Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/6768f8-113e-4c75-a82b-0cf60574cf17/1/F3zgk8kQvC4z77bPprRcMNBXRaU.roa
File: F3zgk8kQvC4z77bPprRcMNBXRaU.roa (raw, json)
Hash identifier: S6ggbbZK/yStnwefqZ+UsaASwOmluBwVbLdfPJnNT9c=
Subject key identifier: 17:7C:E0:93:C9:10:BC:2E:33:EF:B6:CF:A6:B4:5C:30:D0:57:45:A5
Certificate issuer: /CN=29cff291a03badab85e3647aa2350f13c5f26661
Certificate serial: 01821F8B0FCF30005A8C776328FE61C1825B
Authority key identifier: 29:CF:F2:91:A0:3B:AD:AB:85:E3:64:7A:A2:35:0F:13:C5:F2:66:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kc_ykaA7rauF42R6ojUPE8XyZmE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/6768f8-113e-4c75-a82b-0cf60574cf17/1/F3zgk8kQvC4z77bPprRcMNBXRaU.roa
Signing time: Thu 21 Jul 2022 06:56:23 +0000
ROA not before: Thu 21 Jul 2022 06:56:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 195.64.121.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1f:8b:0f:cf:30:00:5a:8c:77:63:28:fe:61:c1:82:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29cff291a03badab85e3647aa2350f13c5f26661
Validity
Not Before: Jul 21 06:56:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=177ce093c910bc2e33efb6cfa6b45c30d05745a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:28:88:fe:44:e0:8a:97:eb:0e:ce:9b:52:41:
77:43:57:56:b6:a2:fe:c0:a3:c7:06:3f:f2:98:b5:
32:36:b3:cb:05:26:f7:ec:98:5a:5a:bb:02:6a:5d:
46:0c:29:1e:40:d9:fe:52:c7:06:85:43:e1:e3:bf:
18:3e:98:7e:9c:82:f2:5e:23:39:36:34:86:51:d1:
59:ef:09:39:ab:03:46:23:d9:ac:af:2a:8d:59:f9:
1b:1c:92:6b:a5:2f:d4:51:05:fb:a4:14:e2:43:56:
58:fa:1b:0d:44:77:45:31:53:6b:3a:e5:35:89:a9:
15:7d:6c:fb:a6:b4:1f:41:67:ed:2c:23:be:3e:01:
6d:b9:b5:58:55:53:45:33:9e:1d:0c:a3:b6:44:b8:
22:10:d0:67:fc:30:ae:01:07:11:ee:53:38:fd:4d:
b0:a5:4c:c9:2d:bb:9a:43:7c:3b:99:c0:f6:b7:88:
1d:d4:c8:e7:8b:d0:b9:49:7a:c5:40:03:30:81:c4:
98:90:3f:4f:ca:d3:1d:bc:94:e0:39:f0:96:cf:e5:
b9:0c:30:7a:9d:bc:27:b9:5c:88:c5:38:36:94:4a:
1f:2a:09:ac:67:da:37:7e:a4:7d:31:37:60:5a:a1:
d0:0f:62:08:d3:97:97:54:7b:6c:3b:75:27:19:fd:
75:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:7C:E0:93:C9:10:BC:2E:33:EF:B6:CF:A6:B4:5C:30:D0:57:45:A5
X509v3 Authority Key Identifier:
keyid:29:CF:F2:91:A0:3B:AD:AB:85:E3:64:7A:A2:35:0F:13:C5:F2:66:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kc_ykaA7rauF42R6ojUPE8XyZmE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6768f8-113e-4c75-a82b-0cf60574cf17/1/F3zgk8kQvC4z77bPprRcMNBXRaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6768f8-113e-4c75-a82b-0cf60574cf17/1/Kc_ykaA7rauF42R6ojUPE8XyZmE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.121.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:b5:f2:1f:f5:73:9a:e0:4c:f8:5e:75:07:83:50:32:dc:ad:
a5:4b:6f:29:5a:c5:93:a5:92:47:b8:bd:be:22:87:5f:80:be:
23:ba:b4:ed:23:04:e1:4e:e6:e2:80:b7:16:29:7c:8f:ea:0e:
08:2f:84:88:f9:44:8c:aa:6f:bd:e7:76:9f:d6:fb:b1:18:c6:
60:d4:ea:1a:44:43:4f:1e:2f:a1:c9:e3:a4:5a:e9:31:b7:e4:
dd:ef:d2:77:5d:8a:20:60:6a:4d:61:af:65:5e:0a:9a:04:80:
14:42:f7:64:5d:49:2a:84:f2:0f:97:08:73:72:11:d8:fb:84:
f6:91:99:54:93:ae:94:14:8f:38:29:fb:c4:44:f6:ff:65:43:
55:11:04:33:3a:85:be:bd:b0:15:f7:eb:2b:1e:3d:11:27:a8:
41:03:c0:0e:7b:93:a5:3b:3b:90:7b:30:8b:cf:e9:d9:5d:2b:
76:9e:30:e1:e0:2e:c3:f2:9b:0f:d1:3b:67:3c:b5:a1:93:7d:
18:ee:70:2d:5c:f4:3e:dc:70:56:0e:c3:e4:17:a0:fc:0b:10:
51:8b:21:fe:3d:bd:3f:f3:5c:99:78:d0:26:d7:ab:d1:8e:78:
a4:35:21:f0:6d:69:77:44:c3:35:fc:ed:05:67:06:5b:28:2d:
01:2a:d7:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:36 2024 by rpki-client on console-ams.rpki-client.org