Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/s3NZOL9lgZ9aH973aFmVxtCLHuI.roa
File: s3NZOL9lgZ9aH973aFmVxtCLHuI.roa (raw, json)
Hash identifier: w7uozD6HqIwW0GtESSLLxij6lZOkIzaMGir6+IA4at8=
Subject key identifier: B3:73:59:38:BF:65:81:9F:5A:1F:DE:F7:68:59:95:C6:D0:8B:1E:E2
Certificate issuer: /CN=e85b83c87c4a3d8315025379f72987520bb5d046
Certificate serial: 019016671BB6833BC953983679EFB8052A40
Authority key identifier: E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/s3NZOL9lgZ9aH973aFmVxtCLHuI.roa
Signing time: Fri 14 Jun 2024 10:59:34 +0000
ROA not before: Fri 14 Jun 2024 10:59:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2914
IP address blocks: 217.24.64.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:16:67:1b:b6:83:3b:c9:53:98:36:79:ef:b8:05:2a:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e85b83c87c4a3d8315025379f72987520bb5d046
Validity
Not Before: Jun 14 10:59:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b3735938bf65819f5a1fdef7685995c6d08b1ee2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:d6:cc:cc:58:9d:93:41:ca:64:37:2e:33:2a:
29:b6:28:fd:dd:ed:85:66:66:e7:01:ae:a9:d7:a6:
dd:7b:7f:cf:3e:e8:bb:df:3d:df:8f:bb:c5:c8:b6:
28:e8:cc:a8:02:aa:0c:1d:74:59:8c:25:ed:b0:36:
ec:66:cd:e3:e4:69:00:ef:7a:5b:d3:d9:06:a0:f2:
65:30:f9:2a:36:d2:e1:27:70:3e:4d:1e:e2:11:d6:
d1:fa:ec:96:9a:fa:1e:0d:92:87:6d:ef:f7:8d:ac:
1e:ad:12:4e:f2:ff:c2:a8:b4:70:01:a6:9d:85:54:
13:41:ca:1e:72:61:7a:58:5b:3d:8c:4e:30:5d:a6:
21:c5:8c:09:95:55:ab:1f:2d:c5:7c:97:8a:83:19:
5c:54:08:e4:ca:be:84:46:0c:74:26:09:29:97:36:
65:bb:be:b9:39:c6:f1:c5:c6:84:2a:73:59:a7:72:
90:26:d4:3a:96:7d:fe:ab:37:ca:ae:b2:2b:16:4f:
6a:f1:4b:bc:6e:e9:83:79:02:ac:76:82:fc:ee:ea:
fc:87:b3:2c:72:f6:06:53:91:5f:e3:5b:e9:07:a2:
1c:f1:f0:b0:09:7d:39:e3:48:83:b0:a4:0e:aa:fe:
47:e7:de:8d:4e:63:a3:63:d5:1e:27:48:5d:19:ac:
fe:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:73:59:38:BF:65:81:9F:5A:1F:DE:F7:68:59:95:C6:D0:8B:1E:E2
X509v3 Authority Key Identifier:
keyid:E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/s3NZOL9lgZ9aH973aFmVxtCLHuI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/6FuDyHxKPYMVAlN59ymHUgu10EY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.24.64.0/20
Signature Algorithm: sha256WithRSAEncryption
8f:22:07:93:ae:b4:18:82:ee:5e:c0:9b:9e:03:04:51:75:bd:
0c:5d:f3:35:b7:ca:6e:20:81:62:99:0f:64:5a:d2:f0:a9:2f:
1a:ad:f0:b5:cd:2e:0d:91:f6:75:71:b7:a3:ea:2b:f6:18:e5:
b3:93:0e:b3:a4:0d:e7:e2:de:34:6c:54:ae:ec:0b:da:af:31:
ae:bf:f0:e0:d8:80:b6:ff:37:ce:ae:1c:ed:7b:ef:e0:89:e0:
e4:44:83:24:a3:01:ec:cb:2f:06:08:f9:dc:db:90:29:d4:1d:
9d:df:c3:1c:4d:6e:38:82:fb:16:94:22:0c:5d:63:0e:35:55:
3b:e7:8e:22:c8:e7:65:da:d2:a6:b3:bc:67:d5:63:cf:d8:16:
38:ab:05:37:42:70:2b:ef:e6:20:15:6f:e6:3b:6c:2b:f5:df:
c9:58:87:cd:be:96:c7:f0:45:25:5e:85:be:88:41:51:c9:81:
c5:0b:c2:2b:d7:8c:23:35:3b:b1:20:20:c7:54:af:17:93:d9:
bd:8e:34:b2:04:f0:1a:54:03:87:1b:74:75:8d:7f:67:1a:02:
1e:39:4b:06:03:4e:b3:b1:a2:03:a3:8c:cb:22:be:c3:2b:0b:
fb:03:85:d5:d6:89:c4:eb:73:dc:c4:3e:d4:25:eb:33:2a:69:
fc:08:38:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 7 10:40:55 2024 by rpki-client on console-ams.rpki-client.org