Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/pIeg7z_TYgzx3dVacAgV1w_kv00.roa
File: pIeg7z_TYgzx3dVacAgV1w_kv00.roa (raw, json)
Hash identifier: UcDt0kqIajeFjpavtkx+WUiJveP9MENkRnC9oEWZiLQ=
Subject key identifier: A4:87:A0:EF:3F:D3:62:0C:F1:DD:D5:5A:70:08:15:D7:0F:E4:BF:4D
Certificate issuer: /CN=cf640b02311376dc96eebfeca755c3b0061140ec
Certificate serial: 01856DD4058BA2EC3A30B97B674FE66EC1AD
Authority key identifier: CF:64:0B:02:31:13:76:DC:96:EE:BF:EC:A7:55:C3:B0:06:11:40:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2QLAjETdtyW7r_sp1XDsAYRQOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/pIeg7z_TYgzx3dVacAgV1w_kv00.roa
Signing time: Sun 01 Jan 2023 14:54:49 +0000
ROA not before: Sun 01 Jan 2023 14:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20264
IP address blocks: 83.98.198.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:d4:05:8b:a2:ec:3a:30:b9:7b:67:4f:e6:6e:c1:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf640b02311376dc96eebfeca755c3b0061140ec
Validity
Not Before: Jan 1 14:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a487a0ef3fd3620cf1ddd55a700815d70fe4bf4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a5:07:2e:df:db:04:55:8d:c9:89:d4:cc:0c:
1b:bd:50:b6:03:57:d3:53:7e:1d:ab:dd:1d:ef:82:
90:30:06:ca:ee:f9:4d:ea:5e:2d:fa:bf:58:90:6b:
db:5e:7f:21:73:a8:d8:8c:e9:5c:da:6b:5a:18:20:
31:7e:5b:99:1f:e8:f2:04:de:b4:92:4c:42:08:66:
05:fe:96:fa:99:f3:5b:d5:01:03:31:5c:92:36:93:
ce:5d:9a:69:26:f2:27:bb:da:90:9a:be:0c:68:dd:
f1:e2:6d:fa:96:c0:e9:e9:b7:28:53:01:06:9d:13:
fa:59:55:00:1e:4c:c8:3c:64:b4:0f:15:47:76:d1:
3f:88:61:7b:2f:0e:45:0f:9c:91:a0:53:46:dc:ac:
be:f1:63:a1:c5:a6:b8:74:73:7e:31:41:78:52:ea:
eb:e2:63:61:ab:cf:e0:c8:69:da:03:15:44:64:5c:
52:21:46:f3:80:17:52:10:45:23:f2:12:3b:44:b6:
e1:09:10:cb:c1:17:0f:49:15:35:cd:9f:5d:37:52:
7e:b0:46:a2:d7:af:71:21:7c:7c:cb:32:e3:4f:81:
f9:43:45:69:9e:9d:72:97:08:20:d3:a0:8b:77:fa:
91:5f:6b:eb:81:66:8f:a9:c2:ac:83:a0:72:21:1e:
0f:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:87:A0:EF:3F:D3:62:0C:F1:DD:D5:5A:70:08:15:D7:0F:E4:BF:4D
X509v3 Authority Key Identifier:
keyid:CF:64:0B:02:31:13:76:DC:96:EE:BF:EC:A7:55:C3:B0:06:11:40:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2QLAjETdtyW7r_sp1XDsAYRQOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/pIeg7z_TYgzx3dVacAgV1w_kv00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/z2QLAjETdtyW7r_sp1XDsAYRQOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.98.198.0/24
Signature Algorithm: sha256WithRSAEncryption
68:ff:52:69:ca:ab:2e:0a:00:84:bc:79:4b:78:98:48:02:c0:
4a:e1:a3:0e:2e:0d:fc:70:74:90:7e:0e:01:6a:47:92:74:dc:
c4:72:ae:9e:75:7b:fd:23:ed:49:e9:f7:76:e0:b8:0f:52:60:
d1:0c:8a:c2:cb:ca:a6:28:30:11:01:76:59:3c:6f:ac:d1:fe:
aa:e7:83:96:a2:ba:a8:5e:f3:e9:5e:7c:16:c4:4c:7c:8f:af:
9a:69:18:4d:80:2e:9b:19:5b:60:62:01:88:96:5d:ca:17:e8:
e5:60:90:0e:8b:9a:3d:47:90:64:d6:54:0d:a0:8a:a4:3b:b2:
28:77:c0:6d:57:fe:6b:cd:fb:ba:e4:bf:f6:0f:4a:9a:8e:e5:
61:b3:da:91:3c:0d:9d:33:cf:c7:e7:bc:11:d7:0a:cc:ab:e0:
4e:2c:08:ba:81:da:49:10:fd:15:df:7d:c8:9f:4c:e0:81:b8:
d0:bb:f5:f5:cd:33:f6:25:95:6f:12:b7:9e:14:9d:5c:87:08:
2c:d3:ad:ba:9b:6c:1d:2f:24:f9:ba:d2:66:1d:14:62:52:4e:
7c:b6:ab:40:c2:16:6b:04:d9:bf:48:0e:63:67:6d:f3:b7:29:
a0:70:19:e4:c0:66:00:df:67:60:e4:76:5b:49:0b:3e:bb:f8:
bb:eb:e3:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:57 2024 by rpki-client on console-ams.rpki-client.org