Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/9653e5-79bd-48ae-86ed-f9bd384f6215/1/tNbmOzu3ez8Jsr5FLyKqZo-fJ8M.roa
File: tNbmOzu3ez8Jsr5FLyKqZo-fJ8M.roa (raw, json)
Hash identifier: KpVSZMGzs+bjx5TpYS+vcDWRz5NUWhDdpl51ef3MO0w=
Subject key identifier: B4:D6:E6:3B:3B:B7:7B:3F:09:B2:BE:45:2F:22:AA:66:8F:9F:27:C3
Certificate issuer: /CN=893cfadc6dbc1dd9ba0e47406cedb306c6a85957
Certificate serial: 01856C539FF343724FC3F60A0503FAD63AAA
Authority key identifier: 89:3C:FA:DC:6D:BC:1D:D9:BA:0E:47:40:6C:ED:B3:06:C6:A8:59:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iTz63G28Hdm6DkdAbO2zBsaoWVc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/9653e5-79bd-48ae-86ed-f9bd384f6215/1/tNbmOzu3ez8Jsr5FLyKqZo-fJ8M.roa
Signing time: Sun 01 Jan 2023 07:54:57 +0000
ROA not before: Sun 01 Jan 2023 07:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 37.72.141.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:9f:f3:43:72:4f:c3:f6:0a:05:03:fa:d6:3a:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=893cfadc6dbc1dd9ba0e47406cedb306c6a85957
Validity
Not Before: Jan 1 07:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b4d6e63b3bb77b3f09b2be452f22aa668f9f27c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:03:8b:23:b8:05:eb:99:1a:41:60:42:5b:79:
38:67:b7:5e:8c:fa:7c:73:4f:c7:d8:1f:9b:a7:08:
e6:80:9d:04:3e:d3:c2:7b:83:28:2a:09:f9:06:c1:
b3:02:66:35:f4:4b:31:f4:7c:34:91:96:81:14:ce:
73:b4:d0:86:d3:68:65:d5:11:f4:33:32:0c:b0:66:
e9:0f:d6:c5:a4:c4:be:f4:65:ca:94:bb:b5:c8:8e:
6e:f1:dd:f4:ff:00:20:07:7b:87:3f:af:9c:35:3e:
08:15:a1:3c:36:d7:8d:ba:e9:49:3a:60:d1:d4:29:
58:aa:24:0c:41:17:ee:24:b8:6c:7a:6a:e2:a9:4b:
11:ae:07:3f:d1:f7:0d:a9:ff:ed:13:9f:2c:24:75:
8f:fc:ac:57:92:e4:eb:76:db:30:d0:47:7b:7b:e5:
85:0a:de:3e:85:a2:a3:88:8f:f7:eb:04:fd:c1:3c:
c3:f7:a9:6b:aa:e7:ce:e2:ab:bc:5d:32:e6:57:fe:
f9:aa:dd:94:cb:74:12:18:c0:78:27:cf:ed:32:61:
b9:db:b4:fc:18:c9:05:e7:0a:2e:36:03:eb:b1:08:
61:62:27:5e:a6:e9:82:92:05:37:e6:d2:18:d3:bc:
43:3f:d4:76:5d:48:40:25:ab:92:52:d2:ac:f8:a4:
ee:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:D6:E6:3B:3B:B7:7B:3F:09:B2:BE:45:2F:22:AA:66:8F:9F:27:C3
X509v3 Authority Key Identifier:
keyid:89:3C:FA:DC:6D:BC:1D:D9:BA:0E:47:40:6C:ED:B3:06:C6:A8:59:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iTz63G28Hdm6DkdAbO2zBsaoWVc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/9653e5-79bd-48ae-86ed-f9bd384f6215/1/tNbmOzu3ez8Jsr5FLyKqZo-fJ8M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/9653e5-79bd-48ae-86ed-f9bd384f6215/1/iTz63G28Hdm6DkdAbO2zBsaoWVc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.72.141.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:57:bc:d6:ab:49:4c:02:d0:bd:0d:b2:ed:c9:99:dc:2a:d4:
27:b3:fc:72:51:f5:92:e9:97:82:2c:b6:b8:c2:32:41:a4:5a:
40:3e:29:ff:c6:f6:ee:25:d4:42:98:44:10:2a:1d:19:97:2c:
63:d5:99:72:7d:c5:01:97:1f:f3:87:d3:ac:b1:6b:cc:fd:04:
76:cc:1d:37:ae:9d:2d:26:ea:10:db:bd:b7:32:f8:dc:c0:5f:
1b:66:bd:db:25:a7:fb:b6:56:23:44:d8:c5:b2:50:31:2c:b6:
c7:69:9b:88:86:ad:29:66:c9:67:19:77:bc:20:15:9d:78:8e:
4f:95:f5:c5:fd:fc:a5:43:ae:e5:ee:6c:7a:04:df:c9:74:cf:
f8:9f:bd:02:89:bf:94:01:e8:ff:11:0c:92:8b:ad:5e:b0:bc:
20:9f:37:ce:81:49:09:64:3f:b5:94:9f:79:32:1d:3a:fb:80:
9a:85:45:18:df:0c:9d:a0:08:96:0f:0b:80:a1:a2:0d:7a:7c:
ef:4d:e8:53:ae:92:3c:a6:9a:87:c3:e5:db:03:3e:ae:cd:1c:
56:9d:3a:11:f8:8d:61:b7:47:17:aa:5c:92:7b:2d:cf:60:cb:
07:a1:56:bc:6b:d3:75:54:7b:9b:64:0b:9f:b2:09:d5:a6:10:
d2:70:79:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:57 2023 by rpki-client on console.sobornost.net