Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/df6aae-5150-49a6-b83d-717f4730064c/1/99fVwDeNVpMBzYcJYCkR_gvCjOQ.roa
File: 99fVwDeNVpMBzYcJYCkR_gvCjOQ.roa (raw, json)
Hash identifier: V8gLlU8CgxcUSFRUN+fn9rX8rlqQogS+nKpxUD/BNIw=
Subject key identifier: F7:D7:D5:C0:37:8D:56:93:01:CD:87:09:60:29:11:FE:0B:C2:8C:E4
Certificate issuer: /CN=3bf35c92ebf139acb59c31586041355a5fc38911
Certificate serial: 0185729EFD4412700ADB7E48B0DF0DB92858
Authority key identifier: 3B:F3:5C:92:EB:F1:39:AC:B5:9C:31:58:60:41:35:5A:5F:C3:89:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_NckuvxOay1nDFYYEE1Wl_DiRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/df6aae-5150-49a6-b83d-717f4730064c/1/99fVwDeNVpMBzYcJYCkR_gvCjOQ.roa
Signing time: Mon 02 Jan 2023 13:14:59 +0000
ROA not before: Mon 02 Jan 2023 13:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2148
IP address blocks: 192.148.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:9e:fd:44:12:70:0a:db:7e:48:b0:df:0d:b9:28:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bf35c92ebf139acb59c31586041355a5fc38911
Validity
Not Before: Jan 2 13:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7d7d5c0378d569301cd8709602911fe0bc28ce4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:99:fc:0c:55:8e:41:3c:b6:d2:9e:2f:5e:52:
3c:6a:b3:af:9b:5b:a1:58:5e:cf:3f:04:75:18:84:
5d:33:79:e4:e5:92:b8:c2:c8:82:3d:d1:37:eb:0d:
11:52:84:f8:e3:d9:bf:ed:d1:8f:d6:4e:d8:31:de:
20:14:25:43:18:e8:a8:5b:6c:7f:e2:b7:a0:be:94:
1a:ea:93:8d:13:11:3f:5d:b6:af:84:88:9d:41:cb:
75:fe:99:cf:ef:72:a1:c4:ea:75:e8:14:e3:01:32:
36:4e:d9:f1:1b:45:d8:09:11:4c:50:ca:49:56:4a:
55:b6:72:89:0f:1b:80:95:e8:c9:73:71:f3:26:1b:
6a:c6:e3:6e:c2:de:53:55:f4:a5:56:ce:c9:e4:c3:
d4:3c:97:eb:d8:75:54:25:7e:88:76:23:e7:f9:cc:
e4:11:e7:d6:7e:16:88:e6:ff:e6:b6:b4:91:3c:5c:
94:70:bb:df:97:39:98:77:60:7f:d5:7c:13:32:6e:
24:da:a4:5d:bc:33:32:01:5f:71:82:1a:a9:b0:9a:
c1:df:ec:34:c6:51:3d:09:f1:03:a7:a7:88:1b:47:
8b:87:19:c8:8b:22:b6:b4:df:53:65:b1:e1:64:f3:
2f:d0:2f:41:c1:93:a7:89:5f:52:44:46:96:c5:14:
4d:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:D7:D5:C0:37:8D:56:93:01:CD:87:09:60:29:11:FE:0B:C2:8C:E4
X509v3 Authority Key Identifier:
keyid:3B:F3:5C:92:EB:F1:39:AC:B5:9C:31:58:60:41:35:5A:5F:C3:89:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_NckuvxOay1nDFYYEE1Wl_DiRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/df6aae-5150-49a6-b83d-717f4730064c/1/99fVwDeNVpMBzYcJYCkR_gvCjOQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/df6aae-5150-49a6-b83d-717f4730064c/1/O_NckuvxOay1nDFYYEE1Wl_DiRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.148.166.0/24
Signature Algorithm: sha256WithRSAEncryption
90:e4:e4:e5:5b:1b:11:4f:97:2b:86:82:6c:84:c1:91:80:86:
7b:dc:e7:55:de:95:be:3b:b3:81:6e:7c:c6:6f:eb:41:f1:7d:
ec:c5:bd:be:48:7e:3b:a7:56:e8:c7:58:27:54:55:54:66:02:
f9:e1:9d:f8:75:25:7b:73:3d:51:a7:e8:e5:2c:5e:3a:0a:a0:
27:5f:75:05:cd:0f:92:06:a4:fb:6d:a6:0d:a0:68:b3:29:ff:
ba:da:08:3b:a2:8b:bd:bd:6f:9f:43:ba:45:57:82:32:79:79:
29:b5:0c:92:2e:c4:32:0e:b0:1f:75:82:46:72:f1:dc:13:20:
c2:f1:6a:3f:f0:f0:02:0f:8c:99:a6:c7:93:af:a0:4f:72:0a:
32:70:b4:c2:5b:f5:bf:46:c7:ad:1c:71:14:4e:88:2b:8f:ca:
e2:a3:54:67:0b:e0:95:4d:b7:d3:55:fd:fb:22:36:a0:65:12:
4e:76:df:1c:2f:86:2f:11:7a:66:ab:33:ba:9f:ae:0c:a0:af:
ed:e1:f1:01:f4:c8:8f:f9:58:d7:c1:e6:65:1b:97:cb:a0:c8:
af:32:27:a1:42:9d:23:38:de:18:41:93:fe:91:c3:ee:da:82:
00:2b:11:18:f1:28:1d:90:d6:3c:0a:38:e2:26:f3:95:49:78:
d7:69:55:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:16 2024 by rpki-client on console-ams.rpki-client.org