Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/824ccd-bc9b-4a82-be91-63104db6a7a5/1/vAZ7eTBjzWP47ga572FlodXMybw.roa
File: vAZ7eTBjzWP47ga572FlodXMybw.roa (raw, json)
Hash identifier: bpaaMSNHPyQ6do6D3mPdjnPO/mLSvIRI3zbb3IkweAQ=
Subject key identifier: BC:06:7B:79:30:63:CD:63:F8:EE:06:B9:EF:61:65:A1:D5:CC:C9:BC
Certificate issuer: /CN=adce3c2aafc7783cce8234551f3e9661d27eefbc
Certificate serial: 018CC64A7EBE14DBAA84905A84E51E0A20F1
Authority key identifier: AD:CE:3C:2A:AF:C7:78:3C:CE:82:34:55:1F:3E:96:61:D2:7E:EF:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rc48Kq_HeDzOgjRVHz6WYdJ-77w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/824ccd-bc9b-4a82-be91-63104db6a7a5/1/vAZ7eTBjzWP47ga572FlodXMybw.roa
Signing time: Mon 01 Jan 2024 18:30:20 +0000
ROA not before: Mon 01 Jan 2024 18:30:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12779
IP address blocks: 176.110.111.0/24 maxlen: 24
2a10:e140::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:7e:be:14:db:aa:84:90:5a:84:e5:1e:0a:20:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adce3c2aafc7783cce8234551f3e9661d27eefbc
Validity
Not Before: Jan 1 18:30:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bc067b793063cd63f8ee06b9ef6165a1d5ccc9bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:88:19:c4:fd:12:2b:ef:d6:2c:71:86:25:56:
7e:28:e1:12:fa:b0:0d:83:f9:9b:c9:8b:95:24:96:
50:01:3a:70:a9:b6:db:c1:52:e8:2d:e4:5f:30:33:
ed:2b:d0:59:f0:8f:56:c2:66:96:d4:85:fd:f8:72:
bc:80:b3:7f:24:a2:bf:d8:d5:91:ed:a9:4e:d8:6d:
2e:2c:e3:5c:7c:44:75:df:dd:11:c7:61:c7:82:02:
ac:e9:0a:7d:e5:4d:59:51:ce:ac:9e:4c:06:3f:0e:
b7:0b:78:dd:cb:c8:cb:e8:38:df:3e:6a:c3:e0:59:
bf:c9:e7:9e:29:b9:8c:d2:24:31:01:d1:35:93:16:
d1:44:55:66:11:44:f2:b1:fa:8b:9b:31:a6:26:0e:
7c:2c:24:17:63:d1:50:c3:95:e2:2a:24:9e:e6:be:
fc:e9:5d:e4:c5:4e:1c:80:21:e2:1b:6b:bc:09:60:
93:35:ef:36:f3:03:af:7f:4c:48:e6:b4:da:84:14:
dd:c3:5a:56:78:1d:e6:af:df:ed:d0:56:db:fe:f1:
2d:f8:55:05:b4:2d:9d:b3:e4:5a:82:73:09:ed:3a:
00:15:8d:4a:bc:83:cd:cc:13:ba:45:57:2b:67:68:
88:cd:b8:23:f1:fc:c3:bd:8e:e5:35:ea:18:de:8e:
92:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:06:7B:79:30:63:CD:63:F8:EE:06:B9:EF:61:65:A1:D5:CC:C9:BC
X509v3 Authority Key Identifier:
keyid:AD:CE:3C:2A:AF:C7:78:3C:CE:82:34:55:1F:3E:96:61:D2:7E:EF:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rc48Kq_HeDzOgjRVHz6WYdJ-77w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/824ccd-bc9b-4a82-be91-63104db6a7a5/1/vAZ7eTBjzWP47ga572FlodXMybw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/824ccd-bc9b-4a82-be91-63104db6a7a5/1/rc48Kq_HeDzOgjRVHz6WYdJ-77w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.110.111.0/24
IPv6:
2a10:e140::/32
Signature Algorithm: sha256WithRSAEncryption
12:63:02:a1:8f:50:98:46:e0:02:10:6c:27:51:16:e5:d3:e9:
2a:88:0a:74:2e:70:9b:1f:32:68:7a:be:36:e3:9c:4c:79:45:
e4:85:63:ea:5d:6f:c3:fd:6a:a0:63:36:d1:03:23:7b:38:b7:
2f:55:68:be:20:48:39:6d:5f:b2:bb:4f:8a:2e:93:d0:e8:db:
3b:c5:5a:59:92:e6:52:29:4d:16:d4:25:a6:87:5e:24:03:92:
3d:0c:7a:d1:5f:b3:60:0e:68:5b:10:b3:96:b8:ad:c0:2b:bc:
41:b7:0e:b9:f2:06:21:d9:e3:f1:c3:02:ab:d7:76:7a:50:68:
a5:5f:27:14:9a:da:23:2e:ac:77:46:7b:f1:88:ef:14:48:40:
0a:5f:48:f9:1a:e8:da:74:be:3b:db:5e:86:80:27:0d:0a:6e:
74:c4:70:ee:dd:ff:6a:ab:57:54:32:f3:7b:73:af:10:bb:2f:
69:b7:e3:70:cc:f1:e6:4b:3d:45:f5:ef:39:f8:14:51:ef:8b:
cc:44:15:a9:ae:72:89:34:9a:8f:66:81:eb:e1:7e:cb:9e:82:
c2:51:af:cf:e1:4d:82:fe:07:2a:87:ea:11:a0:75:86:c7:e2:
15:04:01:7f:8b:59:5e:0c:e8:0e:2a:95:4a:1a:81:6b:be:f7:
f7:87:cd:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:38 2024 by rpki-client on console.sobornost.net