Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0fc7f7-1851-4e34-8e5e-cd902421219f/1/np8SC_j0BOJH4zTXtqTM5gP2XwU.roa
File: np8SC_j0BOJH4zTXtqTM5gP2XwU.roa (raw, json)
Hash identifier: jBlXz8LtLDVLY+JtlOUXC9mxLPXdNOLY15hWajIDJPE=
Subject key identifier: 9E:9F:12:0B:F8:F4:04:E2:47:E3:34:D7:B6:A4:CC:E6:03:F6:5F:05
Certificate issuer: /CN=16f45ddbfcd0a1b4c779215727b297a83dd941d0
Certificate serial: 01856ED4D529F25ED323D88697105050721C
Authority key identifier: 16:F4:5D:DB:FC:D0:A1:B4:C7:79:21:57:27:B2:97:A8:3D:D9:41:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FvRd2_zQobTHeSFXJ7KXqD3ZQdA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0fc7f7-1851-4e34-8e5e-cd902421219f/1/np8SC_j0BOJH4zTXtqTM5gP2XwU.roa
Signing time: Sun 01 Jan 2023 19:35:19 +0000
ROA not before: Sun 01 Jan 2023 19:35:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21409
IP address blocks: 185.10.99.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:d5:29:f2:5e:d3:23:d8:86:97:10:50:50:72:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16f45ddbfcd0a1b4c779215727b297a83dd941d0
Validity
Not Before: Jan 1 19:35:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e9f120bf8f404e247e334d7b6a4cce603f65f05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ea:64:bd:7c:9b:e0:7a:af:47:6e:f2:2d:94:
6c:2c:97:c3:e8:da:d7:ea:53:5e:14:15:aa:86:ed:
7e:f7:6c:11:f3:f2:49:09:07:75:3b:a6:44:c0:2b:
a0:d2:40:76:ec:a6:81:53:21:8a:c7:e6:7c:bc:ca:
28:d2:bc:09:82:22:2e:bf:e4:97:fb:08:3b:b8:e6:
3e:dc:62:de:14:a9:2a:07:a7:9f:7d:94:32:05:23:
14:64:a3:e2:31:b4:ca:99:08:e9:10:83:ca:c2:25:
58:0e:0b:3a:24:b4:20:de:97:f1:1c:ed:c7:7c:55:
a9:af:07:08:a0:a0:2c:06:6a:d0:d5:1e:ea:3a:da:
cd:fc:78:1e:c1:9a:81:76:ff:ef:ac:f4:c2:40:15:
59:8f:23:e2:0e:b8:08:61:e1:e4:62:9e:9b:01:9b:
8d:ad:38:47:59:11:86:46:c8:cc:95:7f:ea:a6:b8:
3b:ef:c8:80:18:b9:29:ee:1a:af:a8:67:cf:a2:a8:
85:8a:5d:0c:09:f2:c8:99:1a:b8:ee:e4:06:fb:d0:
26:50:55:b1:46:25:af:b0:e3:72:70:e0:8d:73:a8:
02:e5:8b:b5:21:24:f9:d2:92:c1:7a:0f:b8:43:1c:
97:47:e6:c6:cb:32:85:29:47:99:f4:1d:4c:13:0f:
69:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:9F:12:0B:F8:F4:04:E2:47:E3:34:D7:B6:A4:CC:E6:03:F6:5F:05
X509v3 Authority Key Identifier:
keyid:16:F4:5D:DB:FC:D0:A1:B4:C7:79:21:57:27:B2:97:A8:3D:D9:41:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FvRd2_zQobTHeSFXJ7KXqD3ZQdA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0fc7f7-1851-4e34-8e5e-cd902421219f/1/np8SC_j0BOJH4zTXtqTM5gP2XwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0fc7f7-1851-4e34-8e5e-cd902421219f/1/FvRd2_zQobTHeSFXJ7KXqD3ZQdA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.10.99.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:ad:a1:44:69:43:f7:50:24:54:56:b6:d6:f5:2d:a5:e3:e1:
c7:91:1a:4c:e3:70:62:c0:e1:10:ea:23:68:c9:3f:81:90:b1:
2f:00:5e:7b:e6:7f:7c:c7:dd:25:cb:0b:85:f7:90:fd:af:8e:
ea:50:c8:ad:0c:24:47:5b:a5:06:b0:d1:4e:60:c6:e9:17:b1:
4a:4d:2c:0a:b4:a4:0d:11:ee:4e:0e:4d:76:10:6a:54:f3:63:
53:af:6b:e9:8f:38:ec:0b:dd:45:4a:88:a3:98:57:8e:d2:ee:
57:cb:60:a0:b2:5c:8e:16:18:62:d2:af:24:75:46:fe:1b:08:
55:f6:5f:82:d0:a1:71:7d:d9:e1:2f:28:7d:5a:8e:22:af:63:
8c:c5:3c:90:c4:59:31:e4:9d:da:12:51:9e:6e:ab:97:07:90:
71:48:e3:6b:2f:08:1c:2e:2a:2d:d6:b3:8a:63:69:a9:ef:36:
7f:4a:01:4e:45:f5:a3:16:ee:fc:ac:b3:c6:b0:dd:99:5f:21:
7f:d1:7d:40:fe:2e:42:9a:39:9c:9b:df:5d:fa:70:54:1e:3a:
75:3e:9e:7f:c3:50:3b:a9:e5:a9:5e:a1:ec:f2:c8:23:48:65:
2a:35:ee:54:3b:9c:1b:ec:ac:39:46:a6:13:1f:4b:86:6d:61:
9e:3b:25:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:48 2024 by rpki-client on console-ams.rpki-client.org