Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/5e7b4e-89d6-4042-8807-2c063cb0047a/1/SXO9_-iF1J2BLpkzylzpNI7CVBY.roa
File: SXO9_-iF1J2BLpkzylzpNI7CVBY.roa (raw, json)
Hash identifier: Qf9xRWt3lV91DB5sc7VVyPEfxbZzdJzRVbBM0Av+BUM=
Subject key identifier: 49:73:BD:FF:E8:85:D4:9D:81:2E:99:33:CA:5C:E9:34:8E:C2:54:16
Certificate issuer: /CN=96fd6452769b16bc946fe960e08c012d9491409d
Certificate serial: 04A08830
Authority key identifier: 96:FD:64:52:76:9B:16:BC:94:6F:E9:60:E0:8C:01:2D:94:91:40:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lv1kUnabFryUb-lg4IwBLZSRQJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/5e7b4e-89d6-4042-8807-2c063cb0047a/1/SXO9_-iF1J2BLpkzylzpNI7CVBY.roa
Signing time: Wed 20 Apr 2022 08:51:31 +0000
ROA not before: Wed 20 Apr 2022 08:51:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41130
IP address blocks: 195.189.156.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77629488 (0x4a08830)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96fd6452769b16bc946fe960e08c012d9491409d
Validity
Not Before: Apr 20 08:51:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4973bdffe885d49d812e9933ca5ce9348ec25416
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:85:c8:d5:f1:a7:75:76:c6:e9:6f:53:50:4b:
39:45:08:d2:ff:cd:61:29:45:71:50:e1:d1:e8:6c:
d0:d0:f8:12:8e:9a:4e:16:89:b9:1f:e4:55:a1:c7:
80:84:33:36:06:0f:2e:9b:22:86:e2:3e:8e:7b:d1:
56:27:e6:7a:1e:3f:86:a9:ed:47:c0:e0:2b:5a:02:
d9:e4:fa:fd:8d:f3:f9:90:d9:e0:fd:74:fb:01:d6:
bb:cb:a5:96:79:30:5d:1d:3f:47:2f:75:1a:c9:29:
54:87:bd:17:0b:37:fc:67:1b:b0:04:22:63:cf:a0:
6b:b3:db:de:59:ef:36:e6:7f:b8:e7:6d:3b:3e:16:
b9:5d:48:09:70:85:43:40:61:92:24:10:3f:4d:d6:
2d:64:5a:86:07:ba:ad:f9:e1:65:61:66:9c:9b:31:
62:56:54:52:49:34:02:28:41:d8:60:4a:40:ad:8c:
ef:b6:e8:b9:f1:c9:1d:8a:48:a6:19:93:07:ed:d7:
08:0b:c3:01:f7:77:6f:7d:39:9a:d4:ef:9d:66:f2:
87:bd:28:98:c5:11:8e:2e:c9:f6:5f:1c:55:a2:45:
2e:4e:5d:3a:62:bd:63:ac:93:37:73:4d:1f:1d:b0:
87:22:a6:5d:f0:0c:6c:41:0c:87:34:f2:d6:70:a4:
d4:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:73:BD:FF:E8:85:D4:9D:81:2E:99:33:CA:5C:E9:34:8E:C2:54:16
X509v3 Authority Key Identifier:
keyid:96:FD:64:52:76:9B:16:BC:94:6F:E9:60:E0:8C:01:2D:94:91:40:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lv1kUnabFryUb-lg4IwBLZSRQJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/5e7b4e-89d6-4042-8807-2c063cb0047a/1/SXO9_-iF1J2BLpkzylzpNI7CVBY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/5e7b4e-89d6-4042-8807-2c063cb0047a/1/lv1kUnabFryUb-lg4IwBLZSRQJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.189.156.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:90:f9:76:f9:b2:e8:e4:3d:30:b3:62:ad:99:a7:10:bf:58:
45:fb:dd:da:36:36:78:05:1d:3c:c8:ac:ab:34:d6:f7:fb:70:
7e:bd:29:3b:fd:9e:a8:22:68:e2:b2:87:97:8b:3b:cd:5e:62:
e2:ac:0f:a0:b1:11:48:38:7a:e4:7d:9c:4a:23:10:63:f9:6e:
7c:70:cb:30:a9:94:f4:35:c0:cf:26:31:18:23:af:c3:1d:33:
85:80:06:3f:0f:e5:a7:fd:d2:a6:41:4a:5e:89:fc:51:68:15:
7c:9c:f7:1e:fa:a6:6c:0e:df:d4:c4:16:d1:2c:79:89:59:c5:
17:47:ec:ca:78:89:65:5a:97:f7:d2:c8:6a:6e:21:9a:fe:54:
8b:cb:eb:27:27:ad:1c:f5:18:f0:6e:ad:cd:6b:c4:2e:40:27:
14:49:08:c6:5a:a4:5a:68:61:4a:08:5e:eb:81:a6:8d:47:12:
d2:a8:22:7e:7a:0d:47:16:3d:84:98:8d:71:20:a6:8f:36:66:
43:47:d6:4c:a4:e6:3e:23:1a:35:38:40:94:bb:f2:0c:3d:38:
43:e9:9e:d0:67:89:fd:d3:d3:54:4c:aa:bf:a3:59:a6:26:36:
a4:04:aa:fb:41:72:ba:77:42:92:aa:02:3b:59:dc:9b:e2:d3:
1c:88:01:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:18 2024 by rpki-client on console-ams.rpki-client.org