Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/67e280-da2b-4d92-af0a-cee82cad1c9c/1/q27NKkjV-wElI33spGgvlpdf07A.roa
File: q27NKkjV-wElI33spGgvlpdf07A.roa (raw, json)
Hash identifier: EPGO1MPBJiO0k4Y3muzpKwoxvC/UxouAPqKhJJz+t+g=
Subject key identifier: AB:6E:CD:2A:48:D5:FB:01:25:23:7D:EC:A4:68:2F:96:97:5F:D3:B0
Certificate issuer: /CN=01807b6740a6341bffaff46f165b5881f660d619
Certificate serial: 018570706EAABE28CA77125FBC25A0B1AE03
Authority key identifier: 01:80:7B:67:40:A6:34:1B:FF:AF:F4:6F:16:5B:58:81:F6:60:D6:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AYB7Z0CmNBv_r_RvFltYgfZg1hk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/67e280-da2b-4d92-af0a-cee82cad1c9c/1/q27NKkjV-wElI33spGgvlpdf07A.roa
Signing time: Mon 02 Jan 2023 03:04:54 +0000
ROA not before: Mon 02 Jan 2023 03:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 195.96.134.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:6e:aa:be:28:ca:77:12:5f:bc:25:a0:b1:ae:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01807b6740a6341bffaff46f165b5881f660d619
Validity
Not Before: Jan 2 03:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab6ecd2a48d5fb0125237deca4682f96975fd3b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:8c:49:0d:4c:38:6f:b5:25:67:14:f1:7b:fc:
03:2f:42:b7:3b:00:51:89:a6:01:13:3f:5b:6c:01:
ba:ea:91:5a:cc:6c:f4:6c:0c:4d:29:ae:76:39:1e:
36:b6:40:74:8d:1a:21:5c:93:d2:4e:de:97:f1:ae:
59:ce:47:3b:3d:ad:40:a7:ac:c4:90:ee:7f:21:d3:
dc:0e:61:eb:d8:e1:81:7a:75:9a:95:cf:c3:30:0f:
3d:ed:cb:21:11:df:f0:43:36:ec:2e:f9:62:95:4a:
ad:ad:95:30:54:1b:40:c3:ec:0f:c4:52:bd:60:ed:
0f:bc:8c:6d:59:ef:e4:dd:e7:99:76:d5:7c:c8:a8:
a6:db:9c:dd:30:cc:91:c6:8b:c8:6d:31:19:81:ca:
ee:e5:01:c1:4a:94:e1:9e:c5:4c:dc:10:59:09:59:
49:2f:ec:b5:b5:1f:b1:ae:3b:4d:b2:b7:6d:5f:cf:
c7:24:05:c3:6d:d9:ec:15:62:59:df:25:b8:13:9b:
b5:78:03:33:ef:70:5d:c1:a6:67:5e:31:10:40:da:
fe:64:a5:2b:4b:44:ce:10:ca:51:12:49:13:83:a2:
5f:5d:66:d0:1e:3b:70:65:08:64:97:60:88:e1:52:
75:1b:e1:8b:c3:61:69:a3:4d:a4:ed:8d:1c:11:d3:
09:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:6E:CD:2A:48:D5:FB:01:25:23:7D:EC:A4:68:2F:96:97:5F:D3:B0
X509v3 Authority Key Identifier:
keyid:01:80:7B:67:40:A6:34:1B:FF:AF:F4:6F:16:5B:58:81:F6:60:D6:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AYB7Z0CmNBv_r_RvFltYgfZg1hk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/67e280-da2b-4d92-af0a-cee82cad1c9c/1/q27NKkjV-wElI33spGgvlpdf07A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/67e280-da2b-4d92-af0a-cee82cad1c9c/1/AYB7Z0CmNBv_r_RvFltYgfZg1hk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.134.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:7b:4d:9e:41:6e:05:ed:44:de:45:68:af:b0:06:4e:9d:11:
bd:5b:58:57:8d:91:46:ae:e4:e3:f8:50:21:67:7e:f3:db:1c:
ae:49:1f:c0:e4:6b:14:3f:54:cc:ed:6e:b1:1e:a6:58:01:b0:
a4:b6:84:3b:d1:3e:9c:e6:c0:21:45:9e:6d:85:56:c7:b1:c5:
f3:65:fe:e2:9a:c5:46:4c:3c:5b:50:7c:7c:bf:26:90:25:db:
0a:a0:28:6e:03:49:02:db:18:05:7d:bc:0d:ac:78:4f:3e:e2:
0b:ec:ad:ab:1b:f6:25:e7:dd:56:04:a8:7a:55:7d:30:b6:f1:
2e:fd:f5:c8:86:d8:5e:7e:35:67:28:05:9c:c9:8e:42:07:e1:
2d:2d:41:89:ea:96:6b:d4:9d:a0:f5:cc:9a:a9:5f:44:14:b6:
97:48:17:4c:3f:6b:4e:8e:67:f6:a1:bc:30:32:52:1d:33:53:
42:b2:4e:65:23:a1:8a:55:b9:a0:77:94:83:45:c7:98:76:78:
9d:f3:0d:c9:6f:5a:21:51:33:40:58:17:41:26:bd:c7:80:7f:
e7:89:d0:3e:c7:7b:b8:b1:0f:43:86:83:55:37:8c:c1:e1:2c:
bb:4f:4c:53:82:3d:16:0a:46:9c:02:1c:9b:98:18:c5:7e:97:
57:67:31:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 27 10:49:34 2023 by rpki-client on console-fra.rpki-client.org