Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/b31983-687a-4133-8985-7f2b242ebdc3/1/NlZEXa4rEZzq5Zj6URmF2r3lUUg.roa
File: NlZEXa4rEZzq5Zj6URmF2r3lUUg.roa (raw, json)
Hash identifier: qR7g1vCe2nepRGKHFLcHXpijOrGMI9/BQ5RlNZ90hKY=
Subject key identifier: 36:56:44:5D:AE:2B:11:9C:EA:E5:98:FA:51:19:85:DA:BD:E5:51:48
Certificate issuer: /CN=856356462b6fa07f39ce2083ce457d6541890e48
Certificate serial: 018A4B718169D24FA2090ACC9110C9DED3F2
Authority key identifier: 85:63:56:46:2B:6F:A0:7F:39:CE:20:83:CE:45:7D:65:41:89:0E:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWNWRitvoH85ziCDzkV9ZUGJDkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/b31983-687a-4133-8985-7f2b242ebdc3/1/NlZEXa4rEZzq5Zj6URmF2r3lUUg.roa
Signing time: Thu 31 Aug 2023 11:54:04 +0000
ROA not before: Thu 31 Aug 2023 11:54:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 176.126.99.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4b:71:81:69:d2:4f:a2:09:0a:cc:91:10:c9:de:d3:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=856356462b6fa07f39ce2083ce457d6541890e48
Validity
Not Before: Aug 31 11:54:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3656445dae2b119ceae598fa511985dabde55148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:50:aa:c7:c1:99:05:1b:70:ab:cb:0a:e8:51:
67:a4:a7:75:57:ff:40:24:24:2c:d5:02:9b:8f:89:
38:33:3b:ed:f2:48:ef:34:80:b6:d3:1c:46:73:fb:
e4:65:64:86:5f:e1:c4:a8:96:34:08:97:f7:96:f4:
bf:b0:e3:8b:c4:88:e9:d2:17:be:ba:a5:b7:6b:38:
d3:b7:1a:d0:90:ee:19:1e:18:78:a1:ac:8f:a6:e7:
07:3f:71:b6:3e:73:2c:e6:a5:a7:2c:e9:75:95:1c:
33:7e:00:05:59:bb:83:5b:0e:79:58:01:9e:08:18:
9e:02:55:50:a3:8c:08:18:22:84:e6:1a:48:1b:1c:
c4:a3:a8:14:fe:9e:64:c1:b1:37:ce:40:a5:4c:8d:
23:7f:dd:5c:05:b7:30:de:44:11:a5:e8:b8:09:0a:
61:ce:53:70:d7:d3:54:19:6a:30:3a:1c:6a:5d:93:
b4:19:7b:47:b9:df:22:88:76:cb:ce:ac:17:a1:d4:
30:f3:8d:45:64:3a:55:5a:2a:5d:b0:d2:f7:bb:e9:
14:d5:5d:91:70:87:bb:5a:ab:8e:ed:59:d0:83:48:
fa:50:86:eb:a6:7e:4f:34:bf:79:a7:6c:b9:07:ea:
a8:35:a6:52:57:5b:8e:9b:b8:75:2d:6b:64:5d:64:
3a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:56:44:5D:AE:2B:11:9C:EA:E5:98:FA:51:19:85:DA:BD:E5:51:48
X509v3 Authority Key Identifier:
keyid:85:63:56:46:2B:6F:A0:7F:39:CE:20:83:CE:45:7D:65:41:89:0E:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWNWRitvoH85ziCDzkV9ZUGJDkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/b31983-687a-4133-8985-7f2b242ebdc3/1/NlZEXa4rEZzq5Zj6URmF2r3lUUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/b31983-687a-4133-8985-7f2b242ebdc3/1/hWNWRitvoH85ziCDzkV9ZUGJDkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.126.99.0/24
Signature Algorithm: sha256WithRSAEncryption
df:ae:90:2b:54:e7:5a:ae:9b:8c:1a:2b:69:56:25:ee:7d:52:
31:98:87:05:a6:10:51:50:53:c7:59:d6:46:bf:77:99:89:ce:
8e:42:10:a6:7c:ed:64:31:7a:2e:f4:14:91:32:8e:16:d9:9a:
84:f9:35:9b:aa:65:fd:be:c0:f5:59:3e:27:6e:76:8f:a1:ec:
f9:06:7f:f3:52:db:aa:a5:23:a2:55:80:f2:64:8d:6d:85:e4:
0d:ba:c2:2b:80:7b:88:04:8e:df:93:11:88:e6:4f:33:ce:fd:
e5:3a:06:b2:60:a6:8d:ce:ef:a7:41:7d:86:97:6b:d5:da:fa:
74:07:92:6e:93:67:5f:ca:44:71:db:36:f9:b7:87:ff:88:83:
5a:19:9b:a9:57:18:c0:3d:b1:5a:c8:08:e1:2a:94:63:27:ec:
06:5f:05:a0:67:97:76:80:2d:ff:20:7f:1a:ed:9d:80:bc:32:
5a:8c:db:ec:91:2f:c7:e6:a5:0c:60:e0:59:44:89:6d:ba:0f:
fb:dd:08:12:7c:e0:16:5f:da:ed:f7:63:9b:4d:9d:55:16:93:
7f:bf:0a:17:ee:5f:d5:83:5d:23:0f:5b:ad:fe:95:32:ff:98:
8f:f0:18:b9:0c:3f:f1:30:ea:3c:34:a6:bb:1d:15:56:8c:e5:
b5:bf:0a:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:43 2024 by rpki-client on console-fra.rpki-client.org