Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/541e43-4f90-4716-8a18-9602e963f610/1/H1npSX_cDcAMz_8RwtRtqL7rce0.roa
File: H1npSX_cDcAMz_8RwtRtqL7rce0.roa (raw, json)
Hash identifier: gfZDyVnFpFFq9C4gDil9kwz/FHB1DXR8qisEKXfV3p4=
Subject key identifier: 1F:59:E9:49:7F:DC:0D:C0:0C:CF:FF:11:C2:D4:6D:A8:BE:EB:71:ED
Certificate issuer: /CN=4e64f2a0b26df43de723099a63a723b5beb97f5a
Certificate serial: 0118C90B
Authority key identifier: 4E:64:F2:A0:B2:6D:F4:3D:E7:23:09:9A:63:A7:23:B5:BE:B9:7F:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TmTyoLJt9D3nIwmaY6cjtb65f1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/541e43-4f90-4716-8a18-9602e963f610/1/H1npSX_cDcAMz_8RwtRtqL7rce0.roa
Signing time: Wed 12 Jan 2022 11:10:44 +0000
ROA not before: Wed 12 Jan 2022 11:10:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204286
IP address blocks: 109.205.60.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18401547 (0x118c90b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e64f2a0b26df43de723099a63a723b5beb97f5a
Validity
Not Before: Jan 12 11:10:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f59e9497fdc0dc00ccfff11c2d46da8beeb71ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:bd:95:45:3e:82:10:ef:5d:51:b6:6d:62:ec:
b2:99:ea:44:81:f6:e4:79:2b:2b:95:08:a7:33:72:
c3:2f:36:a0:9d:43:6d:bf:b9:68:cc:0a:ca:f6:b9:
ac:f8:fc:86:d8:87:3e:55:e6:75:18:b3:4e:6b:bf:
44:94:af:fb:37:f3:e9:12:d5:99:20:40:3f:66:6b:
de:2f:c8:aa:07:3d:c4:65:bf:c2:66:2f:44:95:36:
b3:68:d8:8e:7a:28:29:9e:15:b6:4d:8e:a8:ea:fe:
55:e4:c1:21:74:84:33:35:f7:e7:3f:5b:35:52:9e:
1f:c1:20:57:ba:04:e8:db:6f:02:53:58:51:58:cf:
3f:f8:64:84:af:41:3d:3e:c1:e0:3f:ad:7d:22:b9:
b6:02:04:1f:81:4a:e5:f3:e0:ab:93:2d:37:6c:8a:
4c:3f:0b:0d:14:df:19:2e:d4:49:02:b1:26:21:57:
d8:70:7d:17:9d:80:53:16:08:f2:01:50:64:db:e7:
c8:b6:e5:5a:24:47:c1:1d:93:9b:9b:d0:7d:7f:1c:
22:58:64:02:0d:e4:ae:57:f4:e2:45:f2:f5:10:46:
58:8b:ee:a3:f2:9d:35:43:8f:51:cb:47:bc:04:09:
37:98:53:a9:37:f9:e0:d3:36:5b:08:74:ac:a3:43:
a4:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:59:E9:49:7F:DC:0D:C0:0C:CF:FF:11:C2:D4:6D:A8:BE:EB:71:ED
X509v3 Authority Key Identifier:
keyid:4E:64:F2:A0:B2:6D:F4:3D:E7:23:09:9A:63:A7:23:B5:BE:B9:7F:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TmTyoLJt9D3nIwmaY6cjtb65f1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/541e43-4f90-4716-8a18-9602e963f610/1/H1npSX_cDcAMz_8RwtRtqL7rce0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/541e43-4f90-4716-8a18-9602e963f610/1/TmTyoLJt9D3nIwmaY6cjtb65f1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.60.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:e9:cb:19:5e:71:2f:db:b1:e9:de:d5:98:8e:2c:71:58:6a:
9c:fe:5d:fe:45:cf:7d:37:6a:12:b1:d9:a9:fd:ca:6c:dd:21:
69:de:37:9c:83:1d:92:d1:bd:09:e1:70:29:ac:c3:e8:98:09:
81:a2:52:94:2d:95:7b:bd:4a:04:d8:95:03:a9:f7:f6:92:82:
5c:90:b4:17:ac:0f:27:8c:6a:63:ac:12:76:60:75:1a:6b:94:
b5:ad:29:66:91:a2:cb:92:d3:50:c3:16:78:e3:2b:18:7e:52:
7d:d6:92:59:be:b6:54:56:cf:2b:6f:30:1b:f6:e3:84:92:b9:
4b:92:2b:f3:c2:d2:cc:3e:ac:54:9d:da:0c:30:46:85:77:86:
8f:9e:47:9b:06:14:7a:f0:44:d8:4c:bd:92:f1:46:8b:f8:95:
3f:d0:8a:86:92:4a:c2:5a:dd:f5:55:e2:84:37:05:b6:36:90:
1c:a8:a7:93:32:62:9c:fd:1f:e9:0e:58:91:10:a5:96:24:18:
1f:05:bc:1a:38:5d:10:20:31:d4:20:4a:05:ba:4a:0e:99:61:
26:4a:eb:ec:53:24:b2:87:3b:9d:b1:ec:c0:c1:79:44:a0:c6:
ee:22:b1:f4:fc:b5:0d:fe:f4:50:c8:69:32:56:80:af:53:14:
4e:c4:71:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:42 2023 by rpki-client on console.sobornost.net