Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/b5b45d-7780-434b-a912-efb9a04d3caa/1/BuuN5OvSFoQOAQh-rueF3_q2d4c.roa
File: BuuN5OvSFoQOAQh-rueF3_q2d4c.roa (raw, json)
Hash identifier: uBrEktweM6OMuMLU5F6eWmNqkD6IGzV3ojgT9RWmi6o=
Subject key identifier: 06:EB:8D:E4:EB:D2:16:84:0E:01:08:7E:AE:E7:85:DF:FA:B6:77:87
Certificate issuer: /CN=8d29a41e6f507a37458a49643a7be5790758f726
Certificate serial: 0CAEC157
Authority key identifier: 8D:29:A4:1E:6F:50:7A:37:45:8A:49:64:3A:7B:E5:79:07:58:F7:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jSmkHm9QejdFiklkOnvleQdY9yY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/b5b45d-7780-434b-a912-efb9a04d3caa/1/BuuN5OvSFoQOAQh-rueF3_q2d4c.roa
Signing time: Sat 01 Jan 2022 05:57:32 +0000
ROA not before: Sat 01 Jan 2022 05:57:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204019
IP address blocks: 185.107.66.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 212779351 (0xcaec157)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d29a41e6f507a37458a49643a7be5790758f726
Validity
Not Before: Jan 1 05:57:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06eb8de4ebd216840e01087eaee785dffab67787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:82:ff:43:13:9d:11:5d:a6:15:e8:10:11:3c:
6d:0d:16:dc:ac:05:57:29:32:96:82:d2:bb:dc:2d:
90:0d:df:27:ea:80:13:fc:05:ca:2d:00:10:d2:c7:
c7:de:8f:c8:77:a4:d7:0c:76:6d:70:5c:b7:5e:1b:
c9:71:33:24:2e:d9:54:b6:01:9d:10:cd:3e:27:39:
a7:04:1f:77:35:94:b3:2b:5a:75:67:32:94:0e:f3:
65:8a:03:04:e3:9f:be:f3:c5:78:f6:12:de:6f:b2:
1c:e1:ee:81:40:f9:b1:80:3d:1a:02:43:d7:59:7d:
3e:23:a7:20:9d:66:dc:13:0f:d9:2a:75:11:35:e8:
c6:89:a4:cb:32:f0:48:f9:e1:93:e3:0a:2f:e4:e4:
f3:6f:70:e4:c6:c2:a8:5a:b2:3f:dd:f3:d1:51:c5:
2c:04:89:9c:5d:c5:0f:d4:f5:a5:49:e4:53:c7:b9:
b7:33:bb:4e:28:0b:43:2e:66:ff:d5:11:25:fc:b0:
99:e7:05:5d:30:66:56:ed:f6:f5:3e:dc:b2:6b:8f:
90:36:63:14:c3:93:f6:bb:7a:3d:48:31:74:17:ce:
46:3e:b1:0b:f3:9a:52:0e:ab:a6:1a:80:84:dc:d2:
53:98:5e:ae:8b:07:ce:fa:7e:0e:25:de:50:45:1a:
d3:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:EB:8D:E4:EB:D2:16:84:0E:01:08:7E:AE:E7:85:DF:FA:B6:77:87
X509v3 Authority Key Identifier:
keyid:8D:29:A4:1E:6F:50:7A:37:45:8A:49:64:3A:7B:E5:79:07:58:F7:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jSmkHm9QejdFiklkOnvleQdY9yY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b5b45d-7780-434b-a912-efb9a04d3caa/1/BuuN5OvSFoQOAQh-rueF3_q2d4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b5b45d-7780-434b-a912-efb9a04d3caa/1/jSmkHm9QejdFiklkOnvleQdY9yY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.107.66.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:ed:11:5c:8f:22:6c:ff:7c:bc:a6:51:9e:49:30:0f:65:2b:
8d:56:22:8f:c4:c6:6b:d8:a2:2b:5c:a3:e5:06:95:db:f6:ca:
cd:38:38:91:e9:4f:40:a9:c7:71:05:16:92:39:9c:e3:64:40:
1c:5e:72:88:9a:ce:71:0e:e8:cb:b4:24:e3:38:fd:d8:0a:6b:
5d:62:53:c2:57:03:05:4b:e1:51:1a:37:4c:4e:3b:cd:ba:1c:
b6:c3:43:dd:9c:f6:bb:d6:3e:40:7f:4d:b7:bc:8e:03:7e:68:
70:2a:07:1a:52:19:dd:5b:1b:57:63:3f:c2:b3:d5:aa:6b:03:
55:27:01:92:0a:ef:4f:e6:f6:b9:1f:c4:ab:8f:8e:c8:37:79:
ba:f1:c9:3a:1d:d6:8f:cc:77:34:e2:62:83:53:3e:d7:e8:6d:
ff:a4:57:67:76:aa:cd:4a:3a:68:06:09:39:52:c0:6e:f1:9c:
c0:05:63:b2:ce:b3:b9:fd:79:b5:cf:13:16:f0:5e:c4:ec:9a:
73:13:27:98:bf:a5:4b:97:c3:67:7d:eb:c3:79:89:3a:d6:32:
c0:97:43:23:ba:91:5a:3a:7e:85:1b:14:fc:30:31:91:a4:5b:
d2:f5:ab:13:c1:3a:aa:c3:f9:f3:2f:fe:33:e1:ad:b3:5a:7d:
07:54:ff:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:02 2023 by rpki-client on console.sobornost.net