Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/WaBadlP6PCBE8A1eMgDVSWjHqyg.roa
File: WaBadlP6PCBE8A1eMgDVSWjHqyg.roa (raw, json)
Hash identifier: OM160kNrHSn0kIJz7Iq7KZ+4CcRu6KPDteZCtF5Q2ZY=
Subject key identifier: 59:A0:5A:76:53:FA:3C:20:44:F0:0D:5E:32:00:D5:49:68:C7:AB:28
Certificate issuer: /CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Certificate serial: 018AA9B4C192BAF966B2F9D8A074AEF3DC12
Authority key identifier: AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/WaBadlP6PCBE8A1eMgDVSWjHqyg.roa
Signing time: Mon 18 Sep 2023 19:11:50 +0000
ROA not before: Mon 18 Sep 2023 19:11:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:18a:837b:f9c7/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a9:b4:c1:92:ba:f9:66:b2:f9:d8:a0:74:ae:f3:dc:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Validity
Not Before: Sep 18 19:11:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=59a05a7653fa3c2044f00d5e3200d54968c7ab28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:ab:f0:f2:ea:2a:91:b4:28:4b:62:49:33:14:
70:d4:ac:c9:09:21:1e:66:6b:ac:99:31:86:92:94:
00:44:d7:11:93:b5:14:a7:07:29:23:7f:9a:7b:98:
c7:7a:3e:53:bb:a9:ab:a4:d1:8a:a8:1e:42:82:f7:
1e:8b:1b:46:31:ff:55:ef:4f:7c:b4:7a:b0:50:4a:
89:b8:96:c1:ad:61:ab:9b:5e:d1:70:e5:63:13:0b:
3a:4a:88:55:57:06:35:52:1e:76:65:9c:e5:cb:17:
be:50:48:2f:b4:22:38:ea:7c:dd:d6:07:c2:db:99:
83:e2:8d:0e:48:d5:8e:48:93:f3:65:77:99:42:ac:
7f:68:d6:a9:eb:85:7f:ff:41:29:2e:c1:f2:a6:3f:
f1:47:f9:99:59:39:a7:63:ff:05:75:ef:76:a3:2c:
e8:6a:ca:74:9a:10:42:7d:11:25:2e:e1:30:ba:28:
3e:c4:31:ed:ad:bc:fb:65:72:9a:27:ec:a0:8a:bd:
95:13:f3:90:b7:b2:91:98:9c:68:34:d9:64:53:67:
9a:3f:37:0c:bd:ce:de:55:69:10:05:06:38:1b:5b:
43:cd:ad:35:16:49:74:89:a7:ec:07:5f:89:41:52:
66:00:70:c7:b0:55:d7:91:d1:8a:99:23:ea:3e:3f:
3c:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:A0:5A:76:53:FA:3C:20:44:F0:0D:5E:32:00:D5:49:68:C7:AB:28
X509v3 Authority Key Identifier:
keyid:AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/WaBadlP6PCBE8A1eMgDVSWjHqyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/qh8UyFB0WnwxLqLrC-AwUuSWcnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
40:b8:5a:25:7d:b4:78:e1:fd:07:0a:2d:d3:3a:0d:0c:c8:a6:
cd:63:c7:e1:af:aa:ae:65:56:6d:58:d9:0d:67:11:4e:c6:82:
ff:11:8f:1d:34:ca:23:ab:bb:ee:07:ab:fc:31:4e:cd:5c:73:
66:08:60:88:e0:b8:72:09:b2:1f:fb:67:96:b9:a7:a1:cc:bc:
06:b6:4b:6f:2f:be:75:62:74:46:d9:f7:73:29:2a:df:c3:57:
a9:5b:d4:99:85:67:0b:3d:31:10:6b:68:27:2f:d4:67:f5:5b:
90:36:4d:25:68:42:3d:64:97:2a:18:c8:de:af:7f:88:3c:0e:
5f:f7:fe:08:da:73:5d:5f:b5:e0:16:9c:48:f6:db:08:14:57:
ce:5b:cb:ac:1a:66:d3:85:98:b6:2d:12:c6:e3:0d:30:f7:f6:
48:65:10:d5:39:64:3b:a3:67:73:6e:58:48:f7:54:9f:31:07:
76:f8:a0:73:16:b6:09:f9:02:b8:6f:2b:b6:38:3c:7e:d7:88:
fe:3a:35:76:43:43:41:0a:bb:11:84:cc:0f:9e:8f:23:a3:ee:
c2:b5:e1:fc:0e:eb:1d:4c:43:2c:3e:92:3e:d3:55:b5:81:8a:
0c:f0:40:76:98:09:ea:04:4f:b9:34:38:60:e4:90:9b:44:52:
a3:f2:15:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:47 2023 by rpki-client on console.sobornost.net