Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/7aab20-06a4-4e1c-98e8-085c90211cd0/1/tFzeBgPiuDjrsoUl0Di-k0paDiU.roa
File: tFzeBgPiuDjrsoUl0Di-k0paDiU.roa (raw, json)
Hash identifier: 8NpT7quX8J8TP83Go1WBSHMvPmYc18J6dMCjSpROTpk=
Subject key identifier: B4:5C:DE:06:03:E2:B8:38:EB:B2:85:25:D0:38:BE:93:4A:5A:0E:25
Certificate issuer: /CN=0399ecc09144146cc175b58a4de400c7659ae4f5
Certificate serial: 018B72A063CAB331609A8C98A56179641714
Authority key identifier: 03:99:EC:C0:91:44:14:6C:C1:75:B5:8A:4D:E4:00:C7:65:9A:E4:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A5nswJFEFGzBdbWKTeQAx2Wa5PU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/7aab20-06a4-4e1c-98e8-085c90211cd0/1/tFzeBgPiuDjrsoUl0Di-k0paDiU.roa
Signing time: Fri 27 Oct 2023 19:33:15 +0000
ROA not before: Fri 27 Oct 2023 19:33:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 93.95.112.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:72:a0:63:ca:b3:31:60:9a:8c:98:a5:61:79:64:17:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0399ecc09144146cc175b58a4de400c7659ae4f5
Validity
Not Before: Oct 27 19:33:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b45cde0603e2b838ebb28525d038be934a5a0e25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3a:2c:2d:58:dc:75:f7:2b:27:5a:d1:f1:8f:
3b:dd:e9:a5:19:76:2a:ac:87:49:5a:ee:fc:7c:da:
c7:0e:47:46:db:15:c6:fe:7b:17:fa:03:9d:40:ba:
8c:b8:7f:ab:85:45:8b:79:f6:53:f8:d8:12:ea:24:
26:f8:fd:d0:73:e4:a5:a1:cd:85:83:be:02:62:61:
13:8e:4c:63:19:d8:df:51:b7:41:84:c8:e2:2e:d2:
08:60:7a:22:ab:0b:ed:3a:cd:6b:32:40:de:e1:93:
1d:0c:01:ea:d9:eb:cc:a4:95:70:14:0a:78:c0:10:
e2:17:70:fd:e0:d0:e2:af:e1:17:f9:e1:64:5b:71:
7d:e1:85:89:90:22:4a:16:60:42:e6:17:2c:fb:ae:
8d:6d:f1:8c:5e:38:1d:73:81:60:4e:c7:32:b7:5d:
a8:5c:c3:aa:14:01:8c:24:01:33:61:e5:3e:1d:89:
e0:2b:fa:01:ac:00:5f:28:d6:f3:34:a6:e2:a0:5e:
23:9e:7d:63:4c:e9:f7:35:60:55:9e:c0:c6:3c:09:
1c:d0:83:86:09:2b:34:40:b4:01:a8:a8:05:0b:cb:
1a:c7:e6:6a:ad:2b:b1:d8:9c:3e:c9:1a:0d:0b:b3:
bb:04:b6:48:d4:37:e6:0e:f5:44:74:a9:71:42:49:
6e:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:5C:DE:06:03:E2:B8:38:EB:B2:85:25:D0:38:BE:93:4A:5A:0E:25
X509v3 Authority Key Identifier:
keyid:03:99:EC:C0:91:44:14:6C:C1:75:B5:8A:4D:E4:00:C7:65:9A:E4:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A5nswJFEFGzBdbWKTeQAx2Wa5PU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/7aab20-06a4-4e1c-98e8-085c90211cd0/1/tFzeBgPiuDjrsoUl0Di-k0paDiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/7aab20-06a4-4e1c-98e8-085c90211cd0/1/A5nswJFEFGzBdbWKTeQAx2Wa5PU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.112.0/24
Signature Algorithm: sha256WithRSAEncryption
00:55:7e:b9:e7:dc:e0:e2:4a:93:fc:0e:22:45:a7:aa:42:62:
6f:c3:28:32:5d:15:f2:82:b6:97:e0:6b:f6:08:97:f4:c0:bd:
eb:0f:1f:e8:f6:ba:b2:b9:89:75:58:03:d1:ba:81:f9:4f:a1:
ed:d8:81:0f:c3:1d:9a:e7:67:d4:84:1d:95:c5:b8:be:9c:d6:
8d:bc:ae:d0:4c:09:b9:d6:54:18:20:59:7d:ca:35:c6:34:5e:
89:97:73:2d:e0:bd:7b:db:61:02:92:34:95:4e:32:6f:80:da:
75:52:de:02:5b:c3:75:e8:66:39:1b:67:ff:64:6e:f0:29:e1:
c9:b8:2a:cc:3b:6b:bc:aa:0c:d2:51:4e:47:70:4c:7b:3a:cc:
ee:c9:5a:c3:61:37:0a:bd:c1:9b:af:3a:04:ca:8d:85:8b:7d:
ea:dc:50:65:01:e9:f0:64:77:61:b4:f5:53:71:37:71:f2:fc:
bc:e7:83:7f:0a:39:92:bc:f0:42:40:70:92:eb:8e:94:dc:94:
68:7a:40:3e:1c:2d:fb:37:19:ff:dd:10:31:b6:54:af:26:b1:
de:85:1c:d2:b2:b3:11:a3:1a:41:34:00:6d:0f:f9:93:72:f1:
75:d2:2f:82:10:18:b0:7a:af:b6:e1:f7:09:87:17:71:ed:8d:
93:0d:75:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:40 2024 by rpki-client on console-fra.rpki-client.org