Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/72186e-17a3-46d1-a294-d5a78fc59d12/1/dYtB4X-9yz1Scp5eEk6JkcVXtLQ.roa
File: dYtB4X-9yz1Scp5eEk6JkcVXtLQ.roa (raw, json)
Hash identifier: RaxCie5KuhzWmVd19CRzkUI02hmKtis9u2At58y4+Os=
Subject key identifier: 75:8B:41:E1:7F:BD:CB:3D:52:72:9E:5E:12:4E:89:91:C5:57:B4:B4
Certificate issuer: /CN=1036a63e717ab58cef66ac62b2067480696cfe9e
Certificate serial: 0185729ED9E8FB9FF7DE3741FC468A0D4724
Authority key identifier: 10:36:A6:3E:71:7A:B5:8C:EF:66:AC:62:B2:06:74:80:69:6C:FE:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EDamPnF6tYzvZqxisgZ0gGls_p4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/72186e-17a3-46d1-a294-d5a78fc59d12/1/dYtB4X-9yz1Scp5eEk6JkcVXtLQ.roa
Signing time: Mon 02 Jan 2023 13:14:51 +0000
ROA not before: Mon 02 Jan 2023 13:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 956
IP address blocks: 195.88.212.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:9e:d9:e8:fb:9f:f7:de:37:41:fc:46:8a:0d:47:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1036a63e717ab58cef66ac62b2067480696cfe9e
Validity
Not Before: Jan 2 13:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=758b41e17fbdcb3d52729e5e124e8991c557b4b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:6d:4c:2b:14:6c:f8:a5:91:40:9e:5e:c7:52:
05:24:03:d0:e4:40:48:a5:11:67:11:dc:68:0e:b6:
ce:8e:f9:e6:d5:ce:e5:1e:32:74:e8:cd:d5:12:ac:
44:b6:cd:5f:eb:37:d9:c9:96:53:a6:bf:e6:5f:54:
90:26:16:78:6d:95:14:5c:19:2c:ae:26:5c:90:dc:
af:cd:0a:d4:3e:71:9a:c9:50:10:6e:ec:61:55:ff:
e2:0b:9d:00:98:1b:b8:44:69:37:83:c6:40:6f:79:
c3:02:6a:73:b2:3a:9e:58:b6:7d:1b:6d:f6:9d:8a:
b2:f5:6e:ba:3b:a2:4d:f1:89:6a:62:d0:fa:8e:74:
a6:57:98:53:72:e6:bd:b9:97:37:07:b3:40:0e:8d:
fd:de:02:e4:7e:0d:f6:05:3e:13:85:62:25:3a:43:
8f:54:7b:25:6e:5b:e2:ee:f7:d0:80:bf:96:0e:02:
42:30:72:1a:5e:45:e9:d3:63:de:ff:20:1c:7d:26:
09:5c:9c:d7:04:2f:ed:16:77:20:a3:85:ad:28:57:
e5:84:5c:7e:3f:4e:3b:e4:55:95:fa:75:63:de:e1:
6d:b0:45:bf:0e:cb:f0:06:8e:c0:7c:54:a2:71:c0:
a0:01:23:09:4a:31:f5:a1:99:c8:80:d9:b1:7e:ae:
53:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:8B:41:E1:7F:BD:CB:3D:52:72:9E:5E:12:4E:89:91:C5:57:B4:B4
X509v3 Authority Key Identifier:
keyid:10:36:A6:3E:71:7A:B5:8C:EF:66:AC:62:B2:06:74:80:69:6C:FE:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EDamPnF6tYzvZqxisgZ0gGls_p4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/72186e-17a3-46d1-a294-d5a78fc59d12/1/dYtB4X-9yz1Scp5eEk6JkcVXtLQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/72186e-17a3-46d1-a294-d5a78fc59d12/1/EDamPnF6tYzvZqxisgZ0gGls_p4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.88.212.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:10:0b:29:6d:d5:9f:2c:7d:60:9c:2e:b9:84:0c:66:f3:42:
c4:69:a5:61:44:7c:fd:ca:1e:52:51:30:54:c5:09:8e:d5:78:
ef:53:f2:53:84:2a:ad:7f:7b:d7:e4:dc:0c:7a:1c:95:9e:04:
75:ca:0b:c1:3c:9e:2b:c4:7d:1f:bd:78:9e:f6:31:15:fd:18:
7e:a8:10:b6:ca:16:5e:78:33:b5:4f:16:ba:4c:1e:d0:4b:e5:
90:6c:eb:01:76:e2:ce:57:ee:f2:7c:25:b4:05:2b:1a:d0:9f:
79:e4:65:c9:66:46:00:76:37:c1:2d:79:16:e2:1c:ab:c8:ef:
e7:b6:ce:b4:ea:84:a9:b8:74:aa:b4:49:3f:a5:f1:fb:7d:01:
5e:ca:82:17:4b:eb:5d:36:56:b4:b0:3a:fc:d6:04:c0:19:57:
bd:db:8e:f2:5f:f8:66:cb:30:7d:33:6b:8c:17:4b:65:27:db:
83:93:6b:e7:d5:42:00:9e:9c:c2:95:d6:49:e4:02:04:16:80:
c3:fa:ba:3d:4d:c5:61:5d:2f:83:60:31:a7:01:c0:d3:af:36:
df:f7:b8:b7:9f:96:26:8d:96:88:e4:6f:a2:39:91:59:fa:1b:
a6:de:15:ae:43:96:bd:63:c7:e1:89:a8:87:26:c7:5f:d5:c0:
49:a6:d6:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:12 2024 by rpki-client on console-ams.rpki-client.org