Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/6768f8-113e-4c75-a82b-0cf60574cf17/1/hAbDwQMe7AG_oAVNR_K1jf0SonQ.roa
File: hAbDwQMe7AG_oAVNR_K1jf0SonQ.roa (raw, json)
Hash identifier: V6PTvmXBIziZIqlaCcdK8R9S3RQBNBNJYz0Bso0O5Zs=
Subject key identifier: 84:06:C3:C1:03:1E:EC:01:BF:A0:05:4D:47:F2:B5:8D:FD:12:A2:74
Certificate issuer: /CN=29cff291a03badab85e3647aa2350f13c5f26661
Certificate serial: 018CC42551B28A5C8BF4339F35F59E58DE0C
Authority key identifier: 29:CF:F2:91:A0:3B:AD:AB:85:E3:64:7A:A2:35:0F:13:C5:F2:66:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kc_ykaA7rauF42R6ojUPE8XyZmE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/6768f8-113e-4c75-a82b-0cf60574cf17/1/hAbDwQMe7AG_oAVNR_K1jf0SonQ.roa
Signing time: Mon 01 Jan 2024 08:30:29 +0000
ROA not before: Mon 01 Jan 2024 08:30:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 22773
IP address blocks: 195.64.121.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:51:b2:8a:5c:8b:f4:33:9f:35:f5:9e:58:de:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29cff291a03badab85e3647aa2350f13c5f26661
Validity
Not Before: Jan 1 08:30:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8406c3c1031eec01bfa0054d47f2b58dfd12a274
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:45:23:e1:23:f1:47:2f:b3:d8:62:f1:08:81:
62:2f:1d:b6:58:e6:a5:c0:b6:4f:ae:25:29:da:a9:
5c:64:2e:fd:cf:a2:a2:4e:e1:d3:25:0b:69:f2:36:
0b:2c:2a:fe:54:7b:54:d1:74:a4:48:f1:2c:7a:b8:
70:cc:83:6c:cd:0b:f2:c7:94:52:66:42:6c:aa:ef:
70:97:7f:65:06:cd:a2:c3:02:2a:f6:41:6b:a2:28:
5c:db:62:21:49:bc:b0:6b:df:d8:9a:c0:eb:7d:d0:
36:9a:43:66:cd:ac:90:07:8b:b5:5f:d6:c0:d2:82:
21:b3:87:19:f6:00:44:d7:93:75:bc:3d:4d:d4:db:
aa:17:ee:5e:e1:cd:7f:96:92:5b:79:c7:4d:e4:66:
52:19:fb:fa:cc:c0:81:82:a8:fe:ef:c4:ae:48:d1:
05:3b:1b:72:11:a3:77:b0:df:56:03:4f:f7:8b:24:
74:2e:06:bf:48:64:02:a8:e6:7b:9b:92:43:4d:64:
e0:38:7b:e8:42:15:20:65:11:c2:64:67:69:31:de:
ad:0f:19:ad:31:fc:c1:04:35:b0:70:06:1c:ad:27:
69:98:22:fb:34:f2:68:ec:00:23:01:b1:0f:75:2d:
3e:3a:94:7c:a0:8f:97:60:16:9f:89:65:2f:a2:de:
44:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:06:C3:C1:03:1E:EC:01:BF:A0:05:4D:47:F2:B5:8D:FD:12:A2:74
X509v3 Authority Key Identifier:
keyid:29:CF:F2:91:A0:3B:AD:AB:85:E3:64:7A:A2:35:0F:13:C5:F2:66:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kc_ykaA7rauF42R6ojUPE8XyZmE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6768f8-113e-4c75-a82b-0cf60574cf17/1/hAbDwQMe7AG_oAVNR_K1jf0SonQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6768f8-113e-4c75-a82b-0cf60574cf17/1/Kc_ykaA7rauF42R6ojUPE8XyZmE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.121.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:ec:48:86:8d:f0:bb:4f:2d:ab:6b:e5:39:f3:0b:0e:f6:49:
f2:51:56:cd:27:80:e8:66:b1:4f:c4:52:30:59:b4:7d:52:0c:
29:99:ba:21:1f:be:b7:20:cf:38:e3:a2:61:77:b2:37:e7:b3:
f1:c0:1f:07:c6:11:6c:f1:ae:d5:59:8f:b6:6c:14:8a:47:e1:
f1:c0:50:e0:73:69:84:87:ea:e5:3a:9e:8a:43:4c:a1:0d:4c:
2c:d7:2a:7a:f4:62:8f:39:82:10:c7:b2:5f:c6:27:fc:d7:3a:
e4:7c:dd:e2:76:e1:bc:46:c5:63:42:8b:91:a9:c6:55:69:70:
0d:b0:06:3f:7c:ba:14:58:37:80:da:42:ff:e9:32:a7:b6:90:
75:55:ce:4b:52:c5:83:07:a9:99:67:9c:57:d6:24:8e:f4:02:
a0:72:dd:0a:a8:bb:bf:9c:f4:60:00:38:0f:a6:0c:09:eb:cb:
64:56:81:9e:01:f1:d3:48:d5:28:d3:a3:2a:52:21:cf:c4:bb:
b9:a0:1b:e3:47:54:41:2e:dd:e5:b1:8d:97:c7:7b:0f:92:d6:
ef:37:27:d2:3f:25:41:00:b0:a0:12:5d:3d:b6:3e:59:ae:d5:
d1:a0:25:24:7e:5d:3d:35:92:6a:54:e7:d3:38:3b:e5:c8:ca:
6b:bd:d6:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 14:03:28 2024 by rpki-client on console-fra.rpki-client.org