Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/64a7ea-3ae1-4e0c-bf70-cd28af2af2a5/1/3mB5c2vXXNhLJDjeXl6u55DCNzA.roa
File: 3mB5c2vXXNhLJDjeXl6u55DCNzA.roa (raw, json)
Hash identifier: Ov9q8pkLk7svxRZfr6RwhUCJAT44NeGSjS2d7TeaCnk=
Subject key identifier: DE:60:79:73:6B:D7:5C:D8:4B:24:38:DE:5E:5E:AE:E7:90:C2:37:30
Certificate issuer: /CN=4a4e38fded7aa5dc1746a2659a26ab1ec9dada2f
Certificate serial: 8FFA4C
Authority key identifier: 4A:4E:38:FD:ED:7A:A5:DC:17:46:A2:65:9A:26:AB:1E:C9:DA:DA:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sk44_e16pdwXRqJlmiarHsna2i8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/64a7ea-3ae1-4e0c-bf70-cd28af2af2a5/1/3mB5c2vXXNhLJDjeXl6u55DCNzA.roa
Signing time: Sat 01 Jan 2022 03:59:04 +0000
ROA not before: Sat 01 Jan 2022 03:59:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 195.96.159.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9435724 (0x8ffa4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a4e38fded7aa5dc1746a2659a26ab1ec9dada2f
Validity
Not Before: Jan 1 03:59:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de6079736bd75cd84b2438de5e5eaee790c23730
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d5:34:a3:fa:f8:a5:81:82:de:fb:3b:5a:a2:
3e:c6:0b:db:bc:fe:fe:55:73:b6:e5:a3:6e:b3:6e:
b6:fc:89:a2:5a:91:cd:7b:67:04:31:e1:68:af:f2:
2d:d4:04:6c:54:db:ca:84:be:56:b4:ff:97:5a:7e:
dd:5b:7c:a2:69:8f:30:d0:96:b1:03:c8:4c:39:f1:
32:56:5d:04:b3:96:5b:c0:cc:f1:97:97:ac:33:22:
c4:5e:02:6c:cb:f2:15:c7:2e:04:7f:58:66:17:7c:
ea:33:8d:cd:85:3d:72:6a:9c:a9:4e:ea:5d:48:ba:
38:c4:77:ae:c6:ed:8e:4e:14:6b:84:7a:7f:58:0c:
3b:ad:65:ae:7b:ef:50:a8:11:13:46:68:c8:ef:74:
46:57:3b:fa:c5:e4:11:24:79:12:46:13:aa:08:17:
19:40:e7:79:3e:51:bc:71:32:fa:48:84:d2:56:ae:
88:f1:30:ec:91:b5:69:2b:c1:de:cd:d1:fa:83:72:
24:7e:3d:27:64:e3:c9:71:ba:27:43:2a:d8:c7:c1:
3e:dd:19:ca:52:2e:15:1a:cd:12:a4:fb:e8:85:89:
73:39:05:77:3e:19:31:b5:ae:3d:4b:3f:f7:a3:9f:
63:ba:e9:c0:c9:dd:dc:61:bf:b3:0f:0f:36:ed:3a:
59:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:60:79:73:6B:D7:5C:D8:4B:24:38:DE:5E:5E:AE:E7:90:C2:37:30
X509v3 Authority Key Identifier:
keyid:4A:4E:38:FD:ED:7A:A5:DC:17:46:A2:65:9A:26:AB:1E:C9:DA:DA:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sk44_e16pdwXRqJlmiarHsna2i8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/64a7ea-3ae1-4e0c-bf70-cd28af2af2a5/1/3mB5c2vXXNhLJDjeXl6u55DCNzA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/64a7ea-3ae1-4e0c-bf70-cd28af2af2a5/1/Sk44_e16pdwXRqJlmiarHsna2i8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.159.0/24
Signature Algorithm: sha256WithRSAEncryption
26:02:93:b0:67:5b:30:9e:a4:92:9c:ba:7a:82:d9:a2:5c:25:
15:9d:17:e8:3f:bb:5e:f7:0c:c8:14:bf:f1:e7:fb:f2:f5:5c:
66:f9:79:1f:f5:8d:a4:34:2d:90:db:a7:b9:b1:38:3c:48:45:
1b:5e:dc:87:b0:87:4f:67:59:d1:60:f5:33:33:62:d6:b9:9e:
61:c1:87:06:18:b3:58:3a:e3:76:26:e4:8e:10:83:5a:0c:2d:
b1:25:3c:98:11:dd:12:18:18:4d:81:06:f2:d9:9d:ec:e3:12:
ad:38:7c:cc:7d:06:30:b2:3b:95:05:7d:76:1f:0a:59:8b:a5:
5d:4a:e2:68:13:61:f6:1e:c3:e5:dd:3b:85:67:b9:ed:24:fa:
1f:1e:7d:4d:f4:28:72:b2:ee:9e:e9:62:72:bb:27:c3:43:d7:
73:0c:05:81:5b:70:ea:ee:50:d5:c0:20:ea:8c:25:e1:e7:d2:
fc:c0:b9:ea:44:42:c6:80:e6:93:3d:d3:9e:05:ec:53:1b:69:
e5:d4:77:b8:9a:64:8f:40:a6:2c:8f:aa:c6:b9:e6:5b:73:22:
6c:bf:12:bc:6a:83:ed:6c:f7:25:3e:8c:aa:d8:ed:eb:b2:eb:
49:50:3f:91:f7:2b:13:6e:a2:ec:12:5e:e7:77:09:3c:f5:24:
8e:04:2b:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:49 2024 by rpki-client on console-fra.rpki-client.org