Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/ed6589-272c-4120-9adc-ee8ae6638f12/1/1mLhNNMyvOR1a0erWqqQcAtfGmU.roa
File: 1mLhNNMyvOR1a0erWqqQcAtfGmU.roa (raw, json)
Hash identifier: 7HnB0lwg8piB/Ndp6e6l9xSuzCsOFs1mKfGa1UVcmZs=
Subject key identifier: D6:62:E1:34:D3:32:BC:E4:75:6B:47:AB:5A:AA:90:70:0B:5F:1A:65
Certificate issuer: /CN=73ff5366be0050d3dbee36f20e540065ca6a8e51
Certificate serial: 01856D5D032369C7F4C0DE23706F1400A764
Authority key identifier: 73:FF:53:66:BE:00:50:D3:DB:EE:36:F2:0E:54:00:65:CA:6A:8E:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_9TZr4AUNPb7jbyDlQAZcpqjlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/ed6589-272c-4120-9adc-ee8ae6638f12/1/1mLhNNMyvOR1a0erWqqQcAtfGmU.roa
Signing time: Sun 01 Jan 2023 12:44:50 +0000
ROA not before: Sun 01 Jan 2023 12:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58061
IP address blocks: 31.222.230.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:5d:03:23:69:c7:f4:c0:de:23:70:6f:14:00:a7:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73ff5366be0050d3dbee36f20e540065ca6a8e51
Validity
Not Before: Jan 1 12:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d662e134d332bce4756b47ab5aaa90700b5f1a65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:62:8f:59:b1:d6:82:03:6a:b3:28:06:a0:4d:
56:33:e3:6f:41:9e:3a:5f:ab:14:fc:3f:41:06:70:
43:65:c2:79:64:a3:7d:9a:ef:91:e8:66:b2:92:f2:
f1:d1:5c:5b:0d:ab:61:b9:25:86:4e:cf:37:b3:56:
a4:79:e6:e7:b5:b2:68:9a:e5:12:98:3d:d7:df:f1:
e9:30:39:ce:ec:62:d5:a2:5c:97:7e:ab:4d:f6:3f:
54:b3:b1:b0:a9:e7:18:70:21:fe:9c:72:30:ca:41:
0f:21:2e:66:9e:18:7f:f2:1d:3e:80:24:02:2d:14:
32:9b:57:2c:23:ba:33:c9:30:b6:e0:31:66:32:dc:
48:57:b6:e3:04:aa:db:22:73:2f:f4:17:4e:b8:b0:
11:89:dd:ae:0b:ab:88:7d:3f:e2:e5:f7:33:38:9b:
39:76:70:ae:46:fa:8c:44:06:3d:4b:1f:0a:55:23:
00:65:e7:3e:a8:64:3f:20:1c:4f:66:df:20:5a:1f:
e8:bd:90:c1:8a:61:bf:d9:44:bd:ae:1d:89:42:ed:
08:39:df:0b:96:38:5c:93:5a:28:c4:69:46:1c:6f:
64:ae:d3:02:02:84:6c:32:ed:09:4e:56:37:69:93:
63:8d:ad:e5:03:2c:f5:88:2b:14:d7:25:b9:66:8b:
b4:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:62:E1:34:D3:32:BC:E4:75:6B:47:AB:5A:AA:90:70:0B:5F:1A:65
X509v3 Authority Key Identifier:
keyid:73:FF:53:66:BE:00:50:D3:DB:EE:36:F2:0E:54:00:65:CA:6A:8E:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_9TZr4AUNPb7jbyDlQAZcpqjlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/ed6589-272c-4120-9adc-ee8ae6638f12/1/1mLhNNMyvOR1a0erWqqQcAtfGmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/ed6589-272c-4120-9adc-ee8ae6638f12/1/c_9TZr4AUNPb7jbyDlQAZcpqjlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.230.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:29:8e:27:c3:c8:24:a0:3e:df:0a:44:92:44:6f:4c:62:41:
d6:35:bd:21:3f:6f:7a:93:da:67:71:8d:da:cc:bf:50:6a:c7:
19:39:18:31:10:a5:0a:3a:81:1c:c4:cd:b1:7c:32:24:fe:fa:
49:59:92:da:b0:9c:0d:af:4b:4d:0f:1c:76:c0:4c:77:89:5d:
a1:0b:0a:4b:68:3c:1d:ef:43:68:df:b0:5a:d3:32:66:6a:ea:
b0:3b:6e:32:b2:8a:d8:48:e2:c1:27:1f:05:85:e0:10:1e:8e:
bc:32:56:10:c2:37:34:f0:9a:0b:c9:36:d8:7f:5d:0d:96:ac:
f7:4f:11:37:e8:b8:60:f6:96:e7:38:6e:88:ea:fe:5d:dc:12:
4a:2d:76:42:78:8c:45:d1:f2:06:e8:81:5f:eb:56:ad:8f:77:
b0:d0:0a:3f:ba:a4:49:25:31:45:fc:67:86:c2:e5:0a:f0:c2:
1f:f1:50:4b:92:73:a4:a1:b8:1c:6b:5e:9c:20:a1:a8:5b:49:
99:f7:3e:85:2a:28:63:c0:1c:0e:73:0c:e3:30:d2:0e:4f:8e:
50:aa:74:e0:59:1d:65:1d:a4:70:50:76:a2:6c:27:02:e0:61:
0c:03:59:51:c2:ac:f1:7a:bb:13:60:40:04:41:e1:3c:80:fc:
de:14:c3:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 9 13:14:42 2023 by rpki-client on console-fra.rpki-client.org