Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/e6e0e5-9864-4657-aa23-5581caf05d98/1/nuwXv4vJYT-dTwEtDBO74z12GBk.roa
File: nuwXv4vJYT-dTwEtDBO74z12GBk.roa (raw, json)
Hash identifier: hLwbTyW5Id30U0JnKES43E96gZNY1sVFJoOjmPD/DdY=
Subject key identifier: 9E:EC:17:BF:8B:C9:61:3F:9D:4F:01:2D:0C:13:BB:E3:3D:76:18:19
Certificate issuer: /CN=28742b63e457b1f9e7c76321d3c5707e9f3522b6
Certificate serial: 0F5CB3
Authority key identifier: 28:74:2B:63:E4:57:B1:F9:E7:C7:63:21:D3:C5:70:7E:9F:35:22:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KHQrY-RXsfnnx2Mh08Vwfp81IrY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/e6e0e5-9864-4657-aa23-5581caf05d98/1/nuwXv4vJYT-dTwEtDBO74z12GBk.roa
Signing time: Tue 04 Jan 2022 12:56:22 +0000
ROA not before: Tue 04 Jan 2022 12:56:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 141.98.1.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1006771 (0xf5cb3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28742b63e457b1f9e7c76321d3c5707e9f3522b6
Validity
Not Before: Jan 4 12:56:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9eec17bf8bc9613f9d4f012d0c13bbe33d761819
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f5:eb:70:c3:7b:e7:50:56:68:67:0a:ab:68:
ea:1d:62:8d:7b:49:30:c3:04:77:05:77:47:3f:aa:
fb:9b:3d:5e:d2:9c:89:2e:ba:45:3f:db:b8:a5:d6:
a6:7f:62:99:f3:f8:84:fd:d9:8e:c6:2d:a1:80:6f:
0b:e0:5d:ad:34:55:bb:16:f3:4e:59:7d:8c:9a:05:
3b:33:b2:4b:2d:3b:17:53:21:8d:c6:49:db:6a:5e:
1b:56:bc:a0:d0:b7:26:eb:85:6c:0e:f8:7e:1b:50:
4e:89:18:55:47:2f:a6:9e:66:c9:97:87:80:ee:41:
2b:ff:1c:cf:da:eb:7a:b9:05:88:53:f7:ee:b9:fd:
4f:22:f4:e9:f0:83:2a:a1:46:56:10:94:28:c2:4c:
2a:c5:5b:e6:05:6c:9a:73:3d:c8:b8:20:ee:3a:01:
b0:ab:22:39:14:b3:83:bb:ec:60:1a:50:9b:c3:45:
36:e0:ed:09:37:34:6f:b2:32:c8:d0:b2:01:fc:d6:
c6:c0:fe:94:d6:f2:36:e9:48:e5:d2:27:e7:45:55:
7f:65:b5:d5:c9:98:d7:92:d8:1a:fd:b1:45:99:44:
35:28:bd:73:df:8c:e6:d9:61:c2:3a:9b:ae:39:56:
ef:65:c0:f2:43:b4:29:b0:c4:ec:41:a3:47:fa:bf:
ab:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:EC:17:BF:8B:C9:61:3F:9D:4F:01:2D:0C:13:BB:E3:3D:76:18:19
X509v3 Authority Key Identifier:
keyid:28:74:2B:63:E4:57:B1:F9:E7:C7:63:21:D3:C5:70:7E:9F:35:22:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KHQrY-RXsfnnx2Mh08Vwfp81IrY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/e6e0e5-9864-4657-aa23-5581caf05d98/1/nuwXv4vJYT-dTwEtDBO74z12GBk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/e6e0e5-9864-4657-aa23-5581caf05d98/1/KHQrY-RXsfnnx2Mh08Vwfp81IrY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.1.0/24
Signature Algorithm: sha256WithRSAEncryption
07:4f:28:2c:c4:46:f5:68:ea:c3:65:2a:4d:b8:70:fb:bf:b4:
bc:9e:1e:28:d1:f2:7f:14:51:83:db:89:9f:0e:ab:dc:77:9e:
2b:56:c2:ed:9e:7a:08:d4:99:2a:17:05:f1:31:1c:a5:28:c5:
af:4e:9b:3d:ba:f9:be:54:25:d0:1d:b4:de:c2:ff:1c:8c:5c:
88:55:f0:9f:e6:01:50:fe:9d:5d:03:b3:ac:43:42:9d:93:4a:
c9:2b:99:92:ec:dc:89:34:93:cd:19:cf:97:9b:6a:2c:70:31:
25:0c:10:9b:d2:65:45:bb:06:d5:d6:bc:a8:99:c6:ee:0f:2d:
e4:9d:37:01:79:70:b3:65:10:91:63:98:c9:df:a9:4b:08:50:
43:03:4e:01:e8:ab:39:8b:0a:2a:fb:32:fb:f3:06:32:72:ac:
29:18:c6:f4:39:c8:1a:28:fc:2f:e6:12:9d:12:f8:d1:d4:2e:
6c:18:cb:2a:04:be:e1:f5:73:bc:6e:bd:96:e5:e0:84:b7:30:
b8:ba:54:c1:19:37:46:73:4c:a4:05:40:f0:3b:72:b7:a5:4b:
da:51:5a:e6:68:07:85:1f:dd:f1:cc:4f:c7:51:63:d3:7a:f7:
fe:39:d7:b8:4a:4c:04:b2:07:66:64:a3:ed:17:92:bf:29:a1:
56:60:22:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:00 2024 by rpki-client on console-ams.rpki-client.org