Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/G5s6ZkrYHrj7OCm6ajgBqgV5pxo.roa
File: G5s6ZkrYHrj7OCm6ajgBqgV5pxo.roa (raw, json)
Hash identifier: MdjJXmRVEXD8jqZBH3KL9GM1WVO4Ss8kt5pVuGsM6aE=
Subject key identifier: 1B:9B:3A:66:4A:D8:1E:B8:FB:38:29:BA:6A:38:01:AA:05:79:A7:1A
Certificate issuer: /CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Certificate serial: 018A815D883CF234A49E00C7715F6C327F46
Authority key identifier: AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/G5s6ZkrYHrj7OCm6ajgBqgV5pxo.roa
Signing time: Sun 10 Sep 2023 23:11:45 +0000
ROA not before: Sun 10 Sep 2023 23:11:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:81:5d:88:3c:f2:34:a4:9e:00:c7:71:5f:6c:32:7f:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Validity
Not Before: Sep 10 23:11:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b9b3a664ad81eb8fb3829ba6a3801aa0579a71a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:3d:2d:aa:ec:44:22:3c:30:7a:b5:d4:1b:ae:
70:65:bf:ba:95:11:41:77:3d:56:04:c4:85:64:22:
eb:16:75:fb:5e:1a:2e:7a:ce:c4:45:37:2e:9a:b2:
d4:6b:21:5d:59:cd:3f:42:a2:a2:8c:c4:55:7d:bc:
82:05:99:0e:b3:55:cf:f0:fa:06:63:d5:fa:69:61:
70:36:31:e4:dc:82:d8:8a:c2:a5:cf:f2:d8:3f:cf:
43:72:fd:d0:8d:3d:80:e6:08:85:6f:33:88:34:1a:
46:3f:a4:6b:22:b5:02:5b:62:99:77:0e:a5:aa:e8:
5b:bd:db:bd:e0:62:3d:dd:a3:89:db:bf:de:c8:02:
99:b5:aa:6c:88:98:d4:a4:b7:28:1f:d4:70:46:b8:
de:16:d2:b5:d9:67:19:39:bb:91:06:1f:d2:18:55:
d9:e9:61:f8:6d:42:e1:b3:3d:85:e2:e9:e3:a4:ad:
c8:15:52:d3:cf:89:e7:e1:b2:67:da:02:ba:b6:c2:
40:e9:6d:af:14:83:17:6d:be:07:01:89:0b:87:47:
fd:82:09:b8:ee:fb:fb:82:29:2b:74:55:bb:39:fc:
18:c6:cc:96:79:90:6c:2b:28:a0:b4:84:e7:82:f7:
b7:f4:ff:0a:d8:90:44:db:87:79:92:0a:95:cc:e3:
89:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:9B:3A:66:4A:D8:1E:B8:FB:38:29:BA:6A:38:01:AA:05:79:A7:1A
X509v3 Authority Key Identifier:
keyid:AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/G5s6ZkrYHrj7OCm6ajgBqgV5pxo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/qh8UyFB0WnwxLqLrC-AwUuSWcnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
50:51:c0:bb:77:5a:6b:bb:b8:b2:d0:9b:f6:7f:ab:18:1a:20:
8e:1c:0c:51:44:e7:1f:ef:31:a1:b9:ed:50:20:9d:26:bc:29:
3f:e0:04:4c:a0:ca:37:76:71:95:8b:0c:1c:f9:ac:90:72:99:
f8:66:25:72:cd:e4:2b:37:a2:c2:49:8e:7c:fe:53:47:53:ee:
46:50:00:ec:2c:dc:56:94:52:a6:ae:59:5f:28:57:0d:85:08:
2c:33:2e:7e:85:4b:e4:a5:b5:7f:47:95:07:24:1d:3e:83:b8:
46:15:39:cc:82:24:2a:7a:22:3c:08:44:d8:1e:7a:2d:9a:92:
8e:d4:b5:0a:bf:3d:06:cb:b6:e9:12:c6:1c:94:dd:c0:c3:b5:
64:f3:72:d7:8a:cf:95:3c:26:47:92:12:51:fe:e1:d4:70:d2:
50:5b:71:dd:00:bd:8e:9d:66:31:0a:22:80:50:50:56:b6:ec:
86:49:f3:d9:dd:d6:ec:d2:ba:b9:46:0a:1b:84:2e:a7:66:f7:
7d:09:8b:a0:64:f2:fa:22:e8:32:bf:e3:2e:89:5b:98:ce:d8:
44:0e:9d:5d:dd:5e:4c:a1:5b:a9:ee:a8:02:3c:4f:9e:b7:5f:
1c:19:11:ad:3a:72:8c:52:3a:74:e1:61:ed:11:7c:6e:5b:f0:
33:2d:28:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:47 2023 by rpki-client on console.sobornost.net