Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/o0KKSmlA_Ll2G5Xoc65ZUKgXBjQ.roa
File: o0KKSmlA_Ll2G5Xoc65ZUKgXBjQ.roa (raw, json)
Hash identifier: H2VHev984t0e7SPYF2by7cJFQmIJNZfLb5ivmtclDfM=
Subject key identifier: A3:42:8A:4A:69:40:FC:B9:76:1B:95:E8:73:AE:59:50:A8:17:06:34
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 01918EB922BE6558C2B13071CB21EE9342E5
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/o0KKSmlA_Ll2G5Xoc65ZUKgXBjQ.roa
Signing time: Mon 26 Aug 2024 12:46:23 +0000
ROA not before: Mon 26 Aug 2024 12:46:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43053
IP address blocks: 149.255.160.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:8e:b9:22:be:65:58:c2:b1:30:71:cb:21:ee:93:42:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Aug 26 12:46:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a3428a4a6940fcb9761b95e873ae5950a8170634
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:84:87:4d:ca:06:9a:5e:b2:f6:e5:35:70:ce:
a0:3c:38:e8:84:5d:b8:49:a9:8c:1e:ba:ce:26:b5:
8c:12:f9:56:18:1b:06:72:07:e6:40:56:f4:80:a4:
69:1e:63:df:64:96:0d:e5:8c:e7:af:e9:41:6f:aa:
06:e4:b9:c9:7c:75:71:ea:9e:dc:c3:b7:6c:b8:f9:
27:aa:2e:1f:e7:7c:70:38:09:90:c4:75:2f:a5:a8:
df:d8:3e:8a:e0:42:62:36:5b:c6:e9:cb:9e:5c:05:
30:3d:3b:0e:18:da:d3:9e:3a:8f:8d:ee:bb:ad:e2:
36:ff:f7:8c:82:8a:ce:15:04:c3:f1:10:03:13:38:
52:b5:c5:5a:fb:43:f1:68:7d:54:3d:9c:6e:1e:01:
13:b7:e9:fa:1e:59:8c:1b:aa:c4:c8:c0:45:c8:43:
a4:e8:27:98:38:14:68:4d:47:1b:92:0a:a5:fc:53:
7c:c6:56:16:c6:b3:3f:dc:30:54:60:56:e9:95:83:
e3:69:86:5c:0f:86:33:85:02:80:d1:dd:45:c9:83:
9a:d0:6f:18:38:81:c6:2f:c3:3c:90:0f:c4:6f:6e:
af:0e:1f:a5:c8:1d:16:f7:74:a3:b4:3d:a2:d5:b4:
27:e9:cc:6d:e3:60:2b:e0:06:5b:67:06:83:d1:02:
93:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:42:8A:4A:69:40:FC:B9:76:1B:95:E8:73:AE:59:50:A8:17:06:34
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/o0KKSmlA_Ll2G5Xoc65ZUKgXBjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.255.160.0/21
Signature Algorithm: sha256WithRSAEncryption
95:82:68:36:bd:be:38:f1:36:2d:1f:75:41:5d:d7:85:39:66:
45:87:3f:eb:65:a5:e5:ae:77:13:3e:98:b4:49:ed:5e:5d:1d:
77:3e:ca:9e:7d:c7:9c:f1:e3:fa:4b:71:9c:fb:d6:db:ec:4f:
cd:3f:bb:ea:3a:83:33:1b:46:21:cb:cb:b0:14:45:0f:d2:3f:
c2:84:96:ee:a5:71:ff:97:41:0b:2b:4b:08:c3:52:ee:68:3d:
8c:8a:24:dc:9b:67:6f:d7:9c:c3:d5:c4:97:37:54:ed:a2:58:
3c:9e:a5:5f:86:b5:4c:95:66:f4:82:eb:0d:12:27:fa:44:af:
25:da:0e:89:04:e6:e3:53:91:a0:bf:4e:4e:5f:c7:e3:0f:52:
e5:8d:28:5d:83:35:3d:03:81:69:53:24:ea:78:35:52:d9:31:
86:d9:b0:68:9b:62:34:85:f1:5d:e8:fd:17:91:90:84:8b:a8:
a2:28:32:81:84:eb:93:f0:0e:ba:16:b9:a2:d0:a0:57:ed:d9:
e4:d6:17:ee:84:ba:04:4e:8f:fa:15:92:09:3b:07:41:bc:88:
86:b7:1a:ec:e4:b6:c0:00:89:dd:99:e5:b9:bc:b0:89:28:46:
ee:38:b6:5b:fe:5c:d4:b3:1c:1f:44:13:9a:b7:5f:98:f2:d4:
3e:72:00:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 30 00:32:28 2024 by rpki-client on console.sobornost.net