Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/a48791-cafd-423f-bd61-816a8c210624/1/RAnmXqkHvmI5yrM1SgLdMtUxBlU.roa
File: RAnmXqkHvmI5yrM1SgLdMtUxBlU.roa (raw, json)
Hash identifier: HNnxJXViyqcUPaZXdicUqT+jXNTQntUacyrAwA2762A=
Subject key identifier: 44:09:E6:5E:A9:07:BE:62:39:CA:B3:35:4A:02:DD:32:D5:31:06:55
Certificate issuer: /CN=440ce684d5701ddb02a26b55e29eac9fe804deda
Certificate serial: 018CC4923070E8277A7A66DC5AE2489C50FE
Authority key identifier: 44:0C:E6:84:D5:70:1D:DB:02:A2:6B:55:E2:9E:AC:9F:E8:04:DE:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RAzmhNVwHdsComtV4p6sn-gE3to.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/a48791-cafd-423f-bd61-816a8c210624/1/RAnmXqkHvmI5yrM1SgLdMtUxBlU.roa
Signing time: Mon 01 Jan 2024 10:29:24 +0000
ROA not before: Mon 01 Jan 2024 10:29:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41171
IP address blocks: 94.103.176.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:92:30:70:e8:27:7a:7a:66:dc:5a:e2:48:9c:50:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=440ce684d5701ddb02a26b55e29eac9fe804deda
Validity
Not Before: Jan 1 10:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4409e65ea907be6239cab3354a02dd32d5310655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:5c:47:30:2f:9a:c5:01:15:63:e7:d5:d1:9e:
09:94:b0:b2:a6:82:e6:52:17:0a:1f:74:d8:70:92:
04:3d:67:49:08:e2:3a:83:42:a9:37:ee:cd:5f:39:
ab:9e:42:5d:4e:9c:b2:b7:a4:ea:7f:57:6d:3b:6c:
64:31:04:9c:7d:27:e0:8f:70:05:c5:c9:33:23:75:
98:50:ce:cb:09:39:25:b8:26:c5:83:b6:c7:0f:d1:
89:d9:67:70:64:db:c6:af:66:6b:c7:3d:9c:60:16:
81:be:aa:0b:0d:00:f8:97:84:57:b8:4b:5f:27:c7:
71:c9:fc:e0:61:da:f6:f3:63:43:98:e9:4d:61:3d:
d8:73:82:d9:1d:66:06:dd:e2:02:1b:32:72:d8:7f:
b1:52:e7:72:39:cb:d4:83:24:ed:11:e6:40:ae:19:
25:a8:ce:71:90:71:bc:12:31:cb:36:0e:60:3d:78:
48:92:84:31:5a:b3:eb:e0:cb:a9:0d:3f:61:c9:e0:
54:65:63:4e:4e:0a:85:ab:76:ae:b6:58:01:f6:b8:
35:a8:fe:a8:78:00:9e:d1:82:83:56:31:0f:3a:e1:
f0:a9:8e:72:c4:33:7d:0f:a0:a3:90:53:5a:33:77:
bc:7c:f2:ef:b3:57:74:35:7f:dd:17:61:b9:b4:8f:
d2:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:09:E6:5E:A9:07:BE:62:39:CA:B3:35:4A:02:DD:32:D5:31:06:55
X509v3 Authority Key Identifier:
keyid:44:0C:E6:84:D5:70:1D:DB:02:A2:6B:55:E2:9E:AC:9F:E8:04:DE:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RAzmhNVwHdsComtV4p6sn-gE3to.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a48791-cafd-423f-bd61-816a8c210624/1/RAnmXqkHvmI5yrM1SgLdMtUxBlU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a48791-cafd-423f-bd61-816a8c210624/1/RAzmhNVwHdsComtV4p6sn-gE3to.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.103.176.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:43:aa:f4:9e:90:d9:23:a0:0d:ae:f6:56:b3:c2:e9:6f:00:
21:f1:67:a7:7c:06:b7:72:79:7b:27:8f:ee:8c:09:06:fa:a9:
04:6d:f0:6e:2f:b3:b0:80:b1:21:b3:b6:16:f7:38:87:73:7c:
28:be:13:c1:c7:f3:ea:0a:c0:96:92:93:2d:17:2a:32:53:e5:
e0:8f:d3:85:2d:66:1e:8e:51:4e:7b:fc:46:ee:74:4c:13:4b:
39:71:cc:ab:5f:0a:46:a7:f2:af:f8:34:5b:d9:81:e9:d5:b2:
72:6f:62:b8:22:c6:ef:31:41:b4:78:07:e0:69:f9:f0:fe:5f:
40:34:89:43:e1:00:45:06:4d:1f:85:be:2d:40:ca:d2:6b:e5:
f9:b3:8f:36:f0:d4:52:8e:61:5d:db:b7:9f:fd:dd:74:77:6e:
b8:2a:87:ff:cb:7c:4a:be:c7:6d:7d:80:21:18:f9:50:35:63:
cc:f0:1b:09:5b:b4:65:d8:bc:65:45:b7:ca:47:9c:09:13:5f:
3e:98:cd:c6:cb:15:e9:12:cf:8b:3a:b8:e7:c0:7d:b6:65:7f:
e7:6b:36:2b:fe:7d:7c:98:81:f5:9b:9c:d2:12:dd:39:7a:10:
e1:af:6b:5d:a3:79:93:be:83:82:8a:16:28:3a:88:0e:f2:df:
62:fd:b3:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:23 2024 by rpki-client on console-ams.rpki-client.org