Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/27d4f2-d1dc-41bd-b8e6-9545b133c4e3/1/NrTpD5c914SBDtc0rJO1EOwl7jk.roa
File: NrTpD5c914SBDtc0rJO1EOwl7jk.roa (raw, json)
Hash identifier: QyCVbSSBvvdhse4tROxxjgjpsadmEiL/13R8nlaB0oc=
Subject key identifier: 36:B4:E9:0F:97:3D:D7:84:81:0E:D7:34:AC:93:B5:10:EC:25:EE:39
Certificate issuer: /CN=d9f349d6906ed1edd3c89e756e6a8ce4c1910054
Certificate serial: 018CC94DB42F960CE04E2905642DE2CD409A
Authority key identifier: D9:F3:49:D6:90:6E:D1:ED:D3:C8:9E:75:6E:6A:8C:E4:C1:91:00:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fNJ1pBu0e3TyJ51bmqM5MGRAFQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/27d4f2-d1dc-41bd-b8e6-9545b133c4e3/1/NrTpD5c914SBDtc0rJO1EOwl7jk.roa
Signing time: Tue 02 Jan 2024 08:32:41 +0000
ROA not before: Tue 02 Jan 2024 08:32:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58061
IP address blocks: 195.64.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:b4:2f:96:0c:e0:4e:29:05:64:2d:e2:cd:40:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9f349d6906ed1edd3c89e756e6a8ce4c1910054
Validity
Not Before: Jan 2 08:32:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=36b4e90f973dd784810ed734ac93b510ec25ee39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e0:0c:e1:a5:c3:ae:b9:3d:ec:bb:23:fc:56:
c7:21:33:10:5e:25:d0:48:b0:ff:3f:2d:e8:3f:2b:
06:0e:ae:75:d5:49:53:41:65:3b:19:d3:9c:db:66:
fa:05:28:55:5d:d1:4e:68:f1:62:6e:b3:9c:e2:ea:
2b:e4:19:59:52:6a:82:90:ba:eb:04:7b:44:25:47:
e5:e6:dd:55:df:90:53:30:3c:ee:00:6e:84:0c:00:
7a:9e:8d:52:d0:6f:38:df:a3:3a:d2:22:d7:e2:17:
54:00:6c:24:ba:c4:a3:28:f2:8a:94:01:54:64:5f:
07:57:ba:e6:b4:c3:10:16:f2:27:78:70:2a:cf:cf:
e8:a5:1e:5e:8a:8b:b1:8b:96:77:ff:ee:7e:41:16:
ea:75:75:9d:99:55:44:74:cf:39:7c:64:26:ce:ae:
20:de:d6:e1:84:3d:89:3d:d2:24:e9:b2:26:70:d2:
c1:08:86:bb:ac:d4:58:03:9e:ed:5e:29:11:a6:f2:
26:bb:a5:b4:ed:52:f7:fe:0e:03:72:be:2c:89:e8:
7c:4f:c7:d8:2d:bb:2b:03:73:42:08:9c:58:b4:d4:
1b:80:38:20:24:67:79:5a:b1:01:2e:70:a2:11:e2:
e2:2c:f2:e3:d9:f3:42:03:ab:b9:45:19:b3:b1:e1:
1d:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:B4:E9:0F:97:3D:D7:84:81:0E:D7:34:AC:93:B5:10:EC:25:EE:39
X509v3 Authority Key Identifier:
keyid:D9:F3:49:D6:90:6E:D1:ED:D3:C8:9E:75:6E:6A:8C:E4:C1:91:00:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fNJ1pBu0e3TyJ51bmqM5MGRAFQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/27d4f2-d1dc-41bd-b8e6-9545b133c4e3/1/NrTpD5c914SBDtc0rJO1EOwl7jk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/27d4f2-d1dc-41bd-b8e6-9545b133c4e3/1/2fNJ1pBu0e3TyJ51bmqM5MGRAFQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.117.0/24
Signature Algorithm: sha256WithRSAEncryption
34:eb:ac:0a:d9:86:3a:de:0c:90:ee:82:d5:11:62:fe:ec:87:
42:15:6f:ba:ad:f2:93:da:ed:33:2b:ea:2a:50:46:23:ec:a2:
7c:07:f9:a6:d4:09:b2:59:9f:69:e6:e6:3c:75:37:61:ea:45:
98:7a:e1:27:5c:d8:ce:5d:2e:16:5b:b2:dd:cd:da:1e:8e:46:
d5:be:02:cb:81:0a:04:28:f0:2c:1d:12:72:ef:64:60:d4:98:
7a:a1:03:d6:ef:5b:ef:ac:fc:a9:34:2e:26:a6:53:8c:07:3c:
26:27:62:af:0a:cb:71:b9:2d:f1:d9:23:b8:74:e1:48:e8:0a:
17:06:a5:e8:f9:17:c6:4c:cc:8e:94:39:0f:10:e9:17:bf:16:
2f:75:a6:5c:ac:7b:fe:87:2c:34:0e:b4:7d:6a:a1:67:c3:8c:
c2:c1:b4:55:ba:09:d1:85:70:cf:97:93:b2:25:33:28:84:57:
f4:12:89:63:7d:ee:7c:71:c1:93:3c:cb:3a:f1:ed:91:f8:e5:
98:c4:75:9a:db:44:3f:24:25:c8:d5:92:f2:5e:0e:77:3f:98:
7c:07:a8:f3:ed:6a:9b:14:e6:67:c6:ed:b8:a0:33:bc:d7:82:
43:58:94:96:42:a5:f2:1d:43:67:b5:59:90:21:59:8c:73:a0:
30:cf:0c:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:26 2024 by rpki-client on console-ams.rpki-client.org