Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/8f5ef0-9a25-4946-aa71-0d3392a9eb93/1/djid_YrSIN6VZKsfm7ou199hG5M.roa
File: djid_YrSIN6VZKsfm7ou199hG5M.roa (raw, json)
Hash identifier: lwSOXzmx9LCoa1GWlHRU7XsnxhcAA9tarUDrm5egC0k=
Subject key identifier: 76:38:9D:FD:8A:D2:20:DE:95:64:AB:1F:9B:BA:2E:D7:DF:61:1B:93
Certificate issuer: /CN=1196f87d5decfcbf04450b5fcf65b5b345f22464
Certificate serial: 018571150CE41FED6DC96F3B769BC3DFE6BD
Authority key identifier: 11:96:F8:7D:5D:EC:FC:BF:04:45:0B:5F:CF:65:B5:B3:45:F2:24:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EZb4fV3s_L8ERQtfz2W1s0XyJGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/8f5ef0-9a25-4946-aa71-0d3392a9eb93/1/djid_YrSIN6VZKsfm7ou199hG5M.roa
Signing time: Mon 02 Jan 2023 06:04:42 +0000
ROA not before: Mon 02 Jan 2023 06:04:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209431
IP address blocks: 139.28.100.0/22 maxlen: 24
2a09:540::/29 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:15:0c:e4:1f:ed:6d:c9:6f:3b:76:9b:c3:df:e6:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1196f87d5decfcbf04450b5fcf65b5b345f22464
Validity
Not Before: Jan 2 06:04:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=76389dfd8ad220de9564ab1f9bba2ed7df611b93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d3:20:f6:a0:8b:08:e2:a1:04:12:d8:b7:f0:
50:a5:c5:79:b3:7a:0a:6f:d4:ce:4a:4d:54:67:2f:
4c:ea:50:dd:21:5c:44:28:f7:82:e5:29:4f:49:e2:
77:f6:e9:86:6e:b9:9d:2c:63:8e:9d:a4:a1:51:58:
c9:41:76:8c:06:57:37:a1:67:c4:f3:57:98:51:82:
ec:80:b4:c9:4b:be:a3:ab:8c:07:02:1c:09:19:36:
1b:4d:a6:54:74:3a:e9:9c:40:7a:72:f2:29:b9:cc:
32:e2:6a:ac:e1:d1:1a:2c:78:7b:4a:44:0d:b2:89:
a3:d7:fc:d7:79:c3:57:be:fc:6b:a2:1a:c4:f3:b5:
27:e4:a1:1d:21:18:49:c8:b8:41:9e:87:fe:40:fd:
13:e4:bd:ce:64:fc:60:a1:e2:bd:58:23:3a:fa:f8:
12:a2:13:5a:4f:4d:dc:79:16:11:4a:01:84:ae:ac:
14:8c:12:f2:bc:05:79:62:41:23:a6:34:0b:39:da:
85:48:72:0a:e2:49:15:a1:b1:e8:b9:eb:62:e7:65:
68:10:27:52:cf:6b:4b:ed:40:f0:c9:0b:7f:c3:9c:
d2:25:bf:a7:ee:e1:53:d0:61:8d:63:8b:0b:e2:99:
0b:d6:75:13:39:8a:c5:b0:20:45:d1:62:7e:26:0e:
d1:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:38:9D:FD:8A:D2:20:DE:95:64:AB:1F:9B:BA:2E:D7:DF:61:1B:93
X509v3 Authority Key Identifier:
keyid:11:96:F8:7D:5D:EC:FC:BF:04:45:0B:5F:CF:65:B5:B3:45:F2:24:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EZb4fV3s_L8ERQtfz2W1s0XyJGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/8f5ef0-9a25-4946-aa71-0d3392a9eb93/1/djid_YrSIN6VZKsfm7ou199hG5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/8f5ef0-9a25-4946-aa71-0d3392a9eb93/1/EZb4fV3s_L8ERQtfz2W1s0XyJGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.100.0/22
IPv6:
2a09:540::/29
Signature Algorithm: sha256WithRSAEncryption
8d:28:a0:c6:1c:97:b3:c7:4d:f6:7e:e0:79:b9:45:ee:75:37:
b6:e7:88:ee:34:7b:30:ba:e1:fd:ee:58:c2:6b:da:2b:a8:6c:
80:78:47:a0:22:6b:e9:cc:4f:97:d7:ac:5c:fe:ad:ea:86:b5:
bd:01:06:e8:4c:d9:3f:29:5a:77:84:06:e9:47:50:1e:87:89:
9f:f0:4c:5e:0d:37:79:b9:d2:00:c6:ae:09:c9:b1:fa:3d:28:
b4:81:e6:9f:9c:1d:85:bd:33:32:06:b7:23:fc:5e:3f:29:e0:
30:b4:42:7f:37:63:d2:a9:a9:84:ce:d0:74:7d:bb:04:f8:45:
eb:ea:62:4f:21:fe:a8:d9:9e:e8:f9:73:fe:26:c4:7a:38:6b:
cc:75:1d:16:fe:76:0e:cb:74:18:3c:36:2f:79:4b:ff:9e:b3:
e4:5f:c1:f3:c2:57:69:04:8f:90:b0:7b:27:2d:ab:09:59:42:
ce:3b:fc:15:64:22:23:7f:ec:ff:a4:71:0e:ea:11:66:e6:72:
9f:cc:2d:31:99:59:9e:51:25:fb:45:98:26:c1:66:f1:48:0b:
57:d7:da:82:dc:cf:08:0a:41:e1:93:46:eb:50:81:79:ce:df:
da:da:49:5e:11:61:f2:dd:32:9c:be:6e:07:7b:b2:d1:c7:d0:
0e:4a:26:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:51 2024 by rpki-client on console-fra.rpki-client.org