Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/d11a1f-d2c0-4e04-94b6-5ad6a220bf4e/1/bXHJdXC-lHCDIINnHjC2_yJ7kxI.roa
File: bXHJdXC-lHCDIINnHjC2_yJ7kxI.roa (raw, json)
Hash identifier: HPjzl0YFpTrfwJnyuaLdgJCVo2H1u5vgwTHiuK2wZZs=
Subject key identifier: 6D:71:C9:75:70:BE:94:70:83:20:83:67:1E:30:B6:FF:22:7B:93:12
Certificate issuer: /CN=be96a9409d995e702b212c93f6d4c99a9db26e4a
Certificate serial: 0184D1E9A63343EA4B9BBA03B7F2704B4025
Authority key identifier: BE:96:A9:40:9D:99:5E:70:2B:21:2C:93:F6:D4:C9:9A:9D:B2:6E:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vpapQJ2ZXnArISyT9tTJmp2ybko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/d11a1f-d2c0-4e04-94b6-5ad6a220bf4e/1/bXHJdXC-lHCDIINnHjC2_yJ7kxI.roa
Signing time: Fri 02 Dec 2022 08:17:41 +0000
ROA not before: Fri 02 Dec 2022 08:17:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1759
IP address blocks: 195.244.64.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d1:e9:a6:33:43:ea:4b:9b:ba:03:b7:f2:70:4b:40:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be96a9409d995e702b212c93f6d4c99a9db26e4a
Validity
Not Before: Dec 2 08:17:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d71c97570be9470832083671e30b6ff227b9312
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:0d:bf:96:9d:d5:e6:35:9f:da:92:44:b2:b5:
a1:37:90:01:d6:c5:6e:0f:05:d5:78:81:47:76:86:
63:1d:15:19:68:2b:dc:f9:db:48:6c:ae:74:7f:c2:
ba:68:ee:15:27:52:b5:97:77:cd:ca:a8:47:bf:f9:
9c:09:1e:a7:58:fe:50:09:d4:10:0f:8c:ff:d8:a1:
39:5c:72:d7:c9:a4:11:41:c5:f8:16:fe:f0:cd:2d:
bc:a6:57:a9:c6:3e:bd:46:89:63:2d:32:68:f1:9f:
98:18:15:e9:e6:2e:5c:7a:03:85:b7:44:46:15:f9:
3c:60:31:7c:bb:de:23:ab:61:53:4e:f8:81:6e:88:
e3:12:fc:8a:a4:6b:9c:ac:30:10:27:93:bc:3f:76:
69:aa:6f:46:ab:81:47:a6:ba:56:19:08:f2:c5:4d:
23:1a:d3:56:00:5c:30:15:5a:00:3c:67:0d:86:6b:
0d:1d:2f:94:8a:4b:d0:5f:29:4f:7d:b8:56:0b:0e:
7b:54:17:0a:85:7c:86:a9:e7:97:58:6c:40:9c:d8:
a5:d9:25:a8:91:27:a6:78:35:67:58:27:4b:73:8c:
a3:a6:c7:39:9b:ce:e7:c8:64:b7:32:f8:25:40:bd:
da:78:6a:88:9b:58:95:b8:67:14:c6:df:58:1c:1d:
13:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:71:C9:75:70:BE:94:70:83:20:83:67:1E:30:B6:FF:22:7B:93:12
X509v3 Authority Key Identifier:
keyid:BE:96:A9:40:9D:99:5E:70:2B:21:2C:93:F6:D4:C9:9A:9D:B2:6E:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vpapQJ2ZXnArISyT9tTJmp2ybko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/d11a1f-d2c0-4e04-94b6-5ad6a220bf4e/1/bXHJdXC-lHCDIINnHjC2_yJ7kxI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/d11a1f-d2c0-4e04-94b6-5ad6a220bf4e/1/vpapQJ2ZXnArISyT9tTJmp2ybko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.244.64.0/20
Signature Algorithm: sha256WithRSAEncryption
6e:dd:4b:c0:84:a5:f1:27:e4:c8:50:67:cd:06:9a:b4:e2:31:
14:e1:98:18:9a:c6:bf:2e:ad:29:48:65:d4:0e:97:5c:c3:53:
ee:0d:38:49:13:9d:f1:e4:d0:22:e8:ab:ab:b8:e5:1c:d1:b6:
2d:0d:e8:35:7a:ee:df:60:3c:3d:f7:8a:97:73:fd:87:f5:6d:
f1:da:53:04:ed:33:6d:ca:7c:c2:a1:4f:6b:79:aa:7a:b6:ee:
ce:8f:76:58:e3:8d:a0:25:01:8c:82:b8:a6:4b:b7:48:46:91:
6f:4b:79:c8:9c:6f:85:6c:f6:4b:be:39:20:66:4f:83:38:30:
f8:d4:9d:23:17:83:5d:3b:a6:df:4c:f6:91:53:4d:37:80:50:
41:bd:d8:14:28:51:e7:75:9c:d2:7b:7a:ab:22:e8:e1:0b:8a:
d7:2b:f2:c8:64:43:c6:e7:e1:db:a8:0b:11:a2:13:45:b9:94:
93:fb:5d:9f:5c:54:8b:94:dc:ac:e7:d1:8d:b5:07:43:9f:eb:
67:c5:d5:13:e1:08:4e:27:ad:1d:04:e9:aa:8c:03:51:87:84:
fd:db:47:c3:1e:6c:3a:dd:4d:6f:23:0b:6d:39:46:57:06:bb:
19:94:e1:39:99:50:4b:45:d2:58:91:46:3a:13:ee:2d:e8:fd:
21:7c:a2:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:40 2024 by rpki-client on console-fra.rpki-client.org