Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ea6f71-49bc-43fa-a288-179ce9408242/1/KnFVEhmSgVXfUvWwZM-QPT83EwU.roa
File: KnFVEhmSgVXfUvWwZM-QPT83EwU.roa (raw, json)
Hash identifier: Db6+go92szzR9X+xabdfjkHIRDd55+FjYPcH42OY2Y8=
Subject key identifier: 2A:71:55:12:19:92:81:55:DF:52:F5:B0:64:CF:90:3D:3F:37:13:05
Certificate issuer: /CN=bfbf623f4c3ea3d1b969b405945177eebaaf9ecd
Certificate serial: 01896478EFC81417E9D373172BAD7FDF5326
Authority key identifier: BF:BF:62:3F:4C:3E:A3:D1:B9:69:B4:05:94:51:77:EE:BA:AF:9E:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v79iP0w-o9G5abQFlFF37rqvns0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ea6f71-49bc-43fa-a288-179ce9408242/1/KnFVEhmSgVXfUvWwZM-QPT83EwU.roa
Signing time: Mon 17 Jul 2023 15:29:54 +0000
ROA not before: Mon 17 Jul 2023 15:29:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48031
IP address blocks: 84.246.109.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:78:ef:c8:14:17:e9:d3:73:17:2b:ad:7f:df:53:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfbf623f4c3ea3d1b969b405945177eebaaf9ecd
Validity
Not Before: Jul 17 15:29:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a71551219928155df52f5b064cf903d3f371305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:e9:0a:5e:c7:3e:c4:5e:64:e1:6d:25:38:12:
a2:08:82:d5:09:78:58:81:f7:e9:7e:23:40:50:19:
1e:8f:03:25:db:7b:b4:6b:22:3d:88:89:63:ac:3b:
d2:b0:0e:11:fe:8d:5c:c3:ce:5e:e0:70:31:44:9c:
13:af:f5:0c:b6:e7:f5:dc:52:32:da:e9:00:8c:f3:
f1:9d:5e:04:c1:c8:c4:c4:61:f1:a6:dc:f5:52:2d:
a8:6e:4e:6e:84:dd:c9:0e:8d:2a:a0:95:ff:f2:16:
92:99:95:f1:7b:c1:e0:b4:a7:b1:ce:bd:33:42:ed:
49:d2:8f:cd:4e:3d:f5:a4:2b:b1:04:46:9c:21:93:
54:b5:97:69:f3:d5:81:ac:02:bb:4c:a2:07:ae:20:
db:dd:a1:19:3d:09:de:62:27:71:b1:04:e3:b0:b0:
22:2a:43:da:04:2f:b2:0b:77:e1:2d:03:c8:36:d7:
f4:3a:c8:71:56:d7:d2:a9:b4:01:42:2c:8a:1b:a6:
be:c7:3f:ea:ff:0a:b8:48:c3:d3:eb:f2:98:73:c6:
30:ec:a1:1d:7c:ad:4b:83:ff:48:d4:b9:84:28:02:
fa:76:ae:3c:99:59:bd:6a:52:e0:ac:0f:a0:d7:68:
a8:6a:b0:50:1e:8a:9c:ad:76:95:7c:3e:22:c8:37:
8e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:71:55:12:19:92:81:55:DF:52:F5:B0:64:CF:90:3D:3F:37:13:05
X509v3 Authority Key Identifier:
keyid:BF:BF:62:3F:4C:3E:A3:D1:B9:69:B4:05:94:51:77:EE:BA:AF:9E:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v79iP0w-o9G5abQFlFF37rqvns0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ea6f71-49bc-43fa-a288-179ce9408242/1/KnFVEhmSgVXfUvWwZM-QPT83EwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ea6f71-49bc-43fa-a288-179ce9408242/1/v79iP0w-o9G5abQFlFF37rqvns0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.246.109.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:9e:97:fa:6f:6e:89:0c:f2:5e:cb:d0:6a:7d:5a:de:e6:8c:
49:e4:c7:9b:34:95:3d:5b:07:0c:b1:56:79:87:9f:b8:8a:c3:
67:66:80:31:e9:a0:9c:c2:43:b7:1f:32:de:b8:9d:ee:af:b9:
d6:1e:8b:11:14:0b:7c:95:5d:f9:0d:1a:f4:4f:99:8a:ce:c5:
76:5a:a0:2f:97:b0:67:45:52:a2:7b:96:84:00:2e:a1:a7:5b:
b7:89:b2:04:fd:c3:fb:e6:26:7d:c9:9e:ef:46:49:a6:98:a4:
8d:4c:90:6a:50:79:b2:81:0b:df:80:4a:da:f7:ad:be:12:d6:
a6:4f:ef:02:5e:2a:a2:07:ca:cb:b4:e3:50:07:1f:07:e2:75:
bc:ad:01:9f:fa:4c:24:46:be:04:0b:26:7b:12:35:45:4d:41:
e9:bc:a3:e8:fd:dc:06:8a:4f:97:bb:dd:3f:8c:39:31:9e:cc:
d6:63:e3:10:f2:02:49:79:7d:d0:f6:95:9e:d5:43:a5:1b:fc:
fa:38:1d:b0:ad:4a:d9:0c:ed:ae:0a:08:52:f7:d1:7a:02:5e:
e0:19:94:e4:17:07:26:99:85:f4:1e:42:ad:6a:2e:44:72:f0:
3f:7c:66:31:3d:47:8a:2b:46:99:0e:83:21:38:86:e2:e1:d1:
34:fa:a7:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:01 2024 by rpki-client on console-ams.rpki-client.org