Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/25852a-aeee-4002-a8ab-0ff9557967dc/1/27tAxfHrIP9ufmdGH29WXR9Lu-A.roa
File: 27tAxfHrIP9ufmdGH29WXR9Lu-A.roa (raw, json)
Hash identifier: ikFjB8ah8z9u0hwx8tIvOllWor+q/UjXYmTd0upSTBo=
Subject key identifier: DB:BB:40:C5:F1:EB:20:FF:6E:7E:67:46:1F:6F:56:5D:1F:4B:BB:E0
Certificate issuer: /CN=71ed7ba32e16b552184e665579e8874b74a1ca9b
Certificate serial: 018CC56DFDF58C82743CACDF3D374207C996
Authority key identifier: 71:ED:7B:A3:2E:16:B5:52:18:4E:66:55:79:E8:87:4B:74:A1:CA:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ce17oy4WtVIYTmZVeeiHS3Shyps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/25852a-aeee-4002-a8ab-0ff9557967dc/1/27tAxfHrIP9ufmdGH29WXR9Lu-A.roa
Signing time: Mon 01 Jan 2024 14:29:29 +0000
ROA not before: Mon 01 Jan 2024 14:29:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41390
IP address blocks: 195.3.144.0/22 maxlen: 26
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6d:fd:f5:8c:82:74:3c:ac:df:3d:37:42:07:c9:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71ed7ba32e16b552184e665579e8874b74a1ca9b
Validity
Not Before: Jan 1 14:29:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dbbb40c5f1eb20ff6e7e67461f6f565d1f4bbbe0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:39:aa:48:b7:b6:11:63:a2:e7:d5:33:98:da:
2c:b0:99:1e:51:5e:ed:64:22:58:73:b5:a4:75:48:
47:cf:0a:5f:73:0b:76:b0:ae:0c:c1:6d:4e:1b:b5:
ed:4b:e2:be:54:a3:be:a2:a2:2f:0e:34:58:6b:70:
50:1a:b7:bb:80:e5:52:18:30:73:12:5f:b7:48:28:
15:6d:9f:94:5f:02:97:ba:ca:fe:13:a6:96:35:8e:
a2:b8:36:4c:50:60:ce:99:63:7e:ad:cb:cb:a4:b8:
fc:80:cc:3c:27:f8:5d:4a:a5:f1:5b:25:54:28:cc:
ab:d5:6d:52:4b:7a:82:cb:1b:4e:d6:9c:8b:78:81:
c4:96:17:08:43:d8:fb:32:ba:6b:a3:cc:74:ba:60:
61:a1:3f:66:db:98:9e:20:87:4a:14:15:5f:41:47:
da:83:2e:ef:8a:dd:fd:1d:30:fe:af:ce:41:56:d4:
a2:89:60:d9:5b:70:fc:2f:f8:00:04:07:59:d7:99:
63:06:26:12:c8:69:8c:fa:98:fb:f0:e1:4b:15:e3:
f2:be:be:6a:de:e7:05:ac:be:1c:24:44:3c:9b:a6:
64:3b:be:23:71:0b:b0:fa:7f:05:1d:b5:9c:f8:12:
04:06:75:63:09:50:93:9b:17:ee:bf:df:b3:45:5e:
49:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:BB:40:C5:F1:EB:20:FF:6E:7E:67:46:1F:6F:56:5D:1F:4B:BB:E0
X509v3 Authority Key Identifier:
keyid:71:ED:7B:A3:2E:16:B5:52:18:4E:66:55:79:E8:87:4B:74:A1:CA:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce17oy4WtVIYTmZVeeiHS3Shyps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/25852a-aeee-4002-a8ab-0ff9557967dc/1/27tAxfHrIP9ufmdGH29WXR9Lu-A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/25852a-aeee-4002-a8ab-0ff9557967dc/1/ce17oy4WtVIYTmZVeeiHS3Shyps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.3.144.0/22
Signature Algorithm: sha256WithRSAEncryption
ac:87:b9:fc:54:e7:78:56:ad:3a:28:e8:e7:90:30:04:1b:4b:
4e:c8:4a:68:4e:bf:60:f6:6f:c4:26:cc:bb:ec:d1:e7:9e:21:
12:9e:72:26:7a:c5:07:2a:cf:00:03:d6:8e:eb:b1:21:a5:49:
c5:7e:ce:3e:90:f9:02:6d:0f:8d:65:7f:3c:17:f9:fa:a9:96:
ba:71:57:ad:fd:6e:ec:21:4b:81:92:70:3a:63:ec:ed:25:4c:
4c:96:18:a2:07:9d:50:5e:cb:c3:b4:8d:a4:64:d0:0b:b8:0f:
c2:f7:4b:45:a4:34:14:3e:5e:40:0c:84:2a:58:d7:ef:05:eb:
c3:63:9d:9a:e9:be:1e:a2:f9:f8:cf:bb:0a:f0:a7:91:65:9a:
70:26:6f:21:9d:18:87:8c:03:35:8a:d1:ab:28:73:09:8c:b9:
f1:a4:54:cc:7b:2d:c3:8a:f1:91:b5:56:82:67:75:f9:26:5e:
af:f0:5d:f6:24:3a:bb:8a:ff:00:cf:92:9f:7c:0b:4a:42:b1:
d3:07:25:e0:dc:67:88:11:67:30:bc:42:2d:83:2c:ff:c7:8b:
6d:a9:a8:ea:09:5c:f7:fc:e6:83:06:56:db:8e:a1:0c:ea:7a:
f0:d3:3e:72:1d:56:cc:7b:8a:66:77:c3:04:94:ab:c3:99:c2:
4a:d7:c5:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:22 2024 by rpki-client on console-ams.rpki-client.org