Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/2da576-e416-4f3b-a2fe-97646e3957e7/1/rMofB-GUy5duWy8CoRnxIhf10VE.roa
File: rMofB-GUy5duWy8CoRnxIhf10VE.roa (raw, json)
Hash identifier: rhYBE6UBougDgckYYp4wE3i5SKor4DGOEA8He6WQOr4=
Subject key identifier: AC:CA:1F:07:E1:94:CB:97:6E:5B:2F:02:A1:19:F1:22:17:F5:D1:51
Certificate issuer: /CN=165f8763fb8f2e7fd2f3b93804484fab4efab9bd
Certificate serial: 018CC26D0541DAC5F421B95025DB3EEBF740
Authority key identifier: 16:5F:87:63:FB:8F:2E:7F:D2:F3:B9:38:04:48:4F:AB:4E:FA:B9:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fl-HY_uPLn_S87k4BEhPq076ub0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/2da576-e416-4f3b-a2fe-97646e3957e7/1/rMofB-GUy5duWy8CoRnxIhf10VE.roa
Signing time: Mon 01 Jan 2024 00:29:33 +0000
ROA not before: Mon 01 Jan 2024 00:29:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 398464
IP address blocks: 195.64.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:05:41:da:c5:f4:21:b9:50:25:db:3e:eb:f7:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=165f8763fb8f2e7fd2f3b93804484fab4efab9bd
Validity
Not Before: Jan 1 00:29:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=acca1f07e194cb976e5b2f02a119f12217f5d151
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:c2:ed:7e:e3:40:6a:e3:3b:45:4e:09:61:62:
28:3c:6e:74:b1:f7:b2:6f:51:ce:e3:70:43:8c:db:
70:be:f7:cd:fc:31:c5:12:14:6f:aa:4d:0b:9c:52:
61:31:d4:1f:4a:cf:c4:98:dd:72:58:56:cb:0b:d4:
c4:6a:69:49:74:a1:34:e1:ad:35:1d:0d:44:c0:48:
cb:6b:6c:ac:b8:77:38:6c:87:bd:dd:34:67:80:09:
b3:f3:00:62:b5:00:24:3c:c4:8a:83:18:f5:16:5b:
ed:27:76:7b:a8:c5:d9:f5:6c:cc:1b:55:b0:c1:da:
0f:72:1e:72:f7:d9:19:19:97:c3:33:71:f9:b2:12:
17:e8:ce:be:fb:66:b6:93:36:4b:e5:89:cd:68:f5:
f8:fb:79:1b:f1:7b:95:b1:a4:70:cb:8e:9b:5d:ab:
4f:b8:6e:18:7b:45:b0:51:66:2c:ce:be:b2:48:f0:
ad:a6:ef:c7:12:7a:c3:bc:83:76:ae:60:10:a2:7c:
93:ec:04:b9:10:db:40:f2:fe:41:cd:e8:c1:c2:5b:
a9:3f:56:45:b7:41:6a:f5:86:b3:b9:97:5b:2e:6e:
87:e2:74:e8:8b:d6:fb:ee:4a:3d:7b:da:ad:17:4e:
3b:a2:a7:93:42:9a:a4:fe:ad:b8:1d:ad:1e:fd:f1:
f5:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:CA:1F:07:E1:94:CB:97:6E:5B:2F:02:A1:19:F1:22:17:F5:D1:51
X509v3 Authority Key Identifier:
keyid:16:5F:87:63:FB:8F:2E:7F:D2:F3:B9:38:04:48:4F:AB:4E:FA:B9:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fl-HY_uPLn_S87k4BEhPq076ub0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2da576-e416-4f3b-a2fe-97646e3957e7/1/rMofB-GUy5duWy8CoRnxIhf10VE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2da576-e416-4f3b-a2fe-97646e3957e7/1/Fl-HY_uPLn_S87k4BEhPq076ub0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.120.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:58:77:4d:b9:03:dc:84:9a:33:52:4a:41:58:5f:67:48:b7:
66:f4:d8:c5:69:40:e9:3f:6b:2a:df:a9:13:71:f6:67:50:a2:
45:61:13:75:78:df:ef:e2:48:fc:87:9a:0c:5a:a5:cf:eb:a3:
1d:3a:d8:ea:c5:68:1c:36:1b:a3:d9:d7:9b:ac:d9:c0:5c:d3:
a7:a4:b5:d0:b2:71:27:36:f2:99:2a:55:7d:aa:6a:0c:bd:7d:
9a:31:f1:1a:89:63:64:db:e1:c2:00:19:fb:40:aa:fc:68:01:
5f:6f:a3:df:9f:0b:28:5b:1f:c6:c8:14:f9:5f:ca:21:ef:5e:
90:93:17:ce:48:3b:d3:12:70:12:29:cf:e9:51:fc:92:7f:b6:
f9:25:86:6b:58:c2:a7:8b:1a:ea:31:fe:5f:61:c4:61:9b:10:
d5:df:e1:d6:f4:ec:95:7b:ca:5a:e4:e9:f3:5f:59:25:56:5d:
2b:fc:c7:35:76:bb:03:3f:c9:5d:4a:79:36:c4:9f:c8:a8:a9:
a7:84:62:91:82:0f:dd:65:be:2d:d5:12:ac:d6:42:e8:14:de:
29:bc:6a:97:8e:1d:83:a6:c8:22:f3:a5:e0:49:6c:c2:b7:15:
77:c4:3a:8c:47:07:73:91:5e:c6:b4:6e:e4:86:7e:4b:24:64:
36:b3:aa:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 14:03:27 2024 by rpki-client on console-fra.rpki-client.org