Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/f70e3b-7028-493a-9597-6d57af72bb3c/1/TNHNbF-N2F5QebzvC7QgpFn6o_k.roa
File: TNHNbF-N2F5QebzvC7QgpFn6o_k.roa (raw, json)
Hash identifier: sDJvSZWFeh1nCdBZJzOeE4UdjXE4z1SqG0/Or/AnRDc=
Subject key identifier: 4C:D1:CD:6C:5F:8D:D8:5E:50:79:BC:EF:0B:B4:20:A4:59:FA:A3:F9
Certificate issuer: /CN=361f9afdac42548074495a2953879d6ea6456e09
Certificate serial: 018964C061747F3FCA123AB00EF7EA87A0E8
Authority key identifier: 36:1F:9A:FD:AC:42:54:80:74:49:5A:29:53:87:9D:6E:A6:45:6E:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nh-a_axCVIB0SVopU4edbqZFbgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/f70e3b-7028-493a-9597-6d57af72bb3c/1/TNHNbF-N2F5QebzvC7QgpFn6o_k.roa
Signing time: Mon 17 Jul 2023 16:47:56 +0000
ROA not before: Mon 17 Jul 2023 16:47:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 194.104.229.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:c0:61:74:7f:3f:ca:12:3a:b0:0e:f7:ea:87:a0:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=361f9afdac42548074495a2953879d6ea6456e09
Validity
Not Before: Jul 17 16:47:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4cd1cd6c5f8dd85e5079bcef0bb420a459faa3f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:15:95:5d:ab:83:52:07:49:2f:13:71:e6:99:
2f:dc:53:30:c1:c3:74:17:1f:76:d0:1b:68:75:6d:
b7:a4:36:90:6c:92:b1:58:f3:50:8c:89:a4:24:94:
f8:8a:5a:e4:d9:f4:6f:60:df:14:40:e6:aa:29:51:
97:f9:49:74:40:18:a6:65:f2:38:45:6c:fb:8d:e1:
98:f0:12:8b:3a:09:ce:dc:3e:d6:25:75:a2:36:6f:
e2:37:a6:b4:cd:e3:f7:0f:e4:2b:b3:f7:10:55:3a:
f8:6b:f5:23:b1:6e:9d:95:79:eb:04:63:0d:38:9a:
ba:bb:84:78:33:92:c7:99:8e:48:9d:9f:eb:18:aa:
f2:9e:de:8c:e6:32:d1:d6:af:af:7a:c5:33:e5:70:
d0:8d:64:78:30:31:88:ba:84:5b:11:20:97:66:e2:
29:b6:1d:a8:1a:02:c0:36:fb:0c:b6:6d:c3:ac:96:
a5:aa:19:af:24:f1:ca:3a:50:1e:2d:26:dc:fe:c9:
24:b7:ce:26:88:9e:0d:f1:16:95:c8:78:62:50:63:
e6:f2:c5:1b:cb:ce:bb:2c:17:af:53:e0:ec:53:85:
2e:9b:08:db:3a:04:c0:4f:90:95:d2:c5:58:04:45:
ed:d7:29:34:e4:1d:bf:51:e9:a5:ef:be:fc:96:68:
ad:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:D1:CD:6C:5F:8D:D8:5E:50:79:BC:EF:0B:B4:20:A4:59:FA:A3:F9
X509v3 Authority Key Identifier:
keyid:36:1F:9A:FD:AC:42:54:80:74:49:5A:29:53:87:9D:6E:A6:45:6E:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nh-a_axCVIB0SVopU4edbqZFbgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/f70e3b-7028-493a-9597-6d57af72bb3c/1/TNHNbF-N2F5QebzvC7QgpFn6o_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/f70e3b-7028-493a-9597-6d57af72bb3c/1/Nh-a_axCVIB0SVopU4edbqZFbgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.104.229.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:1a:a4:b1:58:de:22:40:2c:f5:72:21:8c:84:cc:9c:91:e2:
93:3d:a6:4c:4b:7f:da:51:93:b9:59:3f:1b:4c:fd:c5:c8:68:
2f:82:ca:97:60:27:d2:2a:eb:3b:f0:c7:e0:7e:f0:9a:6b:93:
a6:56:c8:ed:63:59:9d:91:fb:03:46:4f:79:a1:23:83:22:df:
ef:0e:31:56:b9:7a:cb:45:5e:05:06:e3:8d:75:e7:b1:b1:e2:
a9:43:3d:49:4f:87:70:d2:f9:44:be:20:11:bd:67:35:8a:53:
4e:8a:3d:b4:07:a8:53:8a:ab:83:18:b6:b4:33:7f:1a:97:5a:
ee:3e:b7:8c:41:ee:4f:bf:6a:e3:ce:e5:05:19:3d:01:39:76:
11:26:05:ba:df:22:52:47:ad:3f:c9:ab:5f:f5:da:9a:48:ab:
2d:c1:4d:57:ae:34:aa:a3:c8:93:8b:64:00:82:64:a6:38:65:
a9:8a:bc:d5:56:81:b6:59:32:85:b0:4a:44:56:8e:c8:46:73:
77:1f:41:6a:73:56:9b:1e:b1:cd:20:41:03:49:17:90:bc:b6:
89:45:fc:7b:ca:71:5d:9f:59:58:49:71:ca:b0:5a:31:6e:b8:
5e:f0:67:80:70:40:4b:13:d9:19:ec:51:5a:7b:2b:5e:99:5f:
12:a7:c2:a4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYlkwGF0fz/KEjqwDvfqh6DoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2MWY5YWZkYWM0MjU0ODA3NDQ5NWEyOTUzODc5ZDZlYTY0
NTZlMDkwHhcNMjMwNzE3MTY0NzU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0Y2QxY2Q2YzVmOGRkODVlNTA3OWJjZWYwYmI0MjBhNDU5ZmFhM2Y5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoBWVXauDUgdJLxNx5pkv3FMwwcN0
Fx920BtodW23pDaQbJKxWPNQjImkJJT4ilrk2fRvYN8UQOaqKVGX+Ul0QBimZfI4
RWz7jeGY8BKLOgnO3D7WJXWiNm/iN6a0zeP3D+Qrs/cQVTr4a/UjsW6dlXnrBGMN
OJq6u4R4M5LHmY5InZ/rGKrynt6M5jLR1q+vesUz5XDQjWR4MDGIuoRbESCXZuIp
th2oGgLANvsMtm3DrJalqhmvJPHKOlAeLSbc/skkt84miJ4N8RaVyHhiUGPm8sUb
y867LBevU+DsU4UumwjbOgTAT5CV0sVYBEXt1yk05B2/Ueml7778lmitEQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEzRzWxfjdheUHm87wu0IKRZ+qP5MB8GA1UdIwQY
MBaAFDYfmv2sQlSAdElaKVOHnW6mRW4JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTmgtYV9heENWSUIwU1ZvcFU0ZWRicVpGYmdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi9mNzBlM2ItNzAyOC00OTNhLTk1OTct
NmQ1N2FmNzJiYjNjLzEvVE5ITmJGLU4yRjVRZWJ6dkM3UWdwRm42b19rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi9mNzBlM2ItNzAyOC00OTNhLTk1OTctNmQ1N2FmNzJiYjNj
LzEvTmgtYV9heENWSUIwU1ZvcFU0ZWRicVpGYmdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwmjlMA0G
CSqGSIb3DQEBCwUAA4IBAQAOGqSxWN4iQCz1ciGMhMyckeKTPaZMS3/aUZO5WT8b
TP3FyGgvgsqXYCfSKus78MfgfvCaa5OmVsjtY1mdkfsDRk95oSODIt/vDjFWuXrL
RV4FBuONdeexseKpQz1JT4dw0vlEviARvWc1ilNOij20B6hTiquDGLa0M38al1ru
PreMQe5Pv2rjzuUFGT0BOXYRJgW63yJSR60/yatf9dqaSKstwU1XrjSqo8iTi2QA
gmSmOGWpirzVVoG2WTKFsEpEVo7IRnN3H0Fqc1abHrHNIEEDSReQvLaJRfx7ynFd
n1lYSXHKsFoxbrhe8GeAcEBLE9kZ7FFaeytemV8Sp8Kk
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:00 2023 by rpki-client on console.sobornost.net