Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/9cae3a-08ba-466a-9a9a-c730c4916879/1/oPMAwEQF3Ih4W6p6k1yztsCX6HU.roa
File: oPMAwEQF3Ih4W6p6k1yztsCX6HU.roa (raw, json)
Hash identifier: gYO5c4QXCIlKnGYMIA5CLqYyhopA2WATdtSZ5mwDFQU=
Subject key identifier: A0:F3:00:C0:44:05:DC:88:78:5B:AA:7A:93:5C:B3:B6:C0:97:E8:75
Certificate issuer: /CN=b4b58721100907bf34f0d93fa54973fd2f4df707
Certificate serial: 1AA85B15
Authority key identifier: B4:B5:87:21:10:09:07:BF:34:F0:D9:3F:A5:49:73:FD:2F:4D:F7:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tLWHIRAJB7808Nk_pUlz_S9N9wc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/9cae3a-08ba-466a-9a9a-c730c4916879/1/oPMAwEQF3Ih4W6p6k1yztsCX6HU.roa
Signing time: Sat 01 Jan 2022 15:01:48 +0000
ROA not before: Sat 01 Jan 2022 15:01:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62453
IP address blocks: 94.103.48.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 447240981 (0x1aa85b15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4b58721100907bf34f0d93fa54973fd2f4df707
Validity
Not Before: Jan 1 15:01:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a0f300c04405dc88785baa7a935cb3b6c097e875
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b4:16:5d:bf:75:5e:75:18:98:ce:0f:f8:dc:
d3:34:2c:79:2f:25:19:cf:32:e7:cc:02:1d:71:9f:
bb:63:1f:40:a0:91:56:55:fc:e7:68:7d:eb:49:1f:
f3:42:17:e5:81:28:0f:36:72:8b:13:ab:b9:9b:0f:
8b:cd:a7:1c:fa:79:b9:29:d9:db:39:04:db:c2:34:
3c:2f:d0:e0:e6:a1:43:db:51:fe:cf:fa:6a:25:7f:
e7:42:32:ae:24:d4:dc:c3:0f:3f:b4:77:98:f0:27:
f1:cb:b1:87:ab:e7:9f:78:ca:ad:ca:84:e6:46:51:
6a:5c:3d:27:ac:b0:35:c8:2f:b2:94:fb:4d:b2:c1:
66:d3:5d:f0:7e:9a:4e:6e:0f:1e:33:b0:b0:08:73:
e4:68:cb:2e:c3:4f:fa:38:d2:68:bf:d6:2f:80:7c:
10:60:95:35:cb:04:10:a0:cb:59:65:b5:aa:57:b4:
81:d0:d4:eb:36:68:04:28:b3:a9:c2:5a:d6:9f:5c:
5e:47:24:6f:79:55:f7:9d:26:5d:27:78:7c:a4:61:
65:34:44:68:51:bd:a7:b2:f3:07:86:d6:6c:94:0f:
e1:95:07:6d:ce:8d:15:fe:70:f6:83:73:d6:dc:37:
bc:97:86:d3:80:5c:50:49:7e:46:75:30:83:5b:46:
b8:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:F3:00:C0:44:05:DC:88:78:5B:AA:7A:93:5C:B3:B6:C0:97:E8:75
X509v3 Authority Key Identifier:
keyid:B4:B5:87:21:10:09:07:BF:34:F0:D9:3F:A5:49:73:FD:2F:4D:F7:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tLWHIRAJB7808Nk_pUlz_S9N9wc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/9cae3a-08ba-466a-9a9a-c730c4916879/1/oPMAwEQF3Ih4W6p6k1yztsCX6HU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/9cae3a-08ba-466a-9a9a-c730c4916879/1/tLWHIRAJB7808Nk_pUlz_S9N9wc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.103.48.0/20
Signature Algorithm: sha256WithRSAEncryption
b9:a6:05:a1:a7:f2:29:34:5c:fc:68:5d:2e:c3:53:26:53:8a:
2d:a5:e1:26:c4:52:27:4d:38:7e:3b:d7:34:0e:6e:9e:24:af:
b2:45:e8:0f:31:f6:fd:58:3e:bb:e9:5c:87:8f:3b:45:f8:bb:
de:50:52:30:af:ba:b4:9a:24:47:9d:ac:0b:f2:1f:24:af:98:
2f:14:28:2b:56:db:69:d3:db:96:cc:b8:f4:6a:ec:bd:be:4d:
3d:f2:3e:5a:dc:5d:af:93:91:77:79:da:4f:a8:97:47:60:45:
74:f8:4b:58:0d:9f:06:88:ba:ae:0d:47:a1:1d:71:73:0f:5d:
5f:2c:95:8c:14:ce:e2:e5:77:32:09:4c:33:25:94:1e:61:ef:
a3:80:0f:e5:39:27:bc:b3:7b:b6:14:0b:2e:80:42:88:96:7e:
6e:09:49:ff:df:52:14:11:5a:f5:2c:3b:ae:45:57:8f:9a:24:
3c:e1:69:4c:ec:13:aa:15:05:9c:e2:fa:89:8f:54:28:25:84:
07:26:48:45:5c:54:2c:b9:b9:98:64:14:ad:ec:c6:9c:c7:01:
ac:d4:5f:08:00:26:99:c3:d6:a7:69:34:ec:a2:f9:19:a3:f1:
24:7d:69:32:56:57:03:77:72:66:1c:50:23:7a:10:f9:a2:1f:
47:ba:2d:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:43 2023 by rpki-client on console-fra.rpki-client.org