Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS8772.roa
File: AS8772.roa (raw, json)
Hash identifier: Mbguw8xpyLj2GzYZEeriQXw+7hc42xEzlBfTmoKpKQA=
Subject key identifier: A9:4D:E3:35:1B:9E:C8:5D:76:FF:EC:B6:74:03:47:95:1A:13:5D:81
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 38ABC89CCDF00EE033300231132BA738B2D23CE1
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS8772.roa
Signing time: Tue 10 Sep 2024 14:21:23 +0000
ROA not before: Tue 10 Sep 2024 14:16:23 +0000
ROA not after: Tue 09 Sep 2025 14:21:23 +0000
asID: 8772
IP address blocks: 140.233.166.0/24 maxlen: 24
147.79.31.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:ab:c8:9c:cd:f0:0e:e0:33:30:02:31:13:2b:a7:38:b2:d2:3c:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Sep 10 14:16:23 2024 GMT
Not After : Sep 9 14:21:23 2025 GMT
Subject: CN=A94DE3351B9EC85D76FFECB6740347951A135D81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:e3:ec:9f:ff:66:d4:af:cf:7d:74:ad:c8:ac:
6f:31:10:6e:b6:fc:37:5e:b7:c7:6e:ac:46:4c:6b:
77:63:ed:2b:69:be:1e:d4:3f:72:01:34:6f:ff:44:
0d:6d:f1:bb:f2:65:5b:a5:f8:c1:92:38:c9:a1:fb:
8d:b2:65:f4:60:ac:ee:a8:ee:71:46:5c:fc:d1:62:
ad:ce:62:c7:e8:d0:f5:79:ec:79:0a:49:2b:2e:f1:
ba:3d:99:33:78:0e:8a:ce:fd:5d:bc:8d:3f:ab:61:
b6:0a:9a:29:01:58:5b:80:47:9d:ad:08:76:64:c6:
d3:78:48:e3:58:61:91:ed:d1:dc:12:07:84:4d:1f:
64:0e:93:81:be:bf:57:43:a2:05:a4:db:33:e8:bd:
e9:07:19:2c:ac:e4:19:b5:45:bd:d4:c5:e0:07:bb:
de:bf:2d:2c:ae:9b:33:53:8d:2c:f8:22:27:45:0a:
47:25:1a:e1:c7:91:43:b9:c5:01:0b:a8:1c:13:c2:
70:94:b5:da:44:3c:c8:9e:60:c3:0d:46:cd:17:5a:
a6:80:80:8a:0c:fb:93:1e:e1:1d:69:ab:14:2f:f7:
0c:5b:84:36:91:17:61:73:d2:98:88:de:99:5b:b5:
ed:7c:88:92:ff:37:2f:97:86:db:f3:5a:74:a2:fd:
6f:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:4D:E3:35:1B:9E:C8:5D:76:FF:EC:B6:74:03:47:95:1A:13:5D:81
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS8772.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.233.166.0/24
147.79.31.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:10:11:a0:88:8d:1e:d1:ed:a9:88:c8:ad:f7:56:bb:e1:9a:
a3:77:72:ed:14:0d:53:d0:db:ef:5f:fe:66:64:fa:fb:cc:19:
7a:ee:e0:76:ec:bf:2b:ac:32:4e:9c:e5:47:82:9a:03:37:bd:
a3:84:f2:bb:43:c4:92:df:ff:64:93:40:e3:49:8c:00:5e:00:
e4:d7:aa:3a:71:11:9e:94:23:f9:68:83:9d:8e:d1:88:2c:92:
a5:51:86:62:64:31:5e:ec:6f:0b:91:53:2d:71:37:2a:8b:ee:
2e:24:f2:22:a5:58:05:41:23:7c:08:e0:10:9a:55:c6:aa:b2:
96:ba:d5:c5:b8:e7:18:c2:95:bc:aa:d9:5f:21:55:1e:c1:c1:
55:e1:5f:54:09:cf:ad:c3:a7:6f:28:da:ba:fe:64:bb:2e:ec:
c3:37:1b:7a:75:54:bb:15:fe:fd:ef:ef:84:09:65:ec:01:c4:
06:a9:88:0c:e3:63:3c:9b:ee:8e:d8:61:97:fb:4d:4b:ba:7e:
37:45:87:2d:92:06:62:9d:a5:98:a4:98:c2:cd:5f:4c:4b:23:
df:d0:b8:b5:29:05:69:00:72:e5:67:51:22:f4:7e:c6:eb:86:
5b:21:35:b1:cc:12:7f:f8:f4:78:de:6d:80:77:75:af:13:3b:
79:c9:42:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 27 20:13:31 2024 by rpki-client on console.sobornost.net