Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/8cec28-8a86-4f69-8f68-c532349a7757/1/n23J9giBctLgrWgyrmH54-B4DU4.roa
File: n23J9giBctLgrWgyrmH54-B4DU4.roa (raw, json)
Hash identifier: BwCs21lP5tayIh8ujx9yT0IU2dQZ2CtHNOk6iO/dTno=
Subject key identifier: 9F:6D:C9:F6:08:81:72:D2:E0:AD:68:32:AE:61:F9:E3:E0:78:0D:4E
Certificate issuer: /CN=ceac024ffd8df4918741f754c0db218ee7b2748d
Certificate serial: 01857139E806B8379A446DFE225DC7FD1C6C
Authority key identifier: CE:AC:02:4F:FD:8D:F4:91:87:41:F7:54:C0:DB:21:8E:E7:B2:74:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zqwCT_2N9JGHQfdUwNshjueydI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/8cec28-8a86-4f69-8f68-c532349a7757/1/n23J9giBctLgrWgyrmH54-B4DU4.roa
Signing time: Mon 02 Jan 2023 06:44:58 +0000
ROA not before: Mon 02 Jan 2023 06:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43201
IP address blocks: 195.60.236.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:e8:06:b8:37:9a:44:6d:fe:22:5d:c7:fd:1c:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ceac024ffd8df4918741f754c0db218ee7b2748d
Validity
Not Before: Jan 2 06:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f6dc9f6088172d2e0ad6832ae61f9e3e0780d4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:cd:0d:a7:01:1d:fc:dd:30:9f:57:4e:c9:1b:
7d:b9:72:1e:73:a7:40:bb:de:f9:e5:66:ee:b1:28:
23:94:58:66:4e:92:56:10:90:cc:f5:f3:38:c0:a2:
90:1a:0c:f0:d9:ec:c1:33:9b:0d:37:f4:5d:7d:a0:
e2:2c:07:c7:95:9c:fc:1c:4d:b4:3f:65:eb:31:e8:
fd:f1:00:3b:b5:55:8a:36:41:6d:4d:6e:7c:9b:98:
db:db:f2:79:3e:67:45:93:d7:c8:15:09:a9:2d:bd:
2e:c3:f6:33:9b:fe:d6:8d:c4:ec:e4:50:50:9a:03:
cb:09:fa:e1:0c:1e:56:cd:0a:f2:39:cc:d1:15:7f:
fe:38:32:59:fa:2d:4a:fe:66:83:57:a2:ee:e0:c8:
f7:85:8a:0d:6b:e1:64:86:c6:ba:34:95:5d:6c:7e:
07:25:80:2d:93:ec:84:56:7b:57:88:65:4e:b7:f2:
30:f5:3c:61:29:41:bf:de:65:d0:13:68:78:c7:83:
2a:e1:96:d3:df:38:7c:84:91:78:4d:e5:60:77:d3:
06:6c:d9:0b:be:26:c7:f6:a6:4f:e9:88:ed:25:eb:
eb:ac:a5:94:eb:47:0b:82:94:c2:fb:b9:8c:db:22:
27:b7:f8:7f:02:78:bd:12:99:3a:88:76:be:a1:04:
76:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:6D:C9:F6:08:81:72:D2:E0:AD:68:32:AE:61:F9:E3:E0:78:0D:4E
X509v3 Authority Key Identifier:
keyid:CE:AC:02:4F:FD:8D:F4:91:87:41:F7:54:C0:DB:21:8E:E7:B2:74:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zqwCT_2N9JGHQfdUwNshjueydI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/8cec28-8a86-4f69-8f68-c532349a7757/1/n23J9giBctLgrWgyrmH54-B4DU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/8cec28-8a86-4f69-8f68-c532349a7757/1/zqwCT_2N9JGHQfdUwNshjueydI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.60.236.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:31:2a:ef:96:3a:b7:b5:a4:15:2c:0e:b8:e7:31:4c:06:09:
76:3d:0e:e7:71:49:11:a4:7c:f2:4e:3b:18:d2:fd:e4:30:10:
ba:b1:5b:eb:45:0c:5f:83:5b:a4:06:da:0d:d6:c1:ec:8a:81:
fb:a5:7d:ca:b8:57:23:07:ba:6e:ae:7a:14:6c:e0:26:68:56:
0d:59:c9:5a:87:6c:19:eb:c2:4b:53:6a:fc:8e:17:97:3c:5d:
ca:4e:24:d0:56:66:d6:22:d7:32:6c:b6:b0:2d:3d:d9:cc:40:
82:ee:32:ea:72:2d:03:69:0d:90:28:99:60:2d:3a:92:47:03:
b9:bc:86:6b:11:c8:c8:8c:4c:fb:23:93:b6:e2:6d:a9:35:e8:
56:5b:bc:95:af:f3:c4:09:67:d5:d3:f0:70:ed:7f:3c:37:c3:
f8:ee:73:4b:77:9a:80:cc:d3:9a:92:23:f1:3b:9e:c2:64:39:
b1:e8:ce:c3:f7:fa:8d:d4:ad:d3:a8:cd:6d:3f:5c:ff:cc:01:
5a:ea:10:0b:c2:18:97:9b:7d:a2:32:e4:78:fb:ec:19:83:96:
3c:69:48:55:d9:b0:3e:56:46:f5:8b:0b:7b:f6:af:5a:dc:fb:
ac:7b:11:5c:7a:5e:bc:b2:f5:8b:75:ae:75:64:a3:a6:5e:52:
1e:71:92:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 25 09:54:09 2023 by rpki-client on console-fra.rpki-client.org