Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/7aab20-06a4-4e1c-98e8-085c90211cd0/1/OAtJG81YLDj6W5uIEIfWhei7pmg.roa
File: OAtJG81YLDj6W5uIEIfWhei7pmg.roa (raw, json)
Hash identifier: o+Wg8Im5WkVva6mRs3lago9zCq3eyeIXkv4lJ6pdfbA=
Subject key identifier: 38:0B:49:1B:CD:58:2C:38:FA:5B:9B:88:10:87:D6:85:E8:BB:A6:68
Certificate issuer: /CN=0399ecc09144146cc175b58a4de400c7659ae4f5
Certificate serial: 018AD760C1767E3C621F3A9D490D81A473A7
Authority key identifier: 03:99:EC:C0:91:44:14:6C:C1:75:B5:8A:4D:E4:00:C7:65:9A:E4:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A5nswJFEFGzBdbWKTeQAx2Wa5PU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/7aab20-06a4-4e1c-98e8-085c90211cd0/1/OAtJG81YLDj6W5uIEIfWhei7pmg.roa
Signing time: Wed 27 Sep 2023 16:02:36 +0000
ROA not before: Wed 27 Sep 2023 16:02:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 151544
IP address blocks: 93.95.112.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d7:60:c1:76:7e:3c:62:1f:3a:9d:49:0d:81:a4:73:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0399ecc09144146cc175b58a4de400c7659ae4f5
Validity
Not Before: Sep 27 16:02:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=380b491bcd582c38fa5b9b881087d685e8bba668
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f3:1e:3b:14:c1:79:34:cc:31:2b:7d:49:43:
54:81:07:70:89:d1:f5:22:4b:04:2d:38:c3:2e:d8:
d8:9e:7f:af:b8:c0:01:eb:b9:be:4c:2d:f7:ea:15:
f4:5e:c5:13:32:23:1a:5a:8e:80:11:f3:75:0b:50:
b6:89:ea:69:8c:14:de:dd:a8:99:65:c9:76:f3:fc:
6b:52:09:46:5e:c2:b7:82:ae:28:28:35:54:02:ba:
67:3a:22:12:6a:19:b7:dc:bf:ec:31:d9:41:95:c9:
d6:e9:bf:27:e1:95:dc:52:a7:19:6c:19:76:f4:eb:
d8:6b:32:59:e0:f7:67:16:cb:53:0a:9e:a2:70:9a:
1e:c4:1b:0e:b2:ee:38:fb:f7:eb:15:ff:58:98:47:
64:f7:f4:b4:f5:bc:84:0e:ca:03:43:84:46:27:0a:
44:b2:3c:e3:75:96:84:1a:10:cf:c4:aa:ef:3c:4f:
f4:0a:3c:eb:a5:14:c3:fd:27:fa:19:56:23:d1:d8:
dc:fe:74:b9:7d:8b:c4:61:f5:32:89:24:8a:2d:69:
b0:3d:e7:cc:0c:82:f0:f0:21:98:b2:3a:a7:d7:ab:
b2:6b:f2:36:97:f1:26:18:52:f5:eb:ff:d0:c9:3f:
6b:f7:88:62:17:53:86:ab:ca:7e:d9:ae:10:76:1d:
5c:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:0B:49:1B:CD:58:2C:38:FA:5B:9B:88:10:87:D6:85:E8:BB:A6:68
X509v3 Authority Key Identifier:
keyid:03:99:EC:C0:91:44:14:6C:C1:75:B5:8A:4D:E4:00:C7:65:9A:E4:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A5nswJFEFGzBdbWKTeQAx2Wa5PU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/7aab20-06a4-4e1c-98e8-085c90211cd0/1/OAtJG81YLDj6W5uIEIfWhei7pmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/7aab20-06a4-4e1c-98e8-085c90211cd0/1/A5nswJFEFGzBdbWKTeQAx2Wa5PU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.112.0/24
Signature Algorithm: sha256WithRSAEncryption
18:a2:5d:6d:15:6e:57:66:24:f4:67:79:12:ae:1a:97:c4:be:
08:0b:f6:d9:e2:5f:26:99:22:d1:d0:a6:a3:ff:7b:9b:bc:ac:
a3:a7:5c:f6:c7:0f:db:58:ec:4c:2e:a0:b4:d6:fe:25:07:c0:
7a:a7:96:85:fb:3d:06:a5:84:8a:03:aa:90:47:c4:2c:35:d3:
51:fc:77:a1:2a:a8:57:89:62:58:ea:70:1d:7b:7c:80:5c:77:
ec:9d:eb:ba:c5:d5:37:de:6b:d7:55:70:90:79:85:c2:44:69:
b1:de:fa:c2:f8:d4:da:35:f9:f4:90:95:3c:bd:d3:ac:07:40:
c2:f7:7f:55:09:d2:ea:32:b9:3e:0d:d3:2e:03:35:1a:26:10:
7a:54:86:bd:e0:c3:6b:2f:6b:fc:cd:77:b7:5e:72:dd:5c:5c:
ed:93:08:a8:43:7e:e1:50:5f:34:28:74:35:aa:fa:b8:62:b9:
e7:c1:c4:65:93:38:ba:dd:35:54:b1:91:61:92:0a:76:8d:ec:
d4:0c:62:c6:d2:1b:d3:fe:f9:93:bc:68:a8:50:50:96:d6:02:
fa:e3:e6:cf:95:90:2c:8b:43:0a:0b:51:15:74:78:15:d7:7a:
c8:ed:4c:84:ff:6e:9d:c0:b3:8c:38:14:fc:82:5c:1c:c1:68:
53:54:23:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:38 2024 by rpki-client on console-ams.rpki-client.org