Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/vbYrkLkAIO9IoQecHA0fCs90Asc.roa
File: vbYrkLkAIO9IoQecHA0fCs90Asc.roa (raw, json)
Hash identifier: XVu/2UUD3o49hK0oG+k9pYkOk/BueKMjSSV2gJieig8=
Subject key identifier: BD:B6:2B:90:B9:00:20:EF:48:A1:07:9C:1C:0D:1F:0A:CF:74:02:C7
Certificate issuer: /CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Certificate serial: 018A7B8C1419CE0E905B8F00BEBC89DB93C0
Authority key identifier: AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/vbYrkLkAIO9IoQecHA0fCs90Asc.roa
Signing time: Sat 09 Sep 2023 20:04:52 +0000
ROA not before: Sat 09 Sep 2023 20:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:18a:7b8b:9158/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:7b:8c:14:19:ce:0e:90:5b:8f:00:be:bc:89:db:93:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Validity
Not Before: Sep 9 20:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bdb62b90b90020ef48a1079c1c0d1f0acf7402c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:4d:08:93:7e:86:4c:87:cb:18:e0:f5:47:7c:
88:b4:59:57:5b:9a:02:6b:fe:2a:10:bd:22:4e:e1:
ff:ad:08:34:b0:5b:10:12:03:f1:d5:db:10:49:5f:
53:00:09:cb:47:64:21:82:23:bf:d1:24:ce:9f:18:
2c:ae:ed:2f:67:63:2f:25:bc:5e:1e:91:35:56:9f:
cb:0e:8a:f8:d2:e7:f5:63:c4:b7:48:6b:1e:e6:de:
98:d0:57:17:a8:1a:ea:0e:0c:58:29:cd:2a:48:65:
79:a5:6f:d0:3c:90:de:89:40:b2:85:89:c8:79:84:
cf:f4:a2:a5:c2:4a:19:8a:ae:33:ba:df:a0:1c:5b:
4e:e4:d0:49:89:ab:9d:8d:68:43:e9:ae:86:fe:75:
45:77:25:3c:ee:b8:c4:f9:2d:de:7a:c8:5e:f2:01:
18:da:29:c3:95:12:fc:cc:7a:40:8e:25:b8:5b:98:
57:34:07:0d:f2:e7:b7:9b:b5:11:9d:f0:05:5d:d7:
a3:37:fb:90:ad:a7:8b:b8:ee:2c:a9:7f:45:21:b7:
fe:49:f5:8c:35:36:dc:0b:96:ab:15:e6:76:dd:d0:
a6:14:68:e1:0e:fe:3b:48:0b:0b:c9:ae:c4:58:4a:
6c:97:49:3a:8b:a4:cf:f8:65:39:a2:9b:6e:58:af:
e6:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:B6:2B:90:B9:00:20:EF:48:A1:07:9C:1C:0D:1F:0A:CF:74:02:C7
X509v3 Authority Key Identifier:
keyid:AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/vbYrkLkAIO9IoQecHA0fCs90Asc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/qh8UyFB0WnwxLqLrC-AwUuSWcnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
92:69:59:8d:f7:e2:93:71:99:78:bf:5a:e6:02:4f:52:be:68:
92:43:af:57:e5:5e:11:3f:61:f4:b8:e6:0a:7b:d1:ee:c7:5e:
d1:a7:0d:10:34:02:28:93:a3:f2:ac:47:a4:36:5d:2b:07:00:
a1:fb:4f:1b:ca:5b:26:39:f1:cd:41:5e:43:8f:47:b7:a0:cf:
1a:5f:1f:3d:70:b7:d5:7e:67:d6:38:59:ae:2f:e7:ca:ef:20:
a3:d2:b8:30:35:56:e8:e9:a2:d8:ff:31:28:46:25:88:b5:6c:
12:39:4d:8f:16:87:8f:52:83:f3:c0:1b:0b:1f:f2:e1:9f:16:
81:47:a4:b2:c8:9b:33:4f:ce:c6:4f:b3:65:95:d2:7c:c0:8e:
9c:8c:9d:22:55:52:95:ef:42:60:ac:3e:be:d5:6b:e9:9e:ed:
60:26:fc:28:23:bb:36:98:b5:61:7a:27:1d:a7:3b:da:83:86:
1f:78:78:eb:63:da:35:14:63:1d:b9:d1:01:fe:67:78:87:46:
67:f3:40:c6:1e:26:48:13:2c:0b:26:14:06:52:03:28:0a:b1:
c2:d6:0e:15:b7:79:7d:af:46:00:d0:48:56:c5:e3:de:75:12:
ff:d3:5a:d3:65:49:54:e7:2f:46:01:70:cd:35:d9:cd:68:95:
41:fe:d9:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:48 2023 by rpki-client on console.sobornost.net