Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/473f1b-fcbb-420c-8c5c-a30b81da5cee/1/NtiOgv9jGNzBi-DitDTH7DaTGk0.roa
File: NtiOgv9jGNzBi-DitDTH7DaTGk0.roa (raw, json)
Hash identifier: ojfvSRPbzOAHwQl8L3tBNTIFolW8HS9b6KwvYwmExUg=
Subject key identifier: 36:D8:8E:82:FF:63:18:DC:C1:8B:E0:E2:B4:34:C7:EC:36:93:1A:4D
Certificate issuer: /CN=61aaf97d7a8eafb78152c4d575a2f96b04e3d9d0
Certificate serial: 01857230D90062EFCC86F9F6A1D09932E42C
Authority key identifier: 61:AA:F9:7D:7A:8E:AF:B7:81:52:C4:D5:75:A2:F9:6B:04:E3:D9:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yar5fXqOr7eBUsTVdaL5awTj2dA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/473f1b-fcbb-420c-8c5c-a30b81da5cee/1/NtiOgv9jGNzBi-DitDTH7DaTGk0.roa
Signing time: Mon 02 Jan 2023 11:14:41 +0000
ROA not before: Mon 02 Jan 2023 11:14:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2200
IP address blocks: 134.59.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:30:d9:00:62:ef:cc:86:f9:f6:a1:d0:99:32:e4:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61aaf97d7a8eafb78152c4d575a2f96b04e3d9d0
Validity
Not Before: Jan 2 11:14:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=36d88e82ff6318dcc18be0e2b434c7ec36931a4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f1:d9:0d:b3:ae:43:0a:d2:cd:38:29:ca:45:
32:24:39:de:55:a8:74:75:bc:4f:5d:4a:0d:67:68:
b3:55:05:70:43:a1:85:2a:63:c2:e0:50:cd:59:af:
2d:5b:86:a3:3f:14:33:ff:c2:62:35:7e:2c:4d:c5:
ef:c3:4a:d0:23:56:ba:8d:35:9b:d5:31:70:f0:08:
f0:92:e8:5f:ff:7e:af:85:56:18:de:7d:bd:f8:d9:
aa:cb:e5:08:e1:3d:f5:ba:ba:6d:e3:1d:2e:83:db:
55:e5:6c:9c:9f:96:ae:2d:cd:ed:aa:d4:94:52:fc:
f4:c7:a9:40:97:a5:b3:b0:08:80:01:6c:85:ac:56:
d8:cf:c0:bb:ce:10:03:17:1a:f8:05:9d:a2:d8:96:
fb:fd:df:12:1d:bb:8a:ee:88:f6:58:67:dc:51:c0:
47:3b:e1:64:8c:e8:64:8f:e9:7e:43:46:78:9a:7b:
91:4c:3c:5f:04:ec:80:bf:b0:74:08:b2:46:a3:90:
4b:ba:56:51:e7:b9:27:5f:3d:af:a0:c8:f1:1e:5e:
a7:fb:10:4b:a5:a0:29:dc:c5:1f:de:a5:02:69:af:
e8:00:1a:9f:d0:93:03:50:31:58:a9:0c:52:ba:8a:
34:66:6f:4f:1a:89:98:47:82:9a:8b:d5:e4:af:45:
4e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:D8:8E:82:FF:63:18:DC:C1:8B:E0:E2:B4:34:C7:EC:36:93:1A:4D
X509v3 Authority Key Identifier:
keyid:61:AA:F9:7D:7A:8E:AF:B7:81:52:C4:D5:75:A2:F9:6B:04:E3:D9:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yar5fXqOr7eBUsTVdaL5awTj2dA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/473f1b-fcbb-420c-8c5c-a30b81da5cee/1/NtiOgv9jGNzBi-DitDTH7DaTGk0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/473f1b-fcbb-420c-8c5c-a30b81da5cee/1/Yar5fXqOr7eBUsTVdaL5awTj2dA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.59.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b1:95:5c:db:24:74:80:7f:b5:68:aa:cf:24:c6:2f:61:a5:69:
c2:99:16:09:b6:48:8b:c8:7c:40:f8:d0:ef:19:d5:fb:23:8d:
00:9f:bb:72:00:b5:bd:c4:69:e6:20:e4:3a:ff:d5:8e:2b:51:
47:d5:a1:e6:91:1b:f2:7f:6a:86:6a:52:d7:b6:4b:f9:2c:8b:
8b:2e:f1:61:3a:8b:fa:c1:ae:56:ba:1f:b9:a7:d4:a0:87:26:
a2:65:a3:34:2e:f0:f6:d7:aa:c4:fc:de:c7:f9:56:b2:9e:e9:
17:30:96:53:dd:92:2f:76:3d:c4:0b:23:24:4c:18:52:3e:7e:
18:02:06:f4:c4:03:e3:1f:3f:9a:67:78:c0:d4:c7:a3:fa:94:
15:53:46:34:37:13:dd:8c:a0:e0:37:fb:86:f3:83:6f:0e:7d:
a7:84:fd:dd:b8:87:15:dc:be:65:95:aa:c7:5e:c8:12:5b:d5:
be:af:ca:6c:3a:9c:ae:c9:20:f2:2a:a8:11:bf:8a:b0:79:33:
6a:b8:de:c6:3e:38:09:a5:95:4f:29:72:42:80:bc:e8:d6:da:
46:da:78:0a:7e:3c:a8:c1:1d:35:39:df:5e:6a:2a:32:ec:45:
39:c2:be:08:72:3e:ba:aa:41:af:3e:f9:82:fa:96:b4:1e:ba:
90:f3:8a:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 20 10:43:47 2023 by rpki-client on console-fra.rpki-client.org