Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/4bb401-3aeb-4ea9-9729-158ef855787d/1/ah928ioeXT-uqIa15gAlD-4RPcI.roa
File: ah928ioeXT-uqIa15gAlD-4RPcI.roa (raw, json)
Hash identifier: VTu6kM3Iouby9IgyyK/f8AXaAxvjNf4YAQMoorCrVjQ=
Subject key identifier: 6A:1F:76:F2:2A:1E:5D:3F:AE:A8:86:B5:E6:00:25:0F:EE:11:3D:C2
Certificate issuer: /CN=d515104d88f6600d232569e3a5f0e0a00a9ad082
Certificate serial: 018CC4245C7CAC6CA7BE0BEA9DC428AA0C92
Authority key identifier: D5:15:10:4D:88:F6:60:0D:23:25:69:E3:A5:F0:E0:A0:0A:9A:D0:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1RUQTYj2YA0jJWnjpfDgoAqa0II.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/4bb401-3aeb-4ea9-9729-158ef855787d/1/ah928ioeXT-uqIa15gAlD-4RPcI.roa
Signing time: Mon 01 Jan 2024 08:29:26 +0000
ROA not before: Mon 01 Jan 2024 08:29:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 94.143.230.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:5c:7c:ac:6c:a7:be:0b:ea:9d:c4:28:aa:0c:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d515104d88f6600d232569e3a5f0e0a00a9ad082
Validity
Not Before: Jan 1 08:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6a1f76f22a1e5d3faea886b5e600250fee113dc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:cd:7f:5c:4a:26:35:69:e9:4f:64:39:c2:f7:
6c:f2:68:f5:81:f9:05:1e:7f:65:dc:8c:b1:68:e3:
6c:f7:8d:96:fe:02:29:4a:1a:a1:49:fd:18:33:35:
c2:f8:4d:2e:78:6f:21:86:0f:83:51:cf:55:1f:b8:
d2:c1:92:3e:24:77:e4:e6:8b:a1:c5:5c:77:ac:ad:
ff:ce:44:a5:da:9f:8c:31:5d:b5:3e:75:c4:42:24:
69:37:ba:38:90:f1:d5:e2:d3:80:3e:1f:e3:14:85:
09:63:77:e7:1d:5e:d0:1f:bb:3c:1c:c7:a9:da:7f:
5d:6d:40:22:43:96:09:5d:dc:e2:67:f1:ef:ee:b4:
d4:72:3a:b2:75:de:87:0b:04:b4:8f:9a:9b:e9:d7:
8d:9d:04:03:37:bc:d5:d8:8e:96:29:9d:31:83:a6:
91:10:42:47:14:83:b7:31:40:8d:8d:76:76:f2:25:
87:6a:d1:01:93:73:5b:24:c4:59:2c:c2:b1:ae:3d:
b9:07:dd:90:0b:80:40:f3:1e:7c:bb:03:85:f3:10:
6e:00:d7:96:08:b1:0a:6f:ca:4b:76:9e:1c:62:4a:
e9:cb:54:97:c1:6d:ae:0d:e9:1c:e2:a9:0b:4b:d8:
c3:c7:f5:39:08:07:14:0d:54:e8:36:ac:f2:96:55:
e0:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:1F:76:F2:2A:1E:5D:3F:AE:A8:86:B5:E6:00:25:0F:EE:11:3D:C2
X509v3 Authority Key Identifier:
keyid:D5:15:10:4D:88:F6:60:0D:23:25:69:E3:A5:F0:E0:A0:0A:9A:D0:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1RUQTYj2YA0jJWnjpfDgoAqa0II.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/4bb401-3aeb-4ea9-9729-158ef855787d/1/ah928ioeXT-uqIa15gAlD-4RPcI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/4bb401-3aeb-4ea9-9729-158ef855787d/1/1RUQTYj2YA0jJWnjpfDgoAqa0II.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.143.230.0/24
Signature Algorithm: sha256WithRSAEncryption
02:70:52:7a:99:6b:61:46:b9:f2:d6:b4:62:0f:47:29:03:e1:
33:b9:23:5b:7e:fd:e2:1a:6a:ac:37:26:4f:2c:74:49:98:c0:
59:5d:1b:84:d2:42:4c:d3:09:8b:1d:01:91:8b:4f:e6:a6:af:
ba:52:1f:4d:ce:26:e7:54:35:39:6c:31:a1:ea:31:4e:4d:a6:
c2:9f:2c:5c:82:97:27:06:0d:54:09:6d:c7:f4:b5:ad:6c:1e:
42:f4:75:56:14:d4:fe:be:a8:d6:e1:6e:80:ce:c3:af:95:99:
21:98:4e:19:4d:88:9a:9e:cc:9c:54:60:2a:64:e4:96:71:01:
7f:fe:78:f7:8e:6b:72:11:60:80:28:4b:84:b5:65:c5:11:fd:
83:47:d0:d4:dc:c8:ef:19:3c:5c:d2:c4:14:61:a0:e2:78:91:
f7:89:53:03:a3:07:f5:99:c4:d5:89:16:01:a7:72:f3:66:05:
79:cf:50:16:71:81:37:c1:ec:89:6b:14:ba:1e:24:d1:ff:84:
3c:94:60:02:21:90:61:cf:93:ca:c0:12:95:7d:83:69:34:2b:
16:7f:2f:66:ce:e3:8b:b1:9e:ed:04:c0:94:e2:bd:fb:39:b2:
d7:79:4a:cf:ce:7b:fe:f6:41:b2:67:08:59:41:1f:ab:2d:63:
c6:d2:22:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 8 19:56:13 2024 by rpki-client on console-fra.rpki-client.org