Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/5b7c94-a60d-4399-9829-52b8166829d7/1/FksP25uMBtwNKeldku56-GpBztE.roa
File: FksP25uMBtwNKeldku56-GpBztE.roa (raw, json)
Hash identifier: OqY6S/ruA/ACisDvUr3wErDWiZqu0yRbQi27EFUfKEc=
Subject key identifier: 16:4B:0F:DB:9B:8C:06:DC:0D:29:E9:5D:92:EE:7A:F8:6A:41:CE:D1
Certificate issuer: /CN=8d8740799c91c2630a8092178db824f3a889a75f
Certificate serial: 018CC4936C17401A143F2144738D60DDDD15
Authority key identifier: 8D:87:40:79:9C:91:C2:63:0A:80:92:17:8D:B8:24:F3:A8:89:A7:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYdAeZyRwmMKgJIXjbgk86iJp18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/5b7c94-a60d-4399-9829-52b8166829d7/1/FksP25uMBtwNKeldku56-GpBztE.roa
Signing time: Mon 01 Jan 2024 10:30:44 +0000
ROA not before: Mon 01 Jan 2024 10:30:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8649
IP address blocks: 176.96.96.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:6c:17:40:1a:14:3f:21:44:73:8d:60:dd:dd:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d8740799c91c2630a8092178db824f3a889a75f
Validity
Not Before: Jan 1 10:30:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=164b0fdb9b8c06dc0d29e95d92ee7af86a41ced1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:02:6d:09:aa:f8:b7:3a:ed:0f:35:a6:b9:ea:
97:b6:ff:9c:67:6d:22:70:b8:0b:ca:bd:c1:b9:39:
92:dd:97:ac:a7:35:99:bc:2f:41:b4:6c:58:b2:ed:
62:51:7d:a6:84:89:1d:7d:af:74:10:b9:55:4a:99:
84:fe:cf:48:b8:60:41:da:b9:de:e3:b0:b8:57:1c:
63:99:40:6b:24:2c:f2:97:1c:80:70:b0:41:ca:5e:
ef:59:69:44:c9:69:9e:b4:76:2a:e5:27:fe:d9:00:
4e:3d:d5:d2:29:41:d0:cc:79:35:d1:86:60:7f:33:
30:df:42:34:00:e0:ae:8f:c2:b7:7d:58:12:e9:cd:
6f:d9:79:25:66:0d:e8:7f:58:30:08:de:3a:03:0f:
22:7d:a5:96:5b:5e:69:5b:61:38:a9:fb:d5:41:c2:
06:85:5f:c2:af:c3:06:8f:d2:95:ef:23:63:f1:af:
c3:ca:69:31:af:25:78:33:6e:46:dd:c6:da:0c:80:
3b:50:03:86:7c:19:e5:bb:e7:4d:88:2c:8f:18:4d:
19:49:33:58:da:a5:f9:66:25:e8:05:1d:d8:49:a2:
79:b4:ed:a6:82:4f:6e:52:18:df:69:c8:d8:c7:50:
1d:84:1c:91:f6:31:a6:00:b9:a1:89:32:68:62:67:
60:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:4B:0F:DB:9B:8C:06:DC:0D:29:E9:5D:92:EE:7A:F8:6A:41:CE:D1
X509v3 Authority Key Identifier:
keyid:8D:87:40:79:9C:91:C2:63:0A:80:92:17:8D:B8:24:F3:A8:89:A7:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYdAeZyRwmMKgJIXjbgk86iJp18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/5b7c94-a60d-4399-9829-52b8166829d7/1/FksP25uMBtwNKeldku56-GpBztE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/5b7c94-a60d-4399-9829-52b8166829d7/1/jYdAeZyRwmMKgJIXjbgk86iJp18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.96.96.0/19
Signature Algorithm: sha256WithRSAEncryption
5d:58:47:f7:d4:5a:17:fd:af:88:55:74:4d:ba:dd:a1:86:53:
f3:6b:b7:01:66:70:e0:8d:46:83:92:83:46:51:36:00:4b:1d:
46:e8:8e:87:63:8c:ff:32:32:e4:eb:61:a6:6c:7e:2b:4c:54:
71:cc:10:f5:fd:78:ef:02:7a:ac:a4:e2:15:7f:0e:af:f1:5b:
87:1d:83:fc:06:b5:e0:37:ea:d0:a6:ec:83:b7:61:e2:ee:e1:
de:e5:4a:2f:8c:81:3e:b6:b0:53:fd:0b:92:09:31:e2:79:7a:
6c:70:d9:d4:6d:15:13:be:32:6a:5d:2f:53:ea:8c:c8:f2:a7:
80:4f:18:ee:13:b6:1f:3e:d7:ee:a9:e2:2d:0c:36:09:e6:44:
97:ca:16:2d:78:24:17:6d:30:a3:3b:3d:63:eb:7a:0f:08:37:
c4:05:8a:39:6c:d5:4a:7c:d8:4f:df:9c:35:90:c2:c0:19:16:
05:13:9c:ce:71:8c:c4:1c:04:48:c2:74:d5:ac:b9:55:a5:87:
30:ab:94:3d:19:ff:3e:b9:c7:d8:da:df:be:bc:6e:a4:ee:f2:
d4:ea:eb:0a:de:52:60:f4:cb:a0:f2:e9:2f:fc:ff:9d:7d:9e:
b5:63:ef:29:c9:a6:70:d1:b9:a3:ed:58:aa:e7:a3:fe:f9:89:
b7:4d:88:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:25 2024 by rpki-client on console.sobornost.net