Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/7c64cd-def0-48ac-ab9e-e8347372ba6c/1/KOEOW0GMuvFw9FaZGAJZN2Hp18o.roa
File: KOEOW0GMuvFw9FaZGAJZN2Hp18o.roa (raw, json)
Hash identifier: 7tjh/dCYp2LDMVa/cNKNNLvQ54idmOTAGMO2HhAScjc=
Subject key identifier: 28:E1:0E:5B:41:8C:BA:F1:70:F4:56:99:18:02:59:37:61:E9:D7:CA
Certificate issuer: /CN=2d6423025b57bb9caeec9e565a4f7072d1307404
Certificate serial: 04D20335
Authority key identifier: 2D:64:23:02:5B:57:BB:9C:AE:EC:9E:56:5A:4F:70:72:D1:30:74:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LWQjAltXu5yu7J5WWk9wctEwdAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/7c64cd-def0-48ac-ab9e-e8347372ba6c/1/KOEOW0GMuvFw9FaZGAJZN2Hp18o.roa
Signing time: Sat 01 Jan 2022 08:55:22 +0000
ROA not before: Sat 01 Jan 2022 08:55:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 194.11.230.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80872245 (0x4d20335)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d6423025b57bb9caeec9e565a4f7072d1307404
Validity
Not Before: Jan 1 08:55:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=28e10e5b418cbaf170f456991802593761e9d7ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:f0:b9:43:fe:cb:55:10:f8:cf:fe:6e:c1:6a:
43:c9:ef:fd:d5:ad:84:2d:41:ea:fe:44:97:0a:99:
39:90:27:fe:1f:5d:42:a1:ca:fa:f4:06:2e:7c:4f:
43:38:71:15:d9:c1:d3:38:ce:ae:5d:b9:e4:b7:8e:
87:b5:5e:32:eb:04:a4:d3:28:dc:25:88:fb:64:7b:
cc:16:60:69:ac:c6:64:6e:08:83:58:cf:d3:fa:07:
87:35:0c:32:89:f3:71:1b:bd:0a:63:70:6b:30:39:
e2:35:b8:1a:da:15:a5:5c:21:d3:dc:5f:74:4d:2e:
77:99:64:a1:4a:a9:b9:b2:77:82:7e:ae:ae:0e:14:
f0:06:b1:ac:81:d1:b9:58:6d:5a:43:38:34:4e:25:
20:ca:dc:a4:f0:c2:f2:fe:0a:a2:c5:fd:a2:eb:3b:
e2:91:5d:a3:50:2f:6b:d2:fb:b0:40:86:6d:0f:3b:
3e:91:e0:a0:22:d2:9f:d7:62:32:29:8a:26:0f:64:
1f:24:b2:55:fb:e2:11:2d:37:3a:3c:32:29:b6:b1:
d5:53:5c:75:f8:d3:bb:f1:2d:20:fa:0f:26:bb:52:
b6:b8:71:8a:2c:a6:89:54:6a:ea:5d:29:36:4f:70:
47:88:d2:f6:cf:ea:b9:60:91:1a:8d:24:22:24:83:
0b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:E1:0E:5B:41:8C:BA:F1:70:F4:56:99:18:02:59:37:61:E9:D7:CA
X509v3 Authority Key Identifier:
keyid:2D:64:23:02:5B:57:BB:9C:AE:EC:9E:56:5A:4F:70:72:D1:30:74:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LWQjAltXu5yu7J5WWk9wctEwdAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/7c64cd-def0-48ac-ab9e-e8347372ba6c/1/KOEOW0GMuvFw9FaZGAJZN2Hp18o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/7c64cd-def0-48ac-ab9e-e8347372ba6c/1/LWQjAltXu5yu7J5WWk9wctEwdAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.11.230.0/23
Signature Algorithm: sha256WithRSAEncryption
36:a7:92:48:18:c5:a7:74:6e:56:16:87:63:bc:c9:15:fc:05:
33:28:bb:99:e8:b8:46:c5:98:45:21:bc:3d:3f:e6:3c:3f:54:
b4:6e:32:c6:8a:0b:e8:f4:5b:04:fa:a6:cb:a5:29:ff:aa:09:
b8:7f:dd:b2:66:8e:e3:d1:5d:2a:a5:65:6a:a7:d4:aa:1a:db:
72:e5:40:c1:db:1f:a4:27:76:f7:d0:aa:d5:3e:5f:9c:34:cf:
ba:f9:75:6a:f4:95:1e:c3:4e:32:ca:61:fc:6b:2d:67:4f:0d:
24:e9:52:19:54:d8:e4:66:da:91:52:cd:fe:4c:fe:6e:7a:28:
a9:13:16:29:6d:f4:84:13:f8:1a:5f:cd:64:b4:92:02:08:6d:
e8:d4:a9:69:92:b6:60:95:83:a9:a5:d0:28:f4:0f:d1:12:f0:
b7:db:6c:fa:17:2d:b3:f0:c7:ab:6c:15:f7:37:8f:ee:fc:c5:
e2:f5:38:3d:b6:1f:18:ad:30:75:ef:0c:06:cf:03:26:a1:67:
0e:2f:1b:b3:10:01:62:79:95:ee:2b:9a:83:d7:c4:e2:4d:70:
ed:cd:f3:a3:54:a8:d7:07:ef:02:37:f2:8e:2c:b8:54:d1:ab:
79:aa:60:ac:e5:b1:de:de:e9:64:f4:4a:71:59:ca:9b:a2:78:
df:19:81:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:55 2023 by rpki-client on console.sobornost.net