Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f1347c-9fde-40eb-b3a8-2d5321e50059/1/9t8eN8zBNTvQp_gLSFvGtooKX00.roa
File: 9t8eN8zBNTvQp_gLSFvGtooKX00.roa (raw, json)
Hash identifier: b0TzIM063+oZdZILpd+m3hPGt9hsA8p4crGvy+ZmGJk=
Subject key identifier: F6:DF:1E:37:CC:C1:35:3B:D0:A7:F8:0B:48:5B:C6:B6:8A:0A:5F:4D
Certificate issuer: /CN=87f71826a13169a629e71a89dbae108730a2aa06
Certificate serial: 018CCA298598CE4F04F3AEFFDB9B79A4B089
Authority key identifier: 87:F7:18:26:A1:31:69:A6:29:E7:1A:89:DB:AE:10:87:30:A2:AA:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h_cYJqExaaYp5xqJ264QhzCiqgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f1347c-9fde-40eb-b3a8-2d5321e50059/1/9t8eN8zBNTvQp_gLSFvGtooKX00.roa
Signing time: Tue 02 Jan 2024 12:32:48 +0000
ROA not before: Tue 02 Jan 2024 12:32:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 195.2.248.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:85:98:ce:4f:04:f3:ae:ff:db:9b:79:a4:b0:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87f71826a13169a629e71a89dbae108730a2aa06
Validity
Not Before: Jan 2 12:32:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f6df1e37ccc1353bd0a7f80b485bc6b68a0a5f4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f0:4e:80:3b:25:2a:30:b7:7d:5a:c9:57:b2:
87:9d:57:5a:c8:c8:72:c5:7a:26:77:73:89:d9:ce:
4b:77:38:d9:d8:5f:2a:5d:c1:e3:26:e0:40:9a:08:
c0:f9:5e:73:f7:e3:15:51:90:90:3f:33:de:81:30:
85:48:dc:dd:57:55:7f:db:1c:cf:76:d2:28:d9:c8:
9d:dc:15:c3:c5:51:49:38:b9:8c:eb:32:36:f0:05:
bf:70:a9:20:7c:47:b0:88:22:1d:8c:24:2d:f7:44:
22:75:51:51:04:42:00:c5:a6:46:1c:42:ac:95:81:
6c:5a:bf:09:8d:3b:b9:d9:61:70:df:9f:87:52:12:
13:d4:fb:b7:6d:9d:78:dc:b9:57:c4:49:46:84:60:
16:58:1b:c1:1c:33:ef:ad:d3:1f:58:dd:74:e5:df:
11:16:fa:0f:78:62:34:48:57:e5:f9:a8:03:56:df:
34:32:2f:74:cf:28:4a:d8:af:7e:ad:38:1c:e0:74:
bf:6c:eb:13:05:66:57:51:6f:d2:bd:61:ba:94:41:
63:d5:c6:cd:72:70:78:8a:5e:f2:09:25:69:85:54:
f8:c6:1e:4f:db:ac:4b:3a:ed:f7:c2:6b:7d:4a:e4:
60:bc:9a:27:ea:93:96:fe:18:3b:59:12:ee:76:a4:
ad:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:DF:1E:37:CC:C1:35:3B:D0:A7:F8:0B:48:5B:C6:B6:8A:0A:5F:4D
X509v3 Authority Key Identifier:
keyid:87:F7:18:26:A1:31:69:A6:29:E7:1A:89:DB:AE:10:87:30:A2:AA:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h_cYJqExaaYp5xqJ264QhzCiqgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f1347c-9fde-40eb-b3a8-2d5321e50059/1/9t8eN8zBNTvQp_gLSFvGtooKX00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f1347c-9fde-40eb-b3a8-2d5321e50059/1/h_cYJqExaaYp5xqJ264QhzCiqgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.2.248.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:a6:53:c8:ce:6f:0f:83:18:e8:9e:9f:2d:3a:1c:2a:31:48:
ec:cf:4d:29:11:e8:27:6d:4b:19:b2:2e:5d:c0:79:80:f2:a2:
c0:03:d0:da:52:d0:7e:36:c9:21:a7:97:af:eb:3a:7b:9f:b6:
17:af:b0:82:c5:ca:ef:b2:0d:da:3a:05:5d:7e:60:d5:b0:88:
c3:8b:37:c7:ce:65:57:74:4b:56:77:70:a0:c3:79:57:95:f8:
b6:93:f1:5d:b1:53:da:ef:90:eb:29:91:9f:57:d5:86:67:15:
7b:0f:2c:f5:56:eb:62:af:59:69:7b:e9:83:0a:99:89:ff:ee:
e2:c4:5c:60:6a:34:8d:90:50:40:8e:f8:b7:3a:5f:54:f3:01:
1e:aa:61:ea:a0:ac:25:b7:42:9c:d9:cd:30:94:3e:f4:62:f5:
24:40:6a:37:8f:88:5e:a7:5a:68:7e:19:69:83:a9:4f:73:48:
ef:42:d2:13:38:94:8f:3b:ae:26:0e:9a:43:ca:f3:89:e4:a3:
77:65:77:36:66:38:00:36:4d:7f:e0:6c:d0:13:bd:ea:be:ef:
5a:82:59:8c:3f:f3:0f:82:14:97:20:0e:61:a6:f9:7d:65:90:
9a:fa:ed:a8:b5:45:d8:b3:eb:e2:82:dd:24:76:85:f1:f2:47:
98:d2:ba:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 11:06:53 2024 by rpki-client on console-fra.rpki-client.org