Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/DQtdmA-S6OJR4CaUO16X38C6yxE.roa
File: DQtdmA-S6OJR4CaUO16X38C6yxE.roa (raw, json)
Hash identifier: 5h0N/acDPkUr0VHYUuOuBkdQ1We/oxcg84BhGy39K3I=
Subject key identifier: 0D:0B:5D:98:0F:92:E8:E2:51:E0:26:94:3B:5E:97:DF:C0:BA:CB:11
Certificate issuer: /CN=c6a249a0eacd8abcbea0d82ef71016d386e8ef94
Certificate serial: 0193BAF9559B8281E7DFA6D7BD7450BA9029
Authority key identifier: C6:A2:49:A0:EA:CD:8A:BC:BE:A0:D8:2E:F7:10:16:D3:86:E8:EF:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xqJJoOrNiry-oNgu9xAW04bo75Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/DQtdmA-S6OJR4CaUO16X38C6yxE.roa
Signing time: Thu 12 Dec 2024 13:05:22 +0000
ROA not before: Thu 12 Dec 2024 13:05:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6762
IP address blocks: 45.157.158.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:ba:f9:55:9b:82:81:e7:df:a6:d7:bd:74:50:ba:90:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6a249a0eacd8abcbea0d82ef71016d386e8ef94
Validity
Not Before: Dec 12 13:05:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0d0b5d980f92e8e251e026943b5e97dfc0bacb11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:13:55:df:1f:dc:f9:59:6d:45:f5:d0:1c:e8:
b4:bc:32:87:79:6c:41:22:68:8f:a6:44:db:cb:6f:
ea:10:d7:b6:ea:b6:11:14:74:6e:ba:58:40:0a:db:
41:a0:c2:d8:72:26:69:cf:a2:38:f9:38:bd:79:37:
c1:f1:88:10:ec:2e:ac:08:63:d1:5d:20:08:47:b5:
22:fc:f6:30:ec:dd:f7:d6:dd:1e:1d:7a:d5:86:0b:
f9:fa:46:d5:5f:eb:5a:f0:64:1c:c0:fa:dd:0e:ae:
4e:3b:10:59:f6:cc:dc:d6:d1:8b:aa:1c:cc:78:ab:
db:e5:a0:ed:8c:66:27:2e:e8:41:0b:89:83:0b:55:
17:3b:70:29:bc:de:5f:88:25:60:ee:f0:f1:df:74:
c7:01:4e:48:e4:86:62:72:4e:b7:a7:40:2b:c0:44:
65:b0:c0:22:8a:8f:d4:0c:49:38:9c:0a:f4:2b:14:
8a:83:74:19:18:db:76:27:fe:97:c9:69:2b:ac:a7:
68:20:f1:05:92:76:56:a1:e4:dc:82:d9:29:22:3a:
81:05:c3:4a:e0:6f:2b:d8:db:02:f7:7b:9e:6b:0c:
da:2a:16:5d:41:5b:a3:27:6b:bc:1a:77:de:37:fb:
09:08:b6:1c:f4:d8:59:c0:a5:c6:fe:2a:1a:27:1a:
62:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:0B:5D:98:0F:92:E8:E2:51:E0:26:94:3B:5E:97:DF:C0:BA:CB:11
X509v3 Authority Key Identifier:
keyid:C6:A2:49:A0:EA:CD:8A:BC:BE:A0:D8:2E:F7:10:16:D3:86:E8:EF:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xqJJoOrNiry-oNgu9xAW04bo75Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/DQtdmA-S6OJR4CaUO16X38C6yxE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/xqJJoOrNiry-oNgu9xAW04bo75Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.158.0/23
Signature Algorithm: sha256WithRSAEncryption
79:c0:61:c8:ce:0b:27:7f:b9:3c:33:99:13:6b:09:5e:67:4f:
c7:55:67:bf:06:0d:90:30:27:da:08:e7:9b:bc:22:34:1e:ba:
2a:ce:cf:72:64:26:a0:e8:36:6b:07:19:cc:1f:51:6b:67:42:
01:8c:08:32:38:ce:bc:c8:07:12:3b:30:45:5b:a3:f4:bc:e9:
32:e9:80:0f:17:49:c3:2d:01:ae:e0:37:17:ff:59:f9:51:a8:
33:30:d5:f4:47:09:be:39:a3:d6:bc:82:d7:c2:21:b9:41:b4:
dc:4b:c5:f3:c3:7b:4a:1b:e5:0a:34:80:6c:ab:b9:23:23:b6:
7c:d7:58:8c:a5:6a:1b:e1:49:43:12:29:f9:ce:f5:78:14:e3:
d9:03:73:bc:b1:c4:49:cb:1d:f2:71:09:db:4d:3b:6e:c2:4e:
14:a5:ac:8c:54:b9:07:72:9c:b5:dd:29:46:4a:5b:75:d6:ec:
06:a1:09:2b:07:06:dd:72:16:a5:4a:3a:b3:03:44:bc:9d:5f:
92:7f:2e:a6:1f:ab:e2:ff:e4:bd:d2:eb:34:bb:8d:b4:ad:2e:
8b:5c:6f:a0:e4:25:4b:62:b5:12:bf:bf:7c:e4:6c:f7:00:eb:
5c:a0:a4:c2:7c:b2:24:6f:0f:13:85:8b:9c:34:8f:92:a0:d7:
b0:83:2a:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:26 2024 by rpki-client on console.sobornost.net