Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/L5XGoJ5aXLB8Kwh90p9cPGNMaXU.roa
File: L5XGoJ5aXLB8Kwh90p9cPGNMaXU.roa (raw, json)
Hash identifier: tssLJq+WzgbWcYV4ZgMDU+NgHl+oQi9Zd24oUrTLhvU=
Subject key identifier: 2F:95:C6:A0:9E:5A:5C:B0:7C:2B:08:7D:D2:9F:5C:3C:63:4C:69:75
Certificate issuer: /CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Certificate serial: 018A733F2B657D2B0F01B4632BDB5E9F3E79
Authority key identifier: AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/L5XGoJ5aXLB8Kwh90p9cPGNMaXU.roa
Signing time: Fri 08 Sep 2023 05:23:54 +0000
ROA not before: Fri 08 Sep 2023 05:23:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:73:3f:2b:65:7d:2b:0f:01:b4:63:2b:db:5e:9f:3e:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Validity
Not Before: Sep 8 05:23:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2f95c6a09e5a5cb07c2b087dd29f5c3c634c6975
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:b6:77:81:1d:c2:ae:5d:aa:cd:8f:2d:63:3b:
9b:03:f8:ba:c1:6b:2e:6e:04:e6:75:5b:cd:81:4b:
04:2c:a1:93:79:5a:d9:5d:11:a4:58:ed:0f:db:da:
06:7b:53:c1:25:95:4b:27:be:4d:fe:58:6d:a2:9e:
7e:2c:a0:ee:29:30:3c:25:4b:57:3c:f8:78:87:76:
29:80:83:ec:71:3a:b9:27:22:f7:66:fc:db:d3:cb:
9a:fc:41:c3:1b:eb:cb:32:df:64:25:7c:a8:24:74:
49:44:45:1e:c8:f2:5d:f6:25:42:07:22:16:84:a5:
61:d5:68:f2:47:ea:7e:2e:01:b0:3b:bf:16:01:25:
3e:a6:a6:ea:99:51:42:5b:2e:be:28:ff:71:6d:00:
f7:d2:8d:e2:09:92:93:3c:91:c2:41:a6:75:f9:0d:
cd:af:3f:c2:4a:bc:23:ca:8f:44:92:9b:f7:d6:08:
97:eb:1f:f7:b9:16:8c:a6:5d:3f:b0:f4:49:c8:51:
ee:12:51:c6:91:5f:b8:8f:82:e2:da:ec:b6:d0:b9:
28:f4:f4:f5:83:6c:06:44:45:e9:d9:d1:a1:ca:20:
74:21:75:6d:39:73:2a:7b:3d:6b:1b:28:7c:f7:06:
44:46:47:9c:84:52:e8:87:97:57:63:83:ab:e7:a1:
b0:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:95:C6:A0:9E:5A:5C:B0:7C:2B:08:7D:D2:9F:5C:3C:63:4C:69:75
X509v3 Authority Key Identifier:
keyid:AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/L5XGoJ5aXLB8Kwh90p9cPGNMaXU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/qh8UyFB0WnwxLqLrC-AwUuSWcnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
9e:9e:d8:77:86:90:45:10:fc:cd:87:74:dc:21:d6:77:43:43:
9d:90:ba:cb:ad:87:48:81:91:73:6d:7b:f4:21:66:cc:58:fe:
96:6f:40:96:a8:f3:db:14:4a:d2:b8:6b:71:e6:0c:fb:53:16:
34:b9:97:64:6b:6d:14:25:3b:14:ea:32:bf:41:b2:e7:af:c2:
6b:86:11:31:a2:82:6d:06:e2:e1:60:1e:98:ef:fa:91:05:c1:
3c:6b:a2:9d:f7:f8:fa:3c:ab:6b:9c:a2:bf:56:40:1e:95:93:
ba:99:21:59:43:c5:8d:a9:41:4c:2e:81:63:d9:71:0c:28:91:
c1:b7:8b:2f:4e:21:17:f3:c0:4e:85:82:0a:9e:98:96:99:fe:
53:ae:51:0c:c7:d0:26:b9:62:3a:78:1f:4e:a5:cf:53:86:8a:
ad:06:c1:57:f1:bb:11:35:54:d8:4a:46:e2:c2:42:47:df:87:
ea:4a:73:99:ef:1b:e1:ca:76:63:75:4b:73:52:18:8f:39:52:
58:72:6b:62:db:c3:7d:d6:06:f2:76:93:a0:7d:c1:da:52:27:
2d:0f:de:00:56:05:2d:01:32:52:dd:74:43:a7:73:43:04:01:
70:a0:be:bb:bf:ce:4d:72:5b:99:67:1c:e3:c8:0b:6a:f3:ab:
a0:e3:3c:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:47 2023 by rpki-client on console.sobornost.net