Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/NIzU9xc5EgH00siSOz6fBEv236E.roa
File: NIzU9xc5EgH00siSOz6fBEv236E.roa (raw, json)
Hash identifier: mzaWU7Y9FU0/hhhTOx5l6ImAKumbV1qQIaJntXgBN8Q=
Subject key identifier: 34:8C:D4:F7:17:39:12:01:F4:D2:C8:92:3B:3E:9F:04:4B:F6:DF:A1
Certificate issuer: /CN=d53ece71ef6ebf55bb7b87e50665ba11fdc77f08
Certificate serial: 0339F90F
Authority key identifier: D5:3E:CE:71:EF:6E:BF:55:BB:7B:87:E5:06:65:BA:11:FD:C7:7F:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1T7Oce9uv1W7e4flBmW6Ef3Hfwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/NIzU9xc5EgH00siSOz6fBEv236E.roa
Signing time: Sun 12 Jun 2022 22:02:03 +0000
ROA not before: Sun 12 Jun 2022 22:02:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 31.6.61.0/24 maxlen: 24
31.6.2.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54130959 (0x339f90f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d53ece71ef6ebf55bb7b87e50665ba11fdc77f08
Validity
Not Before: Jun 12 22:02:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=348cd4f717391201f4d2c8923b3e9f044bf6dfa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:13:4b:40:af:2c:af:52:e2:e8:50:d8:92:e3:
ef:f1:76:dc:23:35:32:1a:bd:b1:56:4d:11:40:54:
dd:0e:47:c1:d5:f9:cb:5b:bf:97:ad:79:88:64:21:
72:12:53:71:3f:7d:79:e1:46:05:32:de:d7:cf:b3:
82:80:fb:1e:6b:65:b2:b0:03:0e:36:3c:15:7d:b5:
8f:9a:a2:6c:dd:d5:4d:c0:95:dc:b4:a3:3f:c9:55:
23:f0:c6:dc:78:7a:6a:3a:64:12:8e:52:7c:de:de:
e3:2a:c8:ca:d4:5d:e5:4d:ee:d3:2b:8c:aa:2c:31:
43:af:b1:2d:48:4b:06:d6:83:47:45:c1:e4:b4:fb:
be:f9:e5:f9:ae:1c:a7:a8:05:5f:db:37:fc:89:5e:
f1:e5:4e:ec:11:74:c4:7b:05:6d:3b:83:a7:62:f3:
d3:71:0d:37:44:8d:15:5f:45:60:f5:09:b8:0d:dd:
38:59:af:d5:31:f0:04:9f:fb:ee:fe:5d:5d:51:d0:
a2:db:7a:c7:95:ca:66:8c:ec:e6:7a:b0:e2:ef:e6:
1c:12:ff:56:88:c2:06:33:28:eb:e7:70:96:98:8a:
99:0c:f6:5a:f0:63:05:be:f4:ab:a4:2b:44:44:e6:
d1:76:73:4b:74:27:2e:b4:79:b2:3e:8a:a8:7a:34:
23:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:8C:D4:F7:17:39:12:01:F4:D2:C8:92:3B:3E:9F:04:4B:F6:DF:A1
X509v3 Authority Key Identifier:
keyid:D5:3E:CE:71:EF:6E:BF:55:BB:7B:87:E5:06:65:BA:11:FD:C7:7F:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1T7Oce9uv1W7e4flBmW6Ef3Hfwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/NIzU9xc5EgH00siSOz6fBEv236E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/1T7Oce9uv1W7e4flBmW6Ef3Hfwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.2.0/24
31.6.61.0/24
Signature Algorithm: sha256WithRSAEncryption
65:19:a1:ba:b7:3a:e4:b9:10:26:0c:fc:f4:a0:a2:de:15:48:
4e:77:4b:2e:72:77:fe:39:58:57:c1:48:6c:b5:51:08:6e:86:
6a:f6:33:b6:ff:cb:e8:dc:86:3c:9e:7c:51:ce:d4:44:f8:9b:
46:b1:f7:89:11:00:64:d9:73:e3:17:02:01:50:fb:33:12:e3:
57:0c:65:cb:8e:64:79:04:cb:85:57:27:4a:b7:bf:80:dc:b2:
95:cd:e2:d8:0c:fb:93:5f:5f:cf:b4:14:e1:dd:6f:51:0b:ea:
12:a6:5c:6d:80:33:93:d2:ef:5c:25:60:61:48:78:61:ef:df:
14:71:91:26:87:0a:c5:34:65:69:c5:a7:ea:b8:56:e0:bd:7f:
54:85:76:90:05:e7:ea:b5:8d:3b:27:c7:46:46:b4:71:23:fb:
3c:f3:b7:73:ea:19:6a:4d:c7:d3:97:60:76:e3:b5:96:4b:12:
fe:20:2f:d4:f8:6d:8d:34:c7:e7:96:ac:d0:24:aa:38:5b:0c:
15:6f:e6:97:43:ba:82:65:3e:39:bd:02:50:30:f7:53:f7:7f:
ee:55:bc:52:4f:2c:7b:dd:90:de:0b:a7:5b:f8:20:e4:d9:72:
e1:51:52:a9:db:ae:5a:2f:0b:a9:bd:5b:ba:9f:13:73:d8:6a:
36:65:09:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:21 2023 by rpki-client on console-ams.rpki-client.org