Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/53fcaa-b721-462a-a607-3740507a2601/1/DitIH4B7W_RT9SeizKHKuLLoaB4.roa
File: DitIH4B7W_RT9SeizKHKuLLoaB4.roa (raw, json)
Hash identifier: CgwgInDhTLpVf0hL8bN95yZ1p6N8TeNiauf9A1NMwuk=
Subject key identifier: 0E:2B:48:1F:80:7B:5B:F4:53:F5:27:A2:CC:A1:CA:B8:B2:E8:68:1E
Certificate issuer: /CN=98c11fd034eff9157554f55ee2834db3b29fcc35
Certificate serial: 018571B0C6551FEEB8953F15ACD7D28762A4
Authority key identifier: 98:C1:1F:D0:34:EF:F9:15:75:54:F5:5E:E2:83:4D:B3:B2:9F:CC:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mMEf0DTv-RV1VPVe4oNNs7KfzDU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/53fcaa-b721-462a-a607-3740507a2601/1/DitIH4B7W_RT9SeizKHKuLLoaB4.roa
Signing time: Mon 02 Jan 2023 08:54:48 +0000
ROA not before: Mon 02 Jan 2023 08:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42425
IP address blocks: 2.59.6.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b0:c6:55:1f:ee:b8:95:3f:15:ac:d7:d2:87:62:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98c11fd034eff9157554f55ee2834db3b29fcc35
Validity
Not Before: Jan 2 08:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e2b481f807b5bf453f527a2cca1cab8b2e8681e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:59:f0:63:cb:12:67:81:d0:da:f3:ed:d9:a3:
5c:a0:9d:b7:d4:af:e5:c8:81:d1:ed:09:11:a2:c2:
9b:bd:6d:30:d2:6e:24:6b:2e:d3:82:72:5c:0e:1a:
7a:b5:d2:fb:2e:07:cd:ab:ab:bd:fd:58:41:76:85:
a6:ef:a8:3d:8d:f4:78:52:dd:45:80:21:e3:92:4e:
bf:7b:ac:db:bb:d4:dc:a0:c1:20:73:ce:b4:9e:01:
2d:e0:4f:4d:60:c0:48:fb:4d:ad:41:34:fe:3d:99:
2f:14:02:ee:aa:7e:73:37:ed:aa:33:b3:ed:7e:df:
4f:4c:0b:a7:db:c6:81:3a:ca:b2:5a:04:1f:64:3b:
cc:0d:44:ce:3e:f9:73:e8:3c:f6:87:a0:ca:5c:e0:
43:66:9a:0b:b3:1e:50:61:34:dc:a7:c0:39:53:78:
71:6c:de:b9:9a:d5:e6:09:5c:c2:d7:ae:6e:4f:ac:
73:14:3f:a4:67:0c:80:35:f5:38:4c:35:4a:68:73:
5c:f1:cf:27:55:b4:d6:2f:b6:e5:50:f9:2b:85:a9:
b7:40:b8:2b:fb:76:aa:4c:df:21:54:9e:cc:1a:ad:
6a:ef:90:ed:56:0f:fb:80:2d:27:9e:ca:1c:4c:97:
24:65:cd:7e:26:47:c0:9a:30:7e:fb:ab:f5:14:44:
95:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:2B:48:1F:80:7B:5B:F4:53:F5:27:A2:CC:A1:CA:B8:B2:E8:68:1E
X509v3 Authority Key Identifier:
keyid:98:C1:1F:D0:34:EF:F9:15:75:54:F5:5E:E2:83:4D:B3:B2:9F:CC:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mMEf0DTv-RV1VPVe4oNNs7KfzDU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/53fcaa-b721-462a-a607-3740507a2601/1/DitIH4B7W_RT9SeizKHKuLLoaB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/53fcaa-b721-462a-a607-3740507a2601/1/mMEf0DTv-RV1VPVe4oNNs7KfzDU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.6.0/24
Signature Algorithm: sha256WithRSAEncryption
77:8c:71:74:80:1b:52:f9:c0:81:75:fd:3b:b8:d3:49:50:1a:
d6:2c:c4:0e:02:d4:d9:32:4e:3b:25:cf:92:0a:b0:ba:fe:a5:
0a:8d:21:e1:3e:f2:54:63:83:c5:d7:d8:a1:a8:e7:72:5a:00:
cf:bb:02:65:c7:9b:27:60:9a:71:61:10:1c:0d:ac:b8:95:d8:
fe:7f:0f:00:c2:4d:13:b8:97:41:20:a5:68:71:67:ff:ef:43:
0b:9b:54:64:a1:79:82:a3:b7:f1:b3:e0:b5:aa:55:3f:fd:98:
d7:5e:e3:1b:0a:f1:7a:10:94:4a:14:ca:68:fc:a6:ee:ad:71:
36:be:89:ac:10:06:10:8b:a0:ed:75:50:8a:7b:b3:d6:8a:c3:
fb:a3:b5:a9:dc:ae:2c:2e:0b:e4:03:de:ab:13:c1:a1:99:50:
92:38:2f:14:16:6f:20:da:66:46:23:23:71:37:60:fe:c9:f3:
79:4d:fd:3e:1a:29:77:e1:b5:b2:cd:69:23:15:eb:b8:0b:f0:
57:cd:a0:e9:9d:2a:c8:9f:7a:d7:25:c1:80:c5:c0:04:ba:7e:
7c:c3:86:95:a0:3b:03:33:44:c7:8b:b5:db:f7:63:3a:d1:4e:
30:38:23:eb:9f:41:95:03:8a:44:5b:bd:40:75:ab:0a:b3:d3:
b7:9c:fd:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:32 2024 by rpki-client on console-ams.rpki-client.org