Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/b1ff7b-b766-47c7-be0d-c0a7b7377eab/1/rONVMfoc5GbAp36XvlGxVHmeMOQ.roa
File: rONVMfoc5GbAp36XvlGxVHmeMOQ.roa (raw, json)
Hash identifier: aUGcSGOY8z4H3UxpbXFz+nt7OnLCrSIc9V6KcQY2OSY=
Subject key identifier: AC:E3:55:31:FA:1C:E4:66:C0:A7:7E:97:BE:51:B1:54:79:9E:30:E4
Certificate issuer: /CN=64347465bc925c8e756ddfaa609eda02cc52d031
Certificate serial: 018F3511E9327D7873EFEE20B634605754C8
Authority key identifier: 64:34:74:65:BC:92:5C:8E:75:6D:DF:AA:60:9E:DA:02:CC:52:D0:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZDR0ZbySXI51bd-qYJ7aAsxS0DE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/b1ff7b-b766-47c7-be0d-c0a7b7377eab/1/rONVMfoc5GbAp36XvlGxVHmeMOQ.roa
Signing time: Wed 01 May 2024 16:51:57 +0000
ROA not before: Wed 01 May 2024 16:51:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51396
IP address blocks: 85.114.120.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:35:11:e9:32:7d:78:73:ef:ee:20:b6:34:60:57:54:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64347465bc925c8e756ddfaa609eda02cc52d031
Validity
Not Before: May 1 16:51:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ace35531fa1ce466c0a77e97be51b154799e30e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:db:61:ab:6b:64:e7:79:b4:a5:03:46:6f:18:
bd:d6:10:d3:c3:bf:44:64:a5:5a:3b:b4:82:1b:5f:
6b:c3:31:55:03:b7:4e:32:19:5b:39:9b:0d:64:9a:
83:e6:cc:7a:40:96:0a:fc:bc:d0:4c:3a:14:8d:7f:
79:a7:80:24:d1:2c:42:27:17:37:72:55:26:6d:f1:
b4:3f:e6:4d:33:24:76:d0:8a:7b:a0:d3:8d:9b:f5:
49:2b:e4:a7:2f:2b:e9:2f:73:45:5b:e6:b3:9b:3c:
5b:69:65:28:1d:b5:bb:b2:11:35:8b:c8:b3:45:bb:
62:28:fd:97:bd:83:f2:bc:e1:05:60:02:ba:9f:74:
1e:1f:e3:89:17:5b:c8:53:78:61:fd:dc:ef:5e:b8:
db:1b:43:3e:8e:8f:87:f4:1b:b5:f2:4c:da:24:56:
56:c9:dc:7d:f3:7f:3b:98:e5:14:26:9d:89:a7:1e:
c2:4f:fe:84:1c:bc:5e:c2:ee:65:9e:c7:b2:7d:c0:
bc:e0:74:ae:e4:b8:dd:91:2e:27:26:de:ae:ff:cf:
14:49:cc:31:77:4f:44:b6:be:78:a1:fc:f3:ab:a6:
eb:c4:78:6b:67:3b:71:9b:c4:98:86:17:05:8b:cd:
34:94:7b:2f:ff:01:a0:a9:64:06:52:81:c5:66:a3:
bf:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:E3:55:31:FA:1C:E4:66:C0:A7:7E:97:BE:51:B1:54:79:9E:30:E4
X509v3 Authority Key Identifier:
keyid:64:34:74:65:BC:92:5C:8E:75:6D:DF:AA:60:9E:DA:02:CC:52:D0:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZDR0ZbySXI51bd-qYJ7aAsxS0DE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b1ff7b-b766-47c7-be0d-c0a7b7377eab/1/rONVMfoc5GbAp36XvlGxVHmeMOQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b1ff7b-b766-47c7-be0d-c0a7b7377eab/1/ZDR0ZbySXI51bd-qYJ7aAsxS0DE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.114.120.0/21
Signature Algorithm: sha256WithRSAEncryption
53:6c:ed:31:f9:29:41:24:2e:36:7b:bf:62:dc:17:00:3b:03:
6a:61:89:e6:20:60:be:7b:d5:8e:b3:ac:78:49:8d:ec:4b:91:
d5:c7:39:59:15:ae:53:f0:be:ad:52:02:da:4d:b3:8d:fc:1a:
d9:51:1e:54:fe:46:b5:19:f6:50:54:95:7d:42:8e:23:45:9d:
0e:b5:75:ee:23:b4:cb:5d:63:46:2b:76:40:26:6a:a7:1a:f0:
4c:a7:20:13:fa:b9:22:88:5b:24:99:33:53:c1:c9:c3:c6:6f:
2f:18:de:ef:7b:e3:df:72:0e:00:16:8f:3f:3a:c4:1a:94:59:
2d:bf:bb:76:c7:08:c8:2c:14:56:d9:bb:f9:08:80:de:18:14:
e2:b7:7a:5f:30:dd:e6:b3:dc:c7:51:98:be:30:c2:55:51:4b:
f2:85:d9:14:f3:6e:4d:3b:f2:bd:56:59:4e:ec:8d:2a:fb:ff:
25:b8:7c:ae:89:a1:a3:2c:21:27:fb:93:77:6e:30:e2:66:6b:
8a:86:79:2b:97:03:c5:03:4f:ce:1e:8d:a8:a2:d2:98:00:1e:
7f:f3:98:54:87:08:d6:5a:a0:49:9b:7c:f7:b3:bf:06:42:72:
a3:d9:aa:ed:4b:02:8c:72:08:c6:4d:6b:44:b5:ec:40:0d:35:
10:70:75:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 13 16:03:26 2024 by rpki-client on console-ams.rpki-client.org