Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/dd7067-88bf-4d76-8fc2-dd9b8669a07c/1/shRC5gd-1BP2rs0CixdtHyh-ndk.roa
File: shRC5gd-1BP2rs0CixdtHyh-ndk.roa (raw, json)
Hash identifier: 6shPiE+F/Rb6YiEDgTbHdByR906FHMl84xpFDXtOYp0=
Subject key identifier: B2:14:42:E6:07:7E:D4:13:F6:AE:CD:02:8B:17:6D:1F:28:7E:9D:D9
Certificate issuer: /CN=620f2e41d0ee1dccf5e74bf11605b4a7abaa7518
Certificate serial: 025484
Authority key identifier: 62:0F:2E:41:D0:EE:1D:CC:F5:E7:4B:F1:16:05:B4:A7:AB:AA:75:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yg8uQdDuHcz150vxFgW0p6uqdRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/dd7067-88bf-4d76-8fc2-dd9b8669a07c/1/shRC5gd-1BP2rs0CixdtHyh-ndk.roa
Signing time: Mon 09 May 2022 05:57:57 +0000
ROA not before: Mon 09 May 2022 05:57:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 95.214.110.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152708 (0x25484)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=620f2e41d0ee1dccf5e74bf11605b4a7abaa7518
Validity
Not Before: May 9 05:57:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b21442e6077ed413f6aecd028b176d1f287e9dd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:8d:a1:5d:6f:61:4f:e2:85:2b:aa:be:de:d0:
82:9f:c4:73:3a:95:7d:9f:63:b2:1f:13:bd:95:58:
f3:2a:a8:30:ec:7d:44:65:4d:1e:32:7c:61:e6:48:
a2:5e:c7:64:ea:de:10:ad:be:95:9f:15:60:18:55:
71:56:93:25:17:b5:17:24:b9:87:7d:64:2b:ce:92:
b2:bc:46:7f:ff:ce:53:a3:90:6c:b6:ed:d3:ee:d0:
8c:65:ca:69:80:f8:2e:ec:5a:49:d3:0c:bb:6e:c5:
87:0e:dc:4e:46:7b:7c:46:8e:8c:11:af:6c:79:5a:
43:3a:16:f7:68:b7:87:c2:55:c6:fb:df:5e:4e:9d:
bd:f2:41:3c:14:e7:28:fb:6c:90:9c:3f:80:aa:d6:
14:35:9e:24:85:36:f7:b9:be:ca:f5:9e:b3:ba:7b:
fc:29:95:65:a1:c7:7c:d4:76:6b:1e:71:c8:10:7a:
a7:39:62:41:ca:d2:4d:6b:a5:78:d7:6f:c6:57:f6:
73:3d:20:13:4b:45:1d:8a:c4:b5:35:b9:ef:9a:50:
6b:0c:cb:27:99:97:11:f8:61:84:e1:51:d9:fe:ef:
a4:02:d4:9f:4e:27:65:35:3e:51:b8:0c:18:30:d2:
80:0b:2f:6f:85:03:6d:08:41:b1:61:02:1b:ca:6d:
a5:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:14:42:E6:07:7E:D4:13:F6:AE:CD:02:8B:17:6D:1F:28:7E:9D:D9
X509v3 Authority Key Identifier:
keyid:62:0F:2E:41:D0:EE:1D:CC:F5:E7:4B:F1:16:05:B4:A7:AB:AA:75:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yg8uQdDuHcz150vxFgW0p6uqdRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/dd7067-88bf-4d76-8fc2-dd9b8669a07c/1/shRC5gd-1BP2rs0CixdtHyh-ndk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/dd7067-88bf-4d76-8fc2-dd9b8669a07c/1/Yg8uQdDuHcz150vxFgW0p6uqdRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.110.0/24
Signature Algorithm: sha256WithRSAEncryption
88:6e:3d:1a:1c:79:fc:da:63:1c:1b:38:f5:8f:dd:5b:42:63:
87:0c:7c:26:45:d4:f5:2a:d9:8e:f7:d9:ce:45:3b:04:28:d1:
e6:32:60:47:51:4a:1b:4e:95:bd:75:02:54:15:7b:26:f1:3e:
04:4e:26:c9:c8:3a:4d:9d:a3:d7:e3:0c:a1:7a:95:85:29:61:
8c:6b:d1:34:68:0d:84:7b:bd:a1:90:97:87:c5:ab:09:73:97:
9a:0a:70:07:a4:5c:55:bb:1b:2b:c7:72:de:d0:89:eb:87:a2:
02:5c:85:97:de:b4:85:6f:ab:fb:14:a9:04:ac:23:52:2a:fe:
ca:5e:49:b9:fb:f7:d8:0e:a2:ed:72:b9:e8:73:1a:6e:9d:d3:
33:69:92:19:f5:2b:1c:99:bd:c6:15:61:89:d7:e2:74:68:19:
33:6e:55:97:4a:0a:47:c1:69:78:7a:18:05:fc:59:8a:7e:36:
43:8e:a4:02:04:7d:f1:0f:62:8b:01:35:73:54:69:ac:25:8e:
fc:8d:97:98:10:47:4d:31:d1:cf:59:59:0a:7f:7a:7b:dc:64:
be:86:66:94:ea:b8:08:63:a4:58:ff:91:88:cd:96:1e:59:b1:
6c:ca:b1:ce:75:73:bf:d7:05:e8:84:61:45:df:c3:6d:3d:ee:
b1:db:a8:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:52 2024 by rpki-client on console-ams.rpki-client.org