Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/6e5e6e-c466-4539-b704-f1797cab78d4/1/vtvBcDcbryQSgjQuCPOIqrp7RGk.roa
File: vtvBcDcbryQSgjQuCPOIqrp7RGk.roa (raw, json)
Hash identifier: aGdXeOI2hjqptMCtyv1ffMIBv72Y5LpVby7iJHjg9Y8=
Subject key identifier: BE:DB:C1:70:37:1B:AF:24:12:82:34:2E:08:F3:88:AA:BA:7B:44:69
Certificate issuer: /CN=335cd11fdbafb032534ae022abb4c8e369878a67
Certificate serial: 036288AB
Authority key identifier: 33:5C:D1:1F:DB:AF:B0:32:53:4A:E0:22:AB:B4:C8:E3:69:87:8A:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M1zRH9uvsDJTSuAiq7TI42mHimc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/6e5e6e-c466-4539-b704-f1797cab78d4/1/vtvBcDcbryQSgjQuCPOIqrp7RGk.roa
Signing time: Fri 10 Jun 2022 08:14:02 +0000
ROA not before: Fri 10 Jun 2022 08:14:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400377
IP address blocks: 95.214.24.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56789163 (0x36288ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=335cd11fdbafb032534ae022abb4c8e369878a67
Validity
Not Before: Jun 10 08:14:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bedbc170371baf241282342e08f388aaba7b4469
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:14:91:b3:ba:eb:ba:5c:3c:cb:55:96:51:29:
99:09:c6:ea:82:55:91:a2:4c:16:ed:cf:f0:c4:f0:
ba:56:a1:bb:15:30:49:12:ca:2a:cc:4f:64:54:c2:
09:86:e9:a2:52:59:43:0e:41:2e:a9:e2:9a:6a:34:
d4:22:86:6f:1a:eb:f1:a9:92:20:42:a8:f7:6c:af:
39:d7:b2:89:ca:eb:10:3f:05:04:e3:82:8f:28:dd:
e9:28:54:3a:39:17:83:42:67:36:e9:60:fa:70:ac:
83:a4:38:9b:29:f9:c5:35:92:13:98:0b:65:43:e9:
07:39:26:f0:3f:a5:b7:e1:73:34:f8:b9:04:cb:d8:
ed:22:20:c5:ff:ca:3f:05:4a:d0:6d:48:3b:3f:01:
7a:52:9c:38:6d:12:7d:ff:f5:7e:f3:31:8b:b0:a6:
2d:dd:d6:9c:1f:69:4e:22:81:03:d0:9e:c4:60:42:
f7:3e:d6:01:b9:10:b6:7a:72:8b:f3:2a:7b:cc:9e:
3c:4f:df:19:39:b9:49:16:b8:a3:0a:c9:33:cd:81:
e0:28:35:67:81:54:cf:8b:e1:61:3a:99:76:0c:f6:
d9:0a:bc:7a:f6:68:b7:10:5e:4f:c4:1c:19:8c:65:
72:4b:c1:93:b5:11:87:d8:7f:70:bc:12:87:2b:9e:
98:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:DB:C1:70:37:1B:AF:24:12:82:34:2E:08:F3:88:AA:BA:7B:44:69
X509v3 Authority Key Identifier:
keyid:33:5C:D1:1F:DB:AF:B0:32:53:4A:E0:22:AB:B4:C8:E3:69:87:8A:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M1zRH9uvsDJTSuAiq7TI42mHimc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/6e5e6e-c466-4539-b704-f1797cab78d4/1/vtvBcDcbryQSgjQuCPOIqrp7RGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/6e5e6e-c466-4539-b704-f1797cab78d4/1/M1zRH9uvsDJTSuAiq7TI42mHimc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.24.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:aa:8a:10:56:5b:ef:0d:81:54:4e:ff:19:7d:06:76:ac:79:
9c:a6:7a:7a:90:52:28:ee:a0:45:51:3f:74:ef:f9:1c:75:be:
66:31:ce:ad:2a:9e:3f:c7:84:c8:f2:40:d4:1c:64:1f:f5:05:
e2:21:eb:fe:8c:0e:1b:25:6e:0a:b0:78:c5:f3:42:90:1e:93:
17:21:3d:42:7f:57:ee:1c:23:dc:6c:bf:ce:80:5a:6b:8a:c5:
b8:37:91:80:3c:dc:0c:56:7a:66:2a:a6:6f:7b:7b:94:4a:a0:
e5:43:78:5f:28:ed:7e:74:e4:63:b6:dc:98:43:fb:a6:b5:a0:
53:c2:70:25:0e:d5:ed:38:35:b9:72:db:89:39:80:35:ad:c3:
72:a8:a4:89:4a:18:8e:47:a4:dd:a0:75:2a:d3:74:68:34:81:
ca:d6:23:19:c5:e1:3b:e9:28:9b:2c:85:1d:89:48:9b:24:c0:
9e:26:d9:4b:54:ee:50:42:45:34:ec:c3:6b:7a:4e:5e:33:8e:
a7:66:05:31:3e:87:8d:7d:90:e0:b1:12:85:9d:f3:af:9e:3c:
93:1c:be:e2:00:1d:13:59:42:2a:0e:ed:ac:a1:4c:b6:16:b1:
51:ac:d6:b4:a6:5a:d1:d8:bd:80:2d:27:63:7b:33:63:c5:74:
62:f8:c2:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:54 2023 by rpki-client on console-fra.rpki-client.org