Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/2da576-e416-4f3b-a2fe-97646e3957e7/1/NF-NEHOkaMy4bOBMRFrlHA8RCpk.roa
File: NF-NEHOkaMy4bOBMRFrlHA8RCpk.roa (raw, json)
Hash identifier: RQwxfTCIHtlPJdvJXeFYKVJmVJokprM+D1qsFBeEAlY=
Subject key identifier: 34:5F:8D:10:73:A4:68:CC:B8:6C:E0:4C:44:5A:E5:1C:0F:11:0A:99
Certificate issuer: /CN=165f8763fb8f2e7fd2f3b93804484fab4efab9bd
Certificate serial: 018573F1AA498039867F65BC56DACDDD4BA7
Authority key identifier: 16:5F:87:63:FB:8F:2E:7F:D2:F3:B9:38:04:48:4F:AB:4E:FA:B9:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fl-HY_uPLn_S87k4BEhPq076ub0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/2da576-e416-4f3b-a2fe-97646e3957e7/1/NF-NEHOkaMy4bOBMRFrlHA8RCpk.roa
Signing time: Mon 02 Jan 2023 19:24:55 +0000
ROA not before: Mon 02 Jan 2023 19:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398464
IP address blocks: 195.64.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:f1:aa:49:80:39:86:7f:65:bc:56:da:cd:dd:4b:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=165f8763fb8f2e7fd2f3b93804484fab4efab9bd
Validity
Not Before: Jan 2 19:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=345f8d1073a468ccb86ce04c445ae51c0f110a99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:c2:64:26:5b:2c:ea:22:32:8c:f6:80:e5:df:
5e:6c:03:43:19:af:50:ac:20:40:89:f7:f0:dc:a1:
75:99:31:6f:57:8d:a6:28:e2:5a:9f:9b:9c:46:57:
7c:05:10:ce:f1:6c:d6:7c:b6:cf:69:c8:cf:f6:7e:
e8:f0:57:ba:3b:e8:f9:7b:8d:98:c6:84:5b:7d:4f:
30:24:34:56:a7:03:ff:ad:b5:41:c0:f6:9f:ba:42:
33:30:3a:76:34:0e:43:b5:74:ee:02:d0:2d:0a:15:
2c:dc:6e:1e:6f:c6:e9:b0:ab:2d:1c:ba:b4:d5:96:
73:3e:cd:58:2d:66:81:ae:50:ad:a2:a1:3c:1b:b7:
cf:a4:3f:ae:71:7f:df:39:42:00:5a:f6:46:be:f5:
76:5f:0e:7e:74:d8:a0:c9:38:22:bf:30:59:17:a5:
95:11:a9:73:e5:1c:7c:f5:ca:ab:cd:ca:33:e5:75:
85:4f:63:37:3d:0e:f1:61:04:54:28:0b:61:49:1c:
4b:51:11:e5:72:85:bb:4d:2f:f7:f3:08:90:d4:cd:
75:0b:29:e9:4a:10:fd:94:8e:b3:3e:38:11:1e:e4:
c7:7c:1a:89:82:29:f8:d8:44:01:d6:89:d5:c4:0e:
1f:0f:69:94:86:d6:00:e1:1b:85:8e:41:6e:3c:f8:
ce:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:5F:8D:10:73:A4:68:CC:B8:6C:E0:4C:44:5A:E5:1C:0F:11:0A:99
X509v3 Authority Key Identifier:
keyid:16:5F:87:63:FB:8F:2E:7F:D2:F3:B9:38:04:48:4F:AB:4E:FA:B9:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fl-HY_uPLn_S87k4BEhPq076ub0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2da576-e416-4f3b-a2fe-97646e3957e7/1/NF-NEHOkaMy4bOBMRFrlHA8RCpk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2da576-e416-4f3b-a2fe-97646e3957e7/1/Fl-HY_uPLn_S87k4BEhPq076ub0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.120.0/24
Signature Algorithm: sha256WithRSAEncryption
75:e2:93:03:61:0d:2b:e3:15:bb:fe:3d:ee:02:a0:45:e3:b4:
c7:a7:e9:e2:62:61:73:9d:74:69:33:68:bb:e1:ca:43:66:a6:
c5:61:1b:32:a5:10:f4:73:40:d2:be:b4:e1:65:c3:cc:86:64:
c1:2a:f1:9a:62:47:2c:10:95:53:f6:1f:02:a2:c5:ac:d9:69:
36:61:c2:f7:29:12:aa:81:42:c3:39:55:93:87:a6:db:4a:10:
9f:a1:b5:1f:5e:69:a3:e2:96:d7:19:bd:c1:d4:21:bd:91:51:
af:11:27:76:08:7d:49:60:18:45:b0:ce:96:87:9c:52:b4:a2:
22:18:ff:4d:06:31:f0:13:ee:ca:ab:51:29:29:a1:1c:85:34:
14:bd:b5:a2:31:ef:78:7d:60:84:cb:93:35:40:53:70:b9:d3:
3f:77:4c:71:83:42:4f:d4:5c:0a:ff:bc:5d:9f:7c:d8:b7:18:
63:42:d8:8a:e9:50:e4:f0:c0:9e:92:50:2e:f5:f1:47:07:4e:
12:be:4f:37:e4:4d:1b:8f:31:ae:21:ce:9b:b6:a4:42:8c:44:
cd:c3:54:53:ac:3e:9f:49:c9:0f:f0:6a:be:c2:fe:48:8c:72:
9d:49:72:a9:96:10:25:0b:f4:45:f6:95:3d:6f:4c:5b:85:9c:
62:ad:53:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:20 2024 by rpki-client on console-ams.rpki-client.org