Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/86abd5-f998-4781-94b2-0824ab37a4b7/1/fzSsQV88OFWDqPXIYO-CKMFhrB0.roa
File: fzSsQV88OFWDqPXIYO-CKMFhrB0.roa (raw, json)
Hash identifier: aMKVzfInSy4ZTaZWs4vUP8gfMn2svm3ev2/hShIy0sE=
Subject key identifier: 7F:34:AC:41:5F:3C:38:55:83:A8:F5:C8:60:EF:82:28:C1:61:AC:1D
Certificate issuer: /CN=c27ffe63d667c479cf34dcc083bb7d21fbaca9ba
Certificate serial: 0566DB56
Authority key identifier: C2:7F:FE:63:D6:67:C4:79:CF:34:DC:C0:83:BB:7D:21:FB:AC:A9:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wn_-Y9ZnxHnPNNzAg7t9Ifusqbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/86abd5-f998-4781-94b2-0824ab37a4b7/1/fzSsQV88OFWDqPXIYO-CKMFhrB0.roa
Signing time: Sat 01 Jan 2022 06:53:10 +0000
ROA not before: Sat 01 Jan 2022 06:53:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35132
IP address blocks: 109.235.100.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90626902 (0x566db56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c27ffe63d667c479cf34dcc083bb7d21fbaca9ba
Validity
Not Before: Jan 1 06:53:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f34ac415f3c385583a8f5c860ef8228c161ac1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:f9:43:f6:c0:c9:75:af:43:c9:04:5b:4d:22:
9d:f1:72:f0:2d:2f:7e:e5:a8:17:c5:21:2c:73:c9:
9b:be:c8:03:c4:0d:ae:02:93:55:27:15:13:0b:73:
d8:42:92:7a:c5:1f:b9:67:e4:e5:03:78:b7:13:39:
4b:13:bd:3a:62:2b:c0:c3:fb:21:85:f6:35:88:23:
9a:85:09:32:24:a4:95:b9:6c:d6:0d:dc:6d:db:d7:
fa:c0:f9:ac:3d:cd:cd:25:71:74:91:cc:23:5d:00:
a8:8d:cb:18:22:8a:b7:28:99:a1:57:bb:c2:60:0d:
42:df:f2:62:db:0c:e7:6e:db:52:32:42:9a:5a:5c:
1e:07:80:85:c5:56:13:25:fb:c8:0e:04:d8:b4:e9:
58:3f:e5:bd:41:eb:46:1c:4f:2c:3b:da:ec:0a:51:
38:62:d4:a8:aa:76:dc:98:ad:32:ee:92:79:01:46:
68:e8:51:48:54:d1:d1:56:cb:d0:47:3e:ff:38:18:
82:0a:cd:83:23:3b:61:5d:7e:36:f1:c3:5b:6b:52:
55:d6:4a:92:7e:a5:da:61:bb:6b:34:43:d0:f5:51:
3c:d5:49:d6:18:f6:e1:98:bc:ad:22:c0:9b:75:8c:
c3:31:bb:eb:26:b9:09:bf:b3:13:26:30:ed:59:0f:
15:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:34:AC:41:5F:3C:38:55:83:A8:F5:C8:60:EF:82:28:C1:61:AC:1D
X509v3 Authority Key Identifier:
keyid:C2:7F:FE:63:D6:67:C4:79:CF:34:DC:C0:83:BB:7D:21:FB:AC:A9:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wn_-Y9ZnxHnPNNzAg7t9Ifusqbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/86abd5-f998-4781-94b2-0824ab37a4b7/1/fzSsQV88OFWDqPXIYO-CKMFhrB0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/86abd5-f998-4781-94b2-0824ab37a4b7/1/wn_-Y9ZnxHnPNNzAg7t9Ifusqbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.235.100.0/22
Signature Algorithm: sha256WithRSAEncryption
04:8e:14:4a:31:eb:d1:4c:1f:d0:a0:a3:89:2b:d2:eb:d2:bb:
fe:ba:20:6c:4d:46:41:5b:e3:37:63:d3:ca:28:f4:e7:7f:e2:
d6:6d:06:51:76:76:a4:40:cb:25:b1:b5:cf:83:19:83:4b:c3:
3b:01:47:ff:30:17:24:36:af:98:a0:40:de:fd:e4:03:a2:fc:
97:23:e9:8e:9d:c4:0a:85:82:1e:9b:ae:0b:93:e6:bb:3a:ff:
2f:96:9a:5c:7b:9a:a6:a9:f2:61:01:7f:4f:b5:28:20:ab:5e:
2d:ee:51:55:17:ac:5a:9d:7b:c3:cc:43:93:f7:7c:df:53:3c:
e5:dc:98:c5:3b:4d:63:d0:df:53:ec:2c:70:f4:dd:0b:6d:f4:
d6:d7:f7:a9:c6:34:69:83:7b:57:42:5b:28:ff:b5:c9:49:db:
dc:8f:14:c8:32:96:c5:ed:0e:85:e2:9e:9a:8e:22:d6:43:3e:
d9:9d:f1:d9:bc:96:be:01:7d:36:0f:62:96:ac:c3:5c:f9:ab:
fd:20:e7:2a:4b:79:19:6f:02:10:09:15:5d:48:2a:14:42:0b:
dd:28:4f:1e:87:29:b3:19:eb:ce:b8:e6:8e:21:50:14:87:f4:
63:bb:3f:2c:04:6a:8e:9e:5b:57:a9:93:06:5d:13:a0:29:4d:
38:1c:30:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:35 2023 by rpki-client on console.sobornost.net