Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e96f84-d7e2-483a-bf12-804922255ff9/1/KJHFJK96PVhfzacysmmcHIKtxXM.roa
File: KJHFJK96PVhfzacysmmcHIKtxXM.roa (raw, json)
Hash identifier: EWK7KcfjbJ0hk5Be0s2FuZGDS+L9t9RiWPPx2zI4Nno=
Subject key identifier: 28:91:C5:24:AF:7A:3D:58:5F:CD:A7:32:B2:69:9C:1C:82:AD:C5:73
Certificate issuer: /CN=f5bb189be4c73d21ab956f760baa33e09712d2f4
Certificate serial: 01856F26BF0192B1C34E1DD502697C842C79
Authority key identifier: F5:BB:18:9B:E4:C7:3D:21:AB:95:6F:76:0B:AA:33:E0:97:12:D2:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9bsYm-THPSGrlW92C6oz4JcS0vQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e96f84-d7e2-483a-bf12-804922255ff9/1/KJHFJK96PVhfzacysmmcHIKtxXM.roa
Signing time: Sun 01 Jan 2023 21:04:48 +0000
ROA not before: Sun 01 Jan 2023 21:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58061
IP address blocks: 195.96.136.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:bf:01:92:b1:c3:4e:1d:d5:02:69:7c:84:2c:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5bb189be4c73d21ab956f760baa33e09712d2f4
Validity
Not Before: Jan 1 21:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2891c524af7a3d585fcda732b2699c1c82adc573
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:43:d5:35:1b:3b:af:dc:97:74:48:51:24:33:
4f:5b:c5:82:b4:3e:28:a5:11:5b:17:44:3e:27:ab:
0b:00:e0:2b:3c:a2:d2:bc:d5:6b:3d:81:11:31:58:
53:9e:2d:fd:28:3b:6f:24:80:f6:69:74:04:b8:e8:
8b:f2:d2:3f:92:fb:bb:d4:c8:80:c6:9e:27:7a:c4:
24:5c:90:01:d7:0d:07:f3:05:e6:40:bb:21:c2:3b:
af:6c:4e:22:50:a6:ef:c2:fc:9f:19:4e:cf:c9:30:
3c:8b:53:52:94:cc:de:d6:ba:47:44:0d:56:30:ff:
17:c8:81:a7:47:ed:15:79:e9:da:f1:91:2d:8f:1c:
d1:38:02:8d:85:f6:00:a5:1d:bc:63:4c:a4:16:84:
c4:48:04:55:d7:b4:ac:ac:ce:a9:7a:c2:03:90:92:
9a:4c:05:56:1c:40:2a:f2:cc:9f:3f:1b:46:5f:8b:
f6:e1:0a:86:d7:c9:12:1b:6c:66:9e:19:11:df:2c:
55:70:d3:cb:81:a3:28:93:48:44:a4:77:02:da:05:
6e:5b:96:22:60:ca:d6:79:ee:e0:69:f1:cf:2d:90:
d7:58:3b:e0:b8:bd:09:f8:03:93:6b:7d:2c:00:3a:
53:9e:68:63:65:b7:00:f4:73:ec:b3:81:07:d1:71:
2f:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:91:C5:24:AF:7A:3D:58:5F:CD:A7:32:B2:69:9C:1C:82:AD:C5:73
X509v3 Authority Key Identifier:
keyid:F5:BB:18:9B:E4:C7:3D:21:AB:95:6F:76:0B:AA:33:E0:97:12:D2:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9bsYm-THPSGrlW92C6oz4JcS0vQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e96f84-d7e2-483a-bf12-804922255ff9/1/KJHFJK96PVhfzacysmmcHIKtxXM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e96f84-d7e2-483a-bf12-804922255ff9/1/9bsYm-THPSGrlW92C6oz4JcS0vQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.136.0/24
Signature Algorithm: sha256WithRSAEncryption
31:09:71:fd:9d:3f:f8:2e:73:12:f4:fb:31:b8:06:2c:53:9a:
55:d9:bc:99:50:36:39:b1:2b:a4:bd:45:04:40:24:85:4e:ba:
ab:c2:20:3b:90:a1:eb:4d:ee:96:b4:de:5c:91:de:42:86:26:
b1:fa:f3:21:c8:de:2c:76:7f:7b:90:1a:eb:1e:02:8a:d3:55:
22:40:63:9b:91:76:19:4f:a1:50:6c:f2:23:4c:51:d4:ec:bb:
e8:60:f0:6a:e0:eb:df:01:19:c8:21:af:d4:62:22:45:86:d4:
97:2e:a9:75:c1:ae:8d:91:19:6b:a3:88:0d:02:25:38:55:f9:
b4:fa:9c:97:30:12:c1:d5:43:3d:93:9e:1e:b5:02:58:f8:ec:
a9:0f:f2:94:00:bb:f9:98:82:7b:e6:dc:03:f1:91:4b:89:02:
7f:dd:be:d6:ae:ce:19:9b:94:58:fc:7e:b3:6c:f0:5a:24:91:
20:8c:38:33:ba:3c:c2:ad:5f:22:f0:2b:7d:cf:db:95:d3:d8:
93:43:93:d3:e8:1a:14:aa:11:5b:19:8d:de:cf:ac:08:98:00:
54:66:42:7f:bf:16:17:d8:9e:6b:14:2a:79:fb:15:c9:14:fd:
dc:6a:9b:26:d3:9c:e2:67:1d:0e:cd:7a:83:a2:bf:d3:8b:44:
31:2e:0d:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 3 11:00:54 2023 by rpki-client on console-fra.rpki-client.org