Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/67e280-da2b-4d92-af0a-cee82cad1c9c/1/Balmm3OhMojFwZcky-VyTExM1yo.roa
File: Balmm3OhMojFwZcky-VyTExM1yo.roa (raw, json)
Hash identifier: jdVuWM7g20RCgv1/TXPMApuYvhwcjub2q0TSH+nyrks=
Subject key identifier: 05:A9:66:9B:73:A1:32:88:C5:C1:97:24:CB:E5:72:4C:4C:4C:D7:2A
Certificate issuer: /CN=01807b6740a6341bffaff46f165b5881f660d619
Certificate serial: 018570706F4A82EF3EC0FDA0A5CCB20DA677
Authority key identifier: 01:80:7B:67:40:A6:34:1B:FF:AF:F4:6F:16:5B:58:81:F6:60:D6:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AYB7Z0CmNBv_r_RvFltYgfZg1hk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/67e280-da2b-4d92-af0a-cee82cad1c9c/1/Balmm3OhMojFwZcky-VyTExM1yo.roa
Signing time: Mon 02 Jan 2023 03:04:54 +0000
ROA not before: Mon 02 Jan 2023 03:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398464
IP address blocks: 195.96.134.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:6f:4a:82:ef:3e:c0:fd:a0:a5:cc:b2:0d:a6:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01807b6740a6341bffaff46f165b5881f660d619
Validity
Not Before: Jan 2 03:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=05a9669b73a13288c5c19724cbe5724c4c4cd72a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:64:43:0d:fb:4f:a5:d0:42:c5:b5:cf:16:b1:
29:fc:67:75:eb:8a:19:70:07:38:41:7b:91:d9:fd:
9a:90:9f:de:e3:01:a6:ac:88:05:3f:8e:ed:30:10:
88:59:17:95:ed:3c:47:71:3e:2d:a1:54:86:61:ea:
94:90:c7:d3:bb:e6:36:f8:dc:8a:d6:52:d7:9a:23:
01:01:91:b4:e6:c6:41:a7:48:73:82:84:d0:49:3a:
19:c6:6a:b7:e1:a3:80:3b:15:7c:b6:eb:1b:5d:0a:
09:39:7d:dd:eb:a5:06:9b:a0:3b:79:ed:ac:20:bb:
0f:4d:03:6f:97:cd:fe:00:be:ae:5c:72:49:58:88:
78:57:da:fc:0c:da:20:b5:e8:36:e3:46:3b:9c:16:
d1:5b:35:88:17:ed:2e:77:70:4a:d2:d7:36:3a:e9:
7b:f8:e0:f8:e4:86:fd:08:65:2a:9a:2d:86:b0:f6:
c5:5f:b1:88:c2:be:03:3a:f6:0a:00:5c:da:be:3f:
2d:8b:68:12:e5:4e:65:ff:90:95:60:f8:7d:c1:bf:
4c:69:54:9d:92:e5:b8:f8:10:63:77:ea:82:5d:ca:
fa:12:e0:2f:4f:2c:8a:36:fc:3b:9b:a9:1f:59:d8:
cd:ab:11:dd:3c:c3:56:09:a6:aa:e3:d2:33:e8:4a:
75:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:A9:66:9B:73:A1:32:88:C5:C1:97:24:CB:E5:72:4C:4C:4C:D7:2A
X509v3 Authority Key Identifier:
keyid:01:80:7B:67:40:A6:34:1B:FF:AF:F4:6F:16:5B:58:81:F6:60:D6:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AYB7Z0CmNBv_r_RvFltYgfZg1hk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/67e280-da2b-4d92-af0a-cee82cad1c9c/1/Balmm3OhMojFwZcky-VyTExM1yo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/67e280-da2b-4d92-af0a-cee82cad1c9c/1/AYB7Z0CmNBv_r_RvFltYgfZg1hk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.134.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:7b:7e:cd:7d:1e:c8:00:0e:11:95:a4:44:ea:ac:b4:54:20:
a1:2f:d0:64:31:03:ff:5b:04:70:e9:9e:19:39:13:84:66:13:
47:aa:8c:ac:e6:70:07:78:c2:d7:45:54:9b:ae:8d:bf:2d:8f:
41:bf:09:a6:28:3e:97:67:a3:d3:84:09:56:15:28:71:13:16:
b3:63:f5:d4:63:84:29:fd:3e:66:04:9c:3b:ca:69:81:11:e8:
1c:21:a3:32:af:f4:42:47:1c:41:89:0a:39:62:58:6c:de:5a:
a3:9d:c6:90:05:42:a7:9f:93:fa:d0:0b:b4:a7:2d:21:aa:44:
32:74:cb:71:cd:4c:d5:25:6b:42:42:af:ea:4d:d8:be:58:81:
ca:e9:5e:4f:83:81:b4:b6:31:90:45:a7:23:af:8e:09:b8:fb:
03:31:c4:03:96:9d:27:b2:0d:c6:f1:96:f6:54:4a:5a:2b:01:
83:26:d6:3f:12:7a:3e:8a:fa:60:89:3f:64:bf:40:67:e5:7a:
8e:21:67:fa:a2:9c:5f:b5:4e:22:55:db:92:e0:0d:b8:e8:38:
6d:27:f0:51:d6:23:58:93:7a:7f:5f:76:7d:0f:79:9f:78:c2:
1c:30:46:50:e9:d5:04:cf:46:ef:9c:79:e4:15:1c:8c:b7:1f:
58:ec:80:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 27 10:57:40 2023 by rpki-client on console-ams.rpki-client.org