Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/1bacdb-ace1-496d-bca1-e2f92616f697/1/IAmq0M9Y7tii2WKzjzeZku8W1l4.roa
File: IAmq0M9Y7tii2WKzjzeZku8W1l4.roa (raw, json)
Hash identifier: Xt9mfd4ZAQ3ceNQ1rUXW+qOCAPJqhd3k4kQnITErITM=
Subject key identifier: 20:09:AA:D0:CF:58:EE:D8:A2:D9:62:B3:8F:37:99:92:EF:16:D6:5E
Certificate issuer: /CN=65fa59a82c09c1703b0dc24c2988ec8c2dda597c
Certificate serial: 0187112DCCB3F8B34B29EC6A352735516693
Authority key identifier: 65:FA:59:A8:2C:09:C1:70:3B:0D:C2:4C:29:88:EC:8C:2D:DA:59:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZfpZqCwJwXA7DcJMKYjsjC3aWXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/1bacdb-ace1-496d-bca1-e2f92616f697/1/IAmq0M9Y7tii2WKzjzeZku8W1l4.roa
Signing time: Fri 24 Mar 2023 01:13:46 +0000
ROA not before: Fri 24 Mar 2023 01:13:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197015
IP address blocks: 83.242.97.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:11:2d:cc:b3:f8:b3:4b:29:ec:6a:35:27:35:51:66:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65fa59a82c09c1703b0dc24c2988ec8c2dda597c
Validity
Not Before: Mar 24 01:13:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2009aad0cf58eed8a2d962b38f379992ef16d65e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:28:89:0e:c3:af:b1:a2:08:fa:bc:80:af:d0:
91:d4:46:20:c7:a9:6f:41:22:e5:92:ca:96:59:da:
cb:d2:f3:b5:27:d4:ee:1f:5e:2d:69:d3:e8:82:fc:
6e:6f:b8:85:af:05:e0:02:60:c2:d8:d8:7a:5c:3b:
44:6a:a3:0a:50:f0:a0:a4:7d:46:f7:c6:06:2e:ec:
ab:e8:7b:e7:e1:9e:56:30:c9:9b:42:7b:13:78:07:
36:21:7e:3c:e9:23:2a:e7:96:74:c7:cd:67:26:80:
a5:15:40:da:13:ef:13:00:b8:ab:e7:34:da:58:94:
ac:87:1c:e8:a9:0b:6c:0e:bb:9c:2c:18:04:b0:d6:
67:1e:a6:2c:bb:9b:ca:7f:bb:c3:7b:19:33:9a:bb:
fc:cc:c5:87:97:c1:09:2f:27:d2:c0:37:51:ca:46:
fd:0d:b8:ba:d3:a2:01:22:ef:84:a9:41:f4:26:0d:
44:0f:08:e0:56:bc:3c:46:1c:b9:52:14:82:bc:c4:
19:17:1f:32:2d:59:a2:9a:ad:58:4c:3d:8a:33:40:
90:b5:48:97:2a:1b:42:60:77:46:c9:9e:1f:fe:b5:
04:25:c6:53:2a:3f:6d:7d:8f:ab:6c:08:e0:27:8f:
0e:c8:f6:77:82:81:58:57:41:69:04:3e:b0:05:b7:
a9:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:09:AA:D0:CF:58:EE:D8:A2:D9:62:B3:8F:37:99:92:EF:16:D6:5E
X509v3 Authority Key Identifier:
keyid:65:FA:59:A8:2C:09:C1:70:3B:0D:C2:4C:29:88:EC:8C:2D:DA:59:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZfpZqCwJwXA7DcJMKYjsjC3aWXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/1bacdb-ace1-496d-bca1-e2f92616f697/1/IAmq0M9Y7tii2WKzjzeZku8W1l4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/1bacdb-ace1-496d-bca1-e2f92616f697/1/ZfpZqCwJwXA7DcJMKYjsjC3aWXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.242.97.0/24
Signature Algorithm: sha256WithRSAEncryption
77:05:e9:c8:04:d8:32:ff:42:c1:aa:86:15:e5:18:e9:ce:4d:
0b:18:1e:e1:0f:a2:a5:89:39:e5:0a:11:95:09:8f:ba:24:ad:
0f:a2:e2:fe:45:ba:7b:c5:65:78:bd:65:fd:a8:55:f0:78:e5:
64:f2:26:ad:16:a2:23:77:87:b4:ad:45:ff:ea:92:5d:64:22:
c8:81:47:ca:0f:20:34:e4:f4:c3:87:be:12:b1:c8:14:60:ca:
9f:0d:1b:2a:7d:2f:b7:e2:e9:57:a4:e6:d4:84:91:15:e9:d2:
4f:93:42:f9:01:23:ea:b5:2d:33:d1:08:9f:50:75:d2:41:9f:
5b:21:b5:b0:f8:88:a3:bd:73:34:e9:6f:62:ba:ae:96:49:0d:
a0:42:ab:57:a5:bc:18:7c:07:65:31:80:56:ec:5d:ec:92:72:
a8:7d:0e:75:c0:49:fc:a7:0a:cb:75:1e:8c:d9:c3:e3:05:83:
a3:9f:5b:b1:f3:42:bb:55:33:8b:dc:a7:5a:01:04:25:3c:0d:
38:4b:87:7b:a0:25:57:e5:24:bc:97:f8:d6:99:2d:95:5c:4e:
d8:25:72:40:ed:a6:d9:94:54:e4:91:39:16:95:07:c0:e3:48:
cb:34:5d:36:b5:37:a8:0a:f1:ba:f6:1e:b1:b9:8b:83:f8:9a:
6e:4c:b8:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:37 2024 by rpki-client on console-fra.rpki-client.org