Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/dXVqChRbJSXEXfdC7_HLst2DMdU.roa
File: dXVqChRbJSXEXfdC7_HLst2DMdU.roa (raw, json)
Hash identifier: bkwUClK9+pNd3oq6M4UdUFz6u1Esm+mjvndUOqiu6n0=
Subject key identifier: 75:75:6A:0A:14:5B:25:25:C4:5D:F7:42:EF:F1:CB:B2:DD:83:31:D5
Certificate issuer: /CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Certificate serial: 018A5F0D4FC69D7FA069A1A1F2C2AD4CE64C
Authority key identifier: AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/dXVqChRbJSXEXfdC7_HLst2DMdU.roa
Signing time: Mon 04 Sep 2023 07:17:02 +0000
ROA not before: Mon 04 Sep 2023 07:17:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5f:0d:4f:c6:9d:7f:a0:69:a1:a1:f2:c2:ad:4c:e6:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Validity
Not Before: Sep 4 07:17:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75756a0a145b2525c45df742eff1cbb2dd8331d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:56:e0:c3:77:0d:ec:40:32:4a:1b:5a:13:43:
de:a4:db:44:98:a6:bd:3f:7f:5f:69:49:71:66:c8:
73:7e:0d:1e:8b:3f:2d:f5:b8:10:62:27:67:28:73:
ee:5b:3b:9b:11:c8:bc:10:a3:59:25:07:0b:d2:53:
f7:7d:83:eb:01:cf:29:f3:06:13:9b:31:81:50:e3:
45:d2:f4:d5:c0:aa:5c:1c:32:b4:c2:5f:7a:f9:a6:
84:22:fe:2f:1d:e2:83:21:a7:3c:9e:42:45:4b:3c:
c5:10:f4:df:c0:2f:a3:92:fa:b3:cf:04:99:44:91:
38:2e:65:eb:5f:a3:0a:eb:c6:63:32:ff:5e:9f:3d:
0e:28:25:a3:5a:77:93:41:e8:2d:26:59:cc:f6:8e:
b4:4c:be:64:2e:cd:13:03:2c:46:4b:e2:10:96:e2:
e1:25:6b:6e:00:b6:ec:ea:2d:ad:70:62:e7:3d:79:
4e:08:b5:04:12:a4:e7:ad:72:bf:96:05:4b:e0:d5:
7a:ff:7c:37:61:aa:6b:67:b9:c0:bc:16:78:cc:ee:
e3:54:3d:aa:f3:21:a9:eb:70:5d:49:05:f0:11:a6:
c8:b7:8b:2c:e1:2d:44:73:b3:b0:fd:cf:18:cb:71:
d2:8d:45:88:f0:e9:aa:7f:10:19:6e:c3:1e:7f:b1:
a2:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:75:6A:0A:14:5B:25:25:C4:5D:F7:42:EF:F1:CB:B2:DD:83:31:D5
X509v3 Authority Key Identifier:
keyid:AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/dXVqChRbJSXEXfdC7_HLst2DMdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/qh8UyFB0WnwxLqLrC-AwUuSWcnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
63:4a:19:95:63:f0:86:ad:dd:fd:52:0f:fc:8a:93:9c:49:74:
8e:6c:fe:a6:9c:d4:36:05:48:d9:13:eb:a3:b1:af:50:ea:4a:
3d:84:81:99:8d:bb:ab:c2:23:ae:e1:12:b8:28:51:9c:11:34:
4b:9f:09:22:8e:e7:86:4f:fd:a8:20:41:8e:83:f2:83:c1:62:
77:8a:9e:a3:1e:2b:14:7b:16:4f:dd:0d:f5:7b:16:cd:de:85:
79:37:c4:ac:2c:a6:53:d5:bc:03:25:27:99:ae:1c:82:0c:67:
ac:8e:82:86:88:06:26:d8:b7:02:94:0a:96:c8:b6:33:82:07:
95:49:e7:2e:d6:56:ef:02:97:b6:86:b3:28:2b:4c:eb:d6:95:
e7:f5:3d:f8:11:ff:29:0f:80:15:32:36:37:b2:4a:c8:74:3e:
98:fa:56:67:41:b3:2a:80:57:f5:26:7a:3f:6e:08:dc:71:ca:
36:b7:3a:22:0c:7d:19:5d:c0:d3:7a:50:dd:56:f3:af:e1:c6:
ef:e6:5f:d5:64:1d:c8:6b:83:f1:9b:06:12:c4:ca:81:a6:48:
83:97:93:8a:13:d9:83:f3:71:83:86:86:64:8f:2c:f9:1a:2b:
b0:4d:6f:00:b9:6d:fe:00:d4:5f:be:c8:6a:0a:91:25:6e:45:
2b:bc:ba:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:48 2023 by rpki-client on console.sobornost.net