Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/ada691-0e3a-488f-89de-4cf298576b01/1/aGsH9whVcJRNET80swaNAAsFG6s.roa
File: aGsH9whVcJRNET80swaNAAsFG6s.roa (raw, json)
Hash identifier: 8N7s9FxKVyJJBOrpMTuqDaq3QPgnKTIogNyRCdkDMZw=
Subject key identifier: 68:6B:07:F7:08:55:70:94:4D:11:3F:34:B3:06:8D:00:0B:05:1B:AB
Certificate issuer: /CN=704eb0324b167299dd6064dbbf340d2f99c402c2
Certificate serial: 177CF126
Authority key identifier: 70:4E:B0:32:4B:16:72:99:DD:60:64:DB:BF:34:0D:2F:99:C4:02:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cE6wMksWcpndYGTbvzQNL5nEAsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/ada691-0e3a-488f-89de-4cf298576b01/1/aGsH9whVcJRNET80swaNAAsFG6s.roa
Signing time: Tue 29 Mar 2022 11:10:42 +0000
ROA not before: Tue 29 Mar 2022 11:10:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34655
IP address blocks: 109.71.165.0/24 maxlen: 24
2a03:9c40::/48 maxlen: 48
2a03:9c40:200::/48 maxlen: 48
2a03:9c40:400::/48 maxlen: 48
2a03:9c40:600::/48 maxlen: 48
2a03:9c40:800::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 394064166 (0x177cf126)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=704eb0324b167299dd6064dbbf340d2f99c402c2
Validity
Not Before: Mar 29 11:10:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=686b07f7085570944d113f34b3068d000b051bab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:3a:6a:57:04:64:13:09:e7:ce:0b:b6:bf:f9:
c2:eb:31:71:e3:ae:ee:a8:54:6d:30:5f:29:5e:49:
56:95:d5:23:d1:92:c6:30:fb:b2:89:18:5a:e0:18:
ab:3a:42:63:95:fe:6b:b8:8e:39:df:bd:45:18:46:
11:23:ea:47:a4:58:a0:8c:6f:8b:10:20:83:ce:d8:
ef:d1:0b:ae:db:24:fa:6a:3d:10:c8:ce:c3:5b:80:
f4:c8:34:85:8e:a7:6f:55:a4:17:df:c6:56:2d:65:
b0:c5:ae:99:81:5d:f8:65:1b:a2:6e:03:bc:8c:4f:
a9:d5:01:de:be:ea:4a:52:f7:61:b7:a6:b7:4b:40:
96:f0:b0:6c:f5:54:67:64:ef:b9:b4:c4:be:84:e1:
0d:34:b7:3c:ba:08:de:69:b8:79:7e:c6:e8:0e:c0:
6e:c6:1c:bc:ee:b6:bc:5a:c7:d4:21:a6:7f:28:be:
e5:0b:c3:50:e1:03:e6:ff:5c:c1:11:5b:af:b2:3b:
36:93:2c:c2:a3:8a:0a:eb:1e:f6:29:13:0f:5d:01:
8a:41:e5:c9:76:99:46:be:48:0e:e1:4c:05:b6:dc:
c0:24:4d:99:80:a0:fa:cf:48:10:3c:02:26:ec:b3:
83:ae:9a:d0:44:35:0c:60:03:51:d8:63:47:a8:7c:
82:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:6B:07:F7:08:55:70:94:4D:11:3F:34:B3:06:8D:00:0B:05:1B:AB
X509v3 Authority Key Identifier:
keyid:70:4E:B0:32:4B:16:72:99:DD:60:64:DB:BF:34:0D:2F:99:C4:02:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cE6wMksWcpndYGTbvzQNL5nEAsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/ada691-0e3a-488f-89de-4cf298576b01/1/aGsH9whVcJRNET80swaNAAsFG6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/ada691-0e3a-488f-89de-4cf298576b01/1/cE6wMksWcpndYGTbvzQNL5nEAsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.71.165.0/24
IPv6:
2a03:9c40::/48
2a03:9c40:200::/48
2a03:9c40:400::/48
2a03:9c40:600::/48
2a03:9c40:800::/48
Signature Algorithm: sha256WithRSAEncryption
09:e4:78:d4:a0:4f:7c:7d:0b:df:56:f5:ce:19:eb:71:57:65:
a6:03:cd:d3:82:1e:05:53:df:ec:9c:30:f5:31:a8:86:5b:3f:
24:13:6c:46:93:2c:d9:c1:15:8d:17:d6:84:46:21:f5:78:d6:
9a:6e:97:2a:b8:51:4f:bb:45:d4:d9:14:c7:44:f0:e5:9b:ed:
9e:eb:98:19:74:7a:cd:4d:82:68:d9:8a:4d:dd:34:a8:a5:2f:
c5:9a:3b:2e:6d:28:24:1e:51:ef:4d:af:1c:6b:25:8a:cc:d9:
21:71:74:bc:30:c0:37:24:24:c2:f5:43:79:8a:eb:ab:06:a6:
c3:b0:63:ca:f9:d3:29:14:d7:8c:fb:ee:c3:71:a1:b5:6b:df:
69:3b:d9:b6:5a:f1:10:c9:ef:c2:b4:83:8f:ac:1a:e9:98:50:
43:24:77:48:b9:60:5d:1b:31:61:f4:19:46:51:ee:6a:ff:15:
73:7f:bb:ca:f6:f3:6c:b4:0b:f8:e6:be:81:de:07:15:78:a0:
7a:f5:3e:d8:44:64:38:97:04:01:31:6c:70:d3:41:83:d0:01:
06:3f:8c:1d:66:88:0d:7c:65:d6:cc:bd:ce:95:fa:be:d7:85:
79:c5:de:a2:79:83:b2:8c:06:2b:9a:bb:f1:da:59:f1:dc:a2:
94:eb:05:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:27 2024 by rpki-client on console-ams.rpki-client.org