Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/bc1afc-841d-48b8-bc94-2df063ac23df/1/8Iz4Ogw95hAjTq2KzovjNiNiCbw.roa
File: 8Iz4Ogw95hAjTq2KzovjNiNiCbw.roa (raw, json)
Hash identifier: 8rXWdPGPZNgg77Dag7GDo0fAoYbbUbSNI4hdu1/kBgE=
Subject key identifier: F0:8C:F8:3A:0C:3D:E6:10:23:4E:AD:8A:CE:8B:E3:36:23:62:09:BC
Certificate issuer: /CN=94eab7c619d889f03b63f226c0111524eb0562b7
Certificate serial: 018572F11D65F9A28ACC059DE8EA43215CCD
Authority key identifier: 94:EA:B7:C6:19:D8:89:F0:3B:63:F2:26:C0:11:15:24:EB:05:62:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lOq3xhnYifA7Y_ImwBEVJOsFYrc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/bc1afc-841d-48b8-bc94-2df063ac23df/1/8Iz4Ogw95hAjTq2KzovjNiNiCbw.roa
Signing time: Mon 02 Jan 2023 14:44:42 +0000
ROA not before: Mon 02 Jan 2023 14:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198907
IP address blocks: 91.240.95.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:f1:1d:65:f9:a2:8a:cc:05:9d:e8:ea:43:21:5c:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94eab7c619d889f03b63f226c0111524eb0562b7
Validity
Not Before: Jan 2 14:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f08cf83a0c3de610234ead8ace8be336236209bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:5c:c0:35:ea:06:e8:21:08:56:1f:8c:7a:38:
85:55:80:e3:30:c9:d0:d0:5f:ac:e4:a9:42:2b:58:
a8:9f:09:51:24:d1:34:fb:60:5a:33:bf:1b:4e:af:
90:2f:5c:cb:0a:5b:7b:7f:86:7c:47:d3:ff:b5:e8:
9f:3d:67:06:ec:18:a3:42:3b:9c:89:d5:46:64:1d:
5e:3c:b3:c2:b9:d6:86:22:e7:36:1d:e9:c3:aa:b5:
88:5f:1a:8d:2d:6a:b2:c3:23:c7:ce:84:fb:dc:a5:
b6:d2:9d:ad:70:88:90:0c:88:aa:13:11:19:1d:43:
12:04:92:af:be:47:79:e6:e9:37:5b:f4:e8:05:ae:
fc:75:82:38:63:a2:6c:d2:a3:c3:3c:82:45:b6:46:
01:74:c0:a2:2c:c0:ac:e9:c8:01:49:36:4d:47:16:
50:73:67:0b:50:0a:c4:8b:6e:83:15:b1:fe:20:ab:
24:2e:ef:f7:2b:29:10:ea:ee:b2:b5:1e:66:b6:0f:
9a:a9:50:10:5e:af:d4:05:e9:e4:de:ec:ba:e3:d2:
e7:45:dd:04:bb:1c:5b:22:18:de:6e:24:ce:a3:3a:
87:db:48:d1:c0:01:d1:df:d5:d5:40:3a:01:d5:30:
30:dd:5e:d2:94:4b:49:4d:6a:d1:d2:dd:aa:00:24:
de:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:8C:F8:3A:0C:3D:E6:10:23:4E:AD:8A:CE:8B:E3:36:23:62:09:BC
X509v3 Authority Key Identifier:
keyid:94:EA:B7:C6:19:D8:89:F0:3B:63:F2:26:C0:11:15:24:EB:05:62:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lOq3xhnYifA7Y_ImwBEVJOsFYrc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/bc1afc-841d-48b8-bc94-2df063ac23df/1/8Iz4Ogw95hAjTq2KzovjNiNiCbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/bc1afc-841d-48b8-bc94-2df063ac23df/1/lOq3xhnYifA7Y_ImwBEVJOsFYrc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.95.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:d0:34:af:3e:21:9b:f9:f7:d4:a9:1a:c5:a6:11:92:4b:04:
90:5c:50:94:2f:31:d3:db:c3:0c:1b:2e:4c:8c:fa:12:62:cc:
d0:23:03:85:c7:10:35:77:52:5d:93:60:db:7f:8b:e9:98:47:
e4:de:9a:5e:39:6d:1c:19:db:e0:87:cc:26:d4:0b:59:44:25:
9d:3f:57:00:c4:17:2d:a6:f7:45:14:c2:10:b5:80:fb:b7:86:
aa:1b:28:ae:9a:db:15:9a:29:5f:7a:97:31:a0:ad:75:36:f6:
50:57:58:5c:65:c6:9e:9f:a7:15:44:08:bc:e7:1b:c8:af:33:
b8:b0:6d:c6:ae:67:38:46:d6:54:73:22:d9:11:d4:6e:bd:73:
00:52:db:ed:fa:37:fd:2b:29:2e:24:ff:3a:c3:a3:6a:19:31:
4d:f1:60:43:3b:3e:cf:ef:8c:8b:63:e8:88:3e:9b:b6:16:41:
53:cc:48:30:e1:5d:43:d0:c7:de:58:41:19:29:0c:8f:1c:bd:
60:88:0b:aa:26:b0:df:31:92:b4:b2:5a:be:ae:cd:b2:86:89:
be:1d:53:ee:ac:74:96:93:30:96:33:5c:42:ae:a7:37:b7:2f:
0c:80:1c:a2:7b:7c:07:16:fc:97:8c:95:53:ac:b9:60:46:06:
50:4a:8f:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:50 2024 by rpki-client on console-ams.rpki-client.org