ce:ee:ad:d1:98:f0:44:66:
6f:c2:cc:03:13:72:37:8a:8b:c7:c0:4b:2b:ac:2a:d5:65:91:
e7:5c:d4:72:f5:9f:64:0f:87:3e:b7:5f:13:22:6d:57:4b:ed:
77:24:3d:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:57 2023 by rpki-client on console.sobornost.net