Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/1102c7-cb89-4d2a-840c-5c4a039e812f/1/msVVPy9qBw6hSgToo0HHdjj-6Pk.roa
File: msVVPy9qBw6hSgToo0HHdjj-6Pk.roa (raw, json)
Hash identifier: uiZgw2tdBg1Hp577nKgbG6PCylPMP1X5grhft7u4n0I=
Subject key identifier: 9A:C5:55:3F:2F:6A:07:0E:A1:4A:04:E8:A3:41:C7:76:38:FE:E8:F9
Certificate issuer: /CN=34f838d3a9de854c98af8320c3deb0041e239e8d
Certificate serial: CF454C
Authority key identifier: 34:F8:38:D3:A9:DE:85:4C:98:AF:83:20:C3:DE:B0:04:1E:23:9E:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NPg406nehUyYr4Mgw96wBB4jno0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/1102c7-cb89-4d2a-840c-5c4a039e812f/1/msVVPy9qBw6hSgToo0HHdjj-6Pk.roa
Signing time: Sat 01 Jan 2022 08:52:52 +0000
ROA not before: Sat 01 Jan 2022 08:52:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 213.109.153.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13583692 (0xcf454c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34f838d3a9de854c98af8320c3deb0041e239e8d
Validity
Not Before: Jan 1 08:52:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ac5553f2f6a070ea14a04e8a341c77638fee8f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:0e:b0:e6:e8:6a:8d:39:31:d1:38:8b:de:ca:
18:79:aa:10:71:b9:57:11:d1:1f:84:06:8f:0b:35:
ed:ff:34:3c:c1:66:46:d5:c5:5e:db:a5:33:ff:bd:
f8:90:98:80:02:9b:cb:ab:95:64:57:65:20:33:63:
90:c8:6d:99:3d:92:36:0e:03:3d:ff:96:7e:bc:d4:
31:97:ae:61:4c:b9:6a:eb:29:cd:34:09:86:13:07:
c8:48:e2:cb:02:28:1b:ff:1b:4f:06:23:00:df:23:
83:e3:fe:4f:99:5a:cd:fa:02:70:c8:e8:18:9f:9b:
a0:0c:dd:d2:b3:1e:f5:e8:c0:43:56:4d:5f:0e:bd:
a5:04:68:ab:0f:14:5c:8c:10:69:21:6a:c2:d4:9c:
05:53:10:d9:55:21:e8:a8:b6:7b:9f:7d:dc:cf:a8:
07:12:f0:11:99:9b:1c:32:86:41:b0:4c:4e:a3:9c:
35:19:3c:22:f7:e7:9b:ff:af:ae:b7:d3:64:c3:8a:
99:f0:93:3e:07:51:b2:65:f8:5c:1d:ac:1f:d7:6d:
71:7c:2e:e1:eb:1f:aa:26:05:48:ea:36:92:e3:c4:
f2:b0:bc:7b:37:60:80:65:a1:10:d7:7b:81:13:ab:
48:af:9e:ea:6d:a4:ec:88:7d:88:e1:c4:b3:39:28:
2c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:C5:55:3F:2F:6A:07:0E:A1:4A:04:E8:A3:41:C7:76:38:FE:E8:F9
X509v3 Authority Key Identifier:
keyid:34:F8:38:D3:A9:DE:85:4C:98:AF:83:20:C3:DE:B0:04:1E:23:9E:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NPg406nehUyYr4Mgw96wBB4jno0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/1102c7-cb89-4d2a-840c-5c4a039e812f/1/msVVPy9qBw6hSgToo0HHdjj-6Pk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/1102c7-cb89-4d2a-840c-5c4a039e812f/1/NPg406nehUyYr4Mgw96wBB4jno0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.153.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:01:29:17:00:b0:79:64:df:3b:ae:29:c4:6c:99:aa:3b:8c:
62:e6:5c:0f:8a:71:72:8a:14:47:25:c8:18:32:e0:ec:2c:1b:
ad:f2:a7:80:dc:8b:36:a1:f8:46:3f:b3:ca:b5:31:63:07:b3:
ce:90:df:a3:70:a9:4a:b6:83:3e:34:61:30:ec:3c:e4:77:93:
18:fa:8f:a4:4c:92:bc:37:17:a8:3d:e5:7f:4a:6d:d9:59:99:
9e:04:73:5e:50:c3:62:7a:bf:c0:02:ed:8d:f2:25:a2:cd:53:
d3:7d:f2:44:99:91:45:f2:6f:87:f7:cb:83:2f:c8:4c:3c:c3:
39:ed:4f:1d:ad:1f:d2:f0:10:83:fb:8f:fc:c9:32:29:c5:0e:
21:3d:b4:ec:45:d7:fa:53:04:37:07:e4:f1:c3:5d:c4:ee:50:
09:39:75:83:43:d8:34:32:e1:d7:2a:89:b6:65:8a:dc:a4:cb:
fa:6d:42:18:48:f0:23:a4:6a:ca:54:5c:5b:06:55:fc:bc:02:
66:4e:80:a7:c8:b5:42:57:5c:10:f9:ca:76:ee:70:8a:cd:04:
25:e6:12:23:2b:77:3d:51:a1:15:f5:57:f1:66:b7:69:82:64:
2c:3d:57:65:a5:c5:11:03:04:11:96:60:bf:60:5e:2e:de:bc:
0c:52:36:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:40 2024 by rpki-client on console-ams.rpki-client.org