Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d11fff-d357-45c4-b806-6e907c378e47/1/LbyNR9ON60ad3JaPIleW4rD4ZDo.roa
File: LbyNR9ON60ad3JaPIleW4rD4ZDo.roa (raw, json)
Hash identifier: YHRwTlWZ967moi2yO4991QBMk8ktf8V+FLFw7yKMH0U=
Subject key identifier: 2D:BC:8D:47:D3:8D:EB:46:9D:DC:96:8F:22:57:96:E2:B0:F8:64:3A
Certificate issuer: /CN=b4ad9f4a6635e3a0475b81b4c066e35208924780
Certificate serial: 018606B89F1930EC65DACFB596515BEA66B7
Authority key identifier: B4:AD:9F:4A:66:35:E3:A0:47:5B:81:B4:C0:66:E3:52:08:92:47:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tK2fSmY146BHW4G0wGbjUgiSR4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d11fff-d357-45c4-b806-6e907c378e47/1/LbyNR9ON60ad3JaPIleW4rD4ZDo.roa
Signing time: Tue 31 Jan 2023 07:26:47 +0000
ROA not before: Tue 31 Jan 2023 07:26:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 31.222.238.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:06:b8:9f:19:30:ec:65:da:cf:b5:96:51:5b:ea:66:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4ad9f4a6635e3a0475b81b4c066e35208924780
Validity
Not Before: Jan 31 07:26:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2dbc8d47d38deb469ddc968f225796e2b0f8643a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a4:7f:c3:35:32:2d:58:2a:a7:46:1b:87:84:
c2:8c:44:61:07:c1:61:56:5c:75:0b:ca:7d:b2:2a:
64:c4:24:6f:a4:dd:16:98:0b:c3:c0:f5:fb:35:17:
42:e5:43:9e:1b:58:62:a1:0b:1c:db:96:dd:d1:25:
c1:4b:fb:33:bd:e7:fe:50:53:fc:78:45:e0:9a:8b:
a2:fe:21:e9:f4:f4:08:47:31:e0:2a:e6:ac:1d:da:
20:01:db:d8:81:2e:25:e5:70:a5:34:9a:0a:71:a4:
e5:c3:17:d6:31:7c:5e:63:4a:43:63:68:72:ff:7e:
84:fc:d6:ed:12:bd:28:15:91:09:6f:7a:91:e0:66:
c1:a4:57:11:e1:63:17:aa:b0:ef:75:0c:79:bd:b1:
ff:05:8b:bc:4a:3f:cc:30:1c:56:49:90:f1:43:b7:
3f:e2:17:97:5a:8f:3e:5b:2d:ff:31:15:dd:94:46:
45:8d:d4:62:4e:a6:fb:07:db:75:5a:12:8a:26:5d:
9d:94:fd:4b:9b:5d:95:37:a5:47:07:2d:b1:20:f3:
19:ce:69:1c:54:51:25:30:44:0c:d1:47:bd:be:1a:
55:16:a4:f9:f3:ed:b6:07:b1:68:6b:ab:03:84:f0:
2d:f0:0e:e3:4b:e9:56:f7:82:5a:55:83:d5:9b:26:
fd:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:BC:8D:47:D3:8D:EB:46:9D:DC:96:8F:22:57:96:E2:B0:F8:64:3A
X509v3 Authority Key Identifier:
keyid:B4:AD:9F:4A:66:35:E3:A0:47:5B:81:B4:C0:66:E3:52:08:92:47:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tK2fSmY146BHW4G0wGbjUgiSR4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d11fff-d357-45c4-b806-6e907c378e47/1/LbyNR9ON60ad3JaPIleW4rD4ZDo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d11fff-d357-45c4-b806-6e907c378e47/1/tK2fSmY146BHW4G0wGbjUgiSR4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.238.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:3e:ca:37:c7:14:aa:1a:61:25:56:90:14:40:de:99:f6:8d:
96:37:0f:5e:9a:12:20:a3:d6:ad:13:53:88:2d:2c:75:ad:96:
5e:83:b7:11:79:af:90:c9:b5:9b:eb:e3:8b:0d:8c:84:06:03:
53:35:47:ed:18:92:52:4b:0f:29:55:73:f5:6c:40:23:cd:0e:
11:a1:1f:2c:b1:77:cf:0a:dd:86:d4:14:5a:b4:bf:b8:bb:1d:
6c:b6:e2:e0:cf:26:47:68:be:9f:21:be:fb:7d:f3:e4:ff:33:
f3:45:80:b7:40:2e:cd:ab:7f:61:9b:22:b6:8e:68:d6:6b:d4:
46:c5:35:1e:46:8f:d6:66:23:5d:38:77:32:55:17:cb:7d:61:
0a:61:72:92:5a:b5:d9:01:74:05:8f:95:f6:ac:9c:55:ef:13:
5e:06:4a:d9:41:52:2a:e6:0e:80:0e:7a:e5:c5:22:13:de:37:
7d:cb:34:f6:78:e4:63:b0:96:d6:ca:4b:fe:5e:81:f3:aa:d9:
f2:2c:e5:37:89:42:e8:2c:8f:a4:da:78:6a:a7:e9:e8:6c:ae:
71:e0:fe:dd:cf:5f:70:d8:27:3a:02:d9:f5:18:c0:58:65:16:
23:bf:a9:fb:a1:2a:bd:ce:71:40:e0:8f:07:b9:c0:a1:89:61:
98:aa:de:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 15 14:47:55 2023 by rpki-client on console-ams.rpki-client.org