Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/b7aa7b-97c2-4bd8-8caa-dcce28e9346a/1/vAaNKZkAfAzvFDZaF8Q0Sznzonw.roa
File: vAaNKZkAfAzvFDZaF8Q0Sznzonw.roa (raw, json)
Hash identifier: RioBXOkA6UpSG5nD2AXuMukwXtAOfYgQVBBdcFx6xI4=
Subject key identifier: BC:06:8D:29:99:00:7C:0C:EF:14:36:5A:17:C4:34:4B:39:F3:A2:7C
Certificate issuer: /CN=006e643d0b67f4b333feacdc4616d4e4f3de32cd
Certificate serial: 01857321CB069109B0519E0BFE08FF8DE873
Authority key identifier: 00:6E:64:3D:0B:67:F4:B3:33:FE:AC:DC:46:16:D4:E4:F3:DE:32:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AG5kPQtn9LMz_qzcRhbU5PPeMs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/b7aa7b-97c2-4bd8-8caa-dcce28e9346a/1/vAaNKZkAfAzvFDZaF8Q0Sznzonw.roa
Signing time: Mon 02 Jan 2023 15:37:52 +0000
ROA not before: Mon 02 Jan 2023 15:37:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212600
IP address blocks: 185.153.95.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:21:cb:06:91:09:b0:51:9e:0b:fe:08:ff:8d:e8:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=006e643d0b67f4b333feacdc4616d4e4f3de32cd
Validity
Not Before: Jan 2 15:37:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bc068d2999007c0cef14365a17c4344b39f3a27c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:65:c0:02:65:5a:34:c1:f8:ce:95:76:c7:b3:
56:72:39:10:fa:d4:e4:4e:fb:93:1f:b5:0b:54:6a:
66:85:e2:41:5f:c0:92:56:cc:aa:d7:8b:3f:c6:fe:
ce:f5:ad:dc:53:d3:92:6a:a7:8b:46:3e:d4:5e:53:
e0:d4:16:0e:a1:c1:7e:64:3b:10:cd:79:40:34:7c:
e1:18:45:9f:67:a1:ff:0c:12:d5:07:d9:25:de:95:
33:53:dd:ef:60:a9:e0:b7:3f:ca:9f:d1:e2:ed:ff:
89:b1:cb:17:c3:1a:af:b6:6a:a2:96:28:82:77:f0:
af:d1:b6:9c:c1:61:37:a6:d5:af:9e:51:5e:8e:48:
a0:e4:d1:59:66:58:f8:d3:40:d1:2e:2c:53:9e:33:
22:0b:53:a4:12:69:33:3b:f1:47:2d:76:66:5f:b8:
26:e5:b4:3d:51:58:ab:98:8f:93:99:47:08:56:5b:
c3:24:39:ee:c1:b0:b2:d5:f1:e3:db:f1:2e:2c:e8:
47:53:97:7b:b7:4e:71:0a:47:13:88:4c:53:98:21:
9b:9e:ee:7c:03:37:3b:52:67:4d:e7:68:d0:0d:55:
22:c6:a6:92:48:fc:97:ae:00:a0:cf:87:b5:b5:5e:
9c:24:ab:fa:60:1c:06:fd:25:61:af:85:b7:d4:2a:
0d:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:06:8D:29:99:00:7C:0C:EF:14:36:5A:17:C4:34:4B:39:F3:A2:7C
X509v3 Authority Key Identifier:
keyid:00:6E:64:3D:0B:67:F4:B3:33:FE:AC:DC:46:16:D4:E4:F3:DE:32:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AG5kPQtn9LMz_qzcRhbU5PPeMs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/b7aa7b-97c2-4bd8-8caa-dcce28e9346a/1/vAaNKZkAfAzvFDZaF8Q0Sznzonw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/b7aa7b-97c2-4bd8-8caa-dcce28e9346a/1/AG5kPQtn9LMz_qzcRhbU5PPeMs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.153.95.0/24
Signature Algorithm: sha256WithRSAEncryption
11:73:77:52:8b:d2:22:ad:b2:e0:6c:36:6a:d7:2c:c5:8c:c0:
f4:e2:d5:e0:eb:9e:fc:94:c4:88:d8:8d:2d:2a:2d:0c:ed:d4:
e6:cf:52:6c:cd:99:fa:00:87:39:8c:6f:63:50:7a:c8:d3:da:
3c:67:6a:c4:e2:f2:d1:ff:c7:55:8c:ff:88:b0:0b:7b:25:97:
7e:60:b3:09:01:ed:46:69:38:2d:32:d7:96:56:11:cd:62:d2:
39:99:e5:56:54:f2:4e:05:89:b2:b5:94:d9:2f:cd:ae:72:9d:
fc:07:ee:f4:3a:b0:b5:de:12:ef:a3:73:e0:63:24:e0:41:82:
98:a3:9b:e8:65:91:b5:80:62:ca:3c:2f:d1:46:45:4f:80:91:
81:4b:5a:c9:2e:c5:a6:8d:bd:bc:c4:3b:8f:fa:ae:23:de:04:
c0:11:32:64:94:b3:a2:fe:ba:1b:e9:0d:92:5a:17:d3:8e:06:
94:ae:06:b0:17:e9:a2:02:35:f8:50:d6:01:b9:c7:93:ee:1b:
44:ff:7f:9b:96:9a:31:85:ac:31:13:02:b7:69:d8:66:e1:23:
4c:59:24:38:e1:ae:1a:2e:97:91:94:e9:3d:33:2b:09:c5:8b:
57:82:17:dc:5b:0e:f5:f0:30:2e:dd:2b:0d:6b:f4:6e:f7:11:
80:4e:88:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:10 2024 by rpki-client on console-fra.rpki-client.org