Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/2cf81e-2877-4dcf-a8e1-89a4f2c01fa4/1/ApdQI5CmQgCCxf0MUx5-ri5PnSY.roa
File: ApdQI5CmQgCCxf0MUx5-ri5PnSY.roa (raw, json)
Hash identifier: rCsIpVpUyDJvysPJZ3BO8bkLePIRGnXWLB7P01CJ+N0=
Subject key identifier: 02:97:50:23:90:A6:42:00:82:C5:FD:0C:53:1E:7E:AE:2E:4F:9D:26
Certificate issuer: /CN=907b9d22c4730d56b62a4bedca00d9d6c44bd56f
Certificate serial: 018964C057915E1242DBD7ABEC4B187A9396
Authority key identifier: 90:7B:9D:22:C4:73:0D:56:B6:2A:4B:ED:CA:00:D9:D6:C4:4B:D5:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kHudIsRzDVa2KkvtygDZ1sRL1W8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/2cf81e-2877-4dcf-a8e1-89a4f2c01fa4/1/ApdQI5CmQgCCxf0MUx5-ri5PnSY.roa
Signing time: Mon 17 Jul 2023 16:47:54 +0000
ROA not before: Mon 17 Jul 2023 16:47:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59729
IP address blocks: 195.96.154.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:c0:57:91:5e:12:42:db:d7:ab:ec:4b:18:7a:93:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=907b9d22c4730d56b62a4bedca00d9d6c44bd56f
Validity
Not Before: Jul 17 16:47:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0297502390a6420082c5fd0c531e7eae2e4f9d26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:10:65:0d:fc:3c:8e:37:c2:5c:e7:4f:58:77:
f7:e2:38:d0:a6:03:91:00:43:8c:3c:15:77:dc:38:
49:0f:22:9b:ba:e6:33:6d:ba:cc:26:e8:e7:fd:bf:
bf:45:46:bf:fa:9e:c0:d9:b0:90:58:ea:54:e6:31:
dc:cc:f6:da:3d:dd:89:0a:1c:00:54:05:2b:5f:8f:
07:63:b2:8a:08:6a:e4:dc:9d:87:91:57:49:b0:b9:
dc:8e:91:a1:ad:bb:a9:a6:1a:93:88:53:45:77:a0:
f2:92:7e:3b:a7:0b:f5:8e:0f:a6:19:43:fb:84:8e:
8c:80:40:95:c2:bb:d7:24:17:c3:06:b5:40:5a:e7:
03:ba:17:2f:f6:7f:d8:d1:67:91:ff:39:9c:ba:4d:
b2:7b:71:08:68:94:c3:7e:fd:9c:c0:d8:74:d8:a2:
40:85:6f:63:23:b6:37:c5:90:ff:0a:d6:45:da:d0:
0b:97:63:45:62:5c:c6:86:51:97:94:50:8f:c2:1c:
21:da:35:a4:1b:81:2e:2f:d6:d7:7d:fa:24:2d:77:
ba:96:70:17:65:f6:2d:a9:8f:65:e0:72:18:05:0f:
d2:68:3c:59:3a:38:da:a6:34:44:90:e6:6f:a0:7f:
c1:f7:c4:a9:f5:e9:54:ca:8e:94:59:9a:cb:bb:04:
17:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:97:50:23:90:A6:42:00:82:C5:FD:0C:53:1E:7E:AE:2E:4F:9D:26
X509v3 Authority Key Identifier:
keyid:90:7B:9D:22:C4:73:0D:56:B6:2A:4B:ED:CA:00:D9:D6:C4:4B:D5:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kHudIsRzDVa2KkvtygDZ1sRL1W8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/2cf81e-2877-4dcf-a8e1-89a4f2c01fa4/1/ApdQI5CmQgCCxf0MUx5-ri5PnSY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/2cf81e-2877-4dcf-a8e1-89a4f2c01fa4/1/kHudIsRzDVa2KkvtygDZ1sRL1W8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.154.0/24
Signature Algorithm: sha256WithRSAEncryption
73:0d:14:4d:78:0b:f6:6f:4a:81:d3:15:51:81:31:28:59:a2:
0b:29:47:81:77:88:ce:99:0a:bf:72:f3:ed:e5:87:31:90:9d:
1b:32:e6:00:0a:83:40:5c:63:64:31:00:71:4c:37:0b:5a:92:
cb:f7:3d:bf:8f:a8:df:1d:da:bb:97:38:51:51:6c:7e:93:be:
45:99:92:a6:b4:09:79:97:39:7f:32:b6:e0:7e:68:f6:4b:f9:
94:0b:00:a6:76:c6:26:2b:74:be:22:30:f2:bf:99:02:03:01:
5f:aa:eb:0e:b2:37:d2:28:2f:eb:55:b0:4e:e1:93:08:d5:5b:
2b:22:ca:01:2f:09:a0:ae:a9:10:cf:55:37:51:53:d8:52:b6:
46:bd:c1:3e:17:49:38:19:cf:17:e3:d1:e5:42:ca:4a:5a:85:
17:44:33:eb:9d:4a:38:8b:fa:58:80:7d:a3:96:f7:a6:86:2b:
7e:49:ea:28:a5:f6:33:73:29:68:6d:36:71:af:4c:da:77:ee:
c3:18:3a:30:9a:a3:7e:40:cf:e7:da:12:2b:60:89:d9:b9:f1:
49:39:6a:92:23:e7:1c:79:1d:5f:c2:ad:96:58:f1:cf:71:20:
70:d6:a2:f4:ca:fe:e7:04:b3:cf:57:c1:de:e5:b7:f3:1d:de:
23:b0:74:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:29 2024 by rpki-client on console-fra.rpki-client.org