Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/e6bbb3-b09b-4a3e-a89f-0b3a9e124157/1/2Bb_NKlPYEmNPB43zwrl582j7cQ.roa
File: 2Bb_NKlPYEmNPB43zwrl582j7cQ.roa (raw, json)
Hash identifier: ip4+9qMYVmoVLVMq5SybmoKv8fLQuwc2/Imb4AGPkeM=
Subject key identifier: D8:16:FF:34:A9:4F:60:49:8D:3C:1E:37:CF:0A:E5:E7:CD:A3:ED:C4
Certificate issuer: /CN=cbe2af2f0886c93c78281e5ad8642d96117d4cf9
Certificate serial: F7A63C
Authority key identifier: CB:E2:AF:2F:08:86:C9:3C:78:28:1E:5A:D8:64:2D:96:11:7D:4C:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y-KvLwiGyTx4KB5a2GQtlhF9TPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/e6bbb3-b09b-4a3e-a89f-0b3a9e124157/1/2Bb_NKlPYEmNPB43zwrl582j7cQ.roa
Signing time: Sat 01 Jan 2022 09:57:38 +0000
ROA not before: Sat 01 Jan 2022 09:57:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49544
IP address blocks: 188.64.138.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16229948 (0xf7a63c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbe2af2f0886c93c78281e5ad8642d96117d4cf9
Validity
Not Before: Jan 1 09:57:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d816ff34a94f60498d3c1e37cf0ae5e7cda3edc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:81:24:0b:71:2e:9b:9f:73:f6:e7:9c:57:1d:
3d:d9:83:92:39:1d:53:2c:49:0d:f2:06:85:02:70:
8e:fc:c7:09:41:7f:d2:4d:b1:49:04:52:a6:56:a8:
9b:b7:ca:1b:be:aa:44:de:01:2d:ad:fe:ee:ba:83:
ce:81:af:f0:82:3f:b5:9b:c8:93:47:3a:34:88:3d:
2c:f2:93:1a:5f:65:53:12:7d:1c:5e:a1:e3:c9:41:
8f:20:bc:48:4c:12:44:0c:54:6d:db:72:5c:e3:96:
9c:24:5f:c2:70:d6:7b:23:f9:bf:68:8d:3d:d8:80:
30:24:d5:af:e3:3f:03:3a:4f:56:7d:d3:a9:9c:96:
03:d2:18:52:49:ea:0b:a6:49:8a:75:83:5c:12:c9:
ce:93:24:ad:f6:2f:bb:c8:58:b4:28:34:22:c8:d7:
95:d9:c8:0f:38:d5:9d:28:5a:c8:b7:46:4d:e9:0c:
c5:2a:d5:95:99:95:05:7b:37:86:cf:2e:85:00:10:
48:81:20:e0:80:1f:9c:c9:7e:c2:0a:05:08:67:13:
65:1b:12:e4:f7:30:a3:31:a2:ab:a9:89:fb:d0:da:
dd:cb:5a:ff:50:a4:9a:95:31:65:10:fb:51:92:d4:
53:da:3e:90:5e:a5:5d:95:f6:a3:87:f8:c7:d5:2b:
d8:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:16:FF:34:A9:4F:60:49:8D:3C:1E:37:CF:0A:E5:E7:CD:A3:ED:C4
X509v3 Authority Key Identifier:
keyid:CB:E2:AF:2F:08:86:C9:3C:78:28:1E:5A:D8:64:2D:96:11:7D:4C:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y-KvLwiGyTx4KB5a2GQtlhF9TPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/e6bbb3-b09b-4a3e-a89f-0b3a9e124157/1/2Bb_NKlPYEmNPB43zwrl582j7cQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/e6bbb3-b09b-4a3e-a89f-0b3a9e124157/1/y-KvLwiGyTx4KB5a2GQtlhF9TPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.64.138.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:60:a2:38:31:44:a5:bf:9c:b5:e8:f0:ef:b7:fa:25:f3:58:
4d:d2:78:28:9d:41:aa:f5:3b:bc:d1:a9:45:96:57:0d:51:7e:
ed:93:c5:a6:ff:93:32:de:2f:0b:2c:f9:39:53:6a:be:08:33:
02:07:fd:fd:ea:ad:9e:68:3c:bd:a6:ec:bb:80:da:85:ea:f3:
87:5f:28:cc:ae:20:c6:92:76:ac:3c:1e:55:0c:28:13:7e:44:
99:ce:9b:6d:1b:36:c6:6a:8e:3d:61:1d:95:a6:47:9c:f2:4b:
b2:ad:df:57:37:7c:28:6b:fe:be:12:83:2c:1f:4d:ff:1e:ce:
f6:4a:9f:2e:3a:57:bc:b3:b5:56:89:3d:aa:85:3e:60:ed:13:
83:4f:d7:b2:c7:8d:ac:0c:66:1e:8e:ca:45:e9:24:9c:38:e9:
6e:fb:17:4f:b5:f1:30:8a:7b:c9:26:8b:02:64:4d:da:46:a6:
c2:b4:09:c0:cc:02:c9:93:18:45:3c:2d:d0:d4:b8:8b:3a:e8:
7d:2c:17:02:05:21:71:e9:71:45:8d:66:5d:b6:b2:d1:07:c2:
2e:8f:b2:80:d1:61:ab:28:ef:60:b2:44:7d:f1:35:10:fa:25:
c5:8a:ea:6a:df:63:70:57:65:4f:34:83:29:97:5f:67:46:10:
23:dc:0b:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:41 2024 by rpki-client on console-ams.rpki-client.org