Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/YKQLAjDKWWNtqPhTqpdmU04YMGw.roa
File: YKQLAjDKWWNtqPhTqpdmU04YMGw.roa (raw, json)
Hash identifier: IUDy1X8DPoJcyCk0Wk3tvhrFBPak/DwR90wtgoKKs7g=
Subject key identifier: 60:A4:0B:02:30:CA:59:63:6D:A8:F8:53:AA:97:66:53:4E:18:30:6C
Certificate issuer: /CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Certificate serial: 01856ED4C54C7514968F3340514AF8AB9FA7
Authority key identifier: 3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/YKQLAjDKWWNtqPhTqpdmU04YMGw.roa
Signing time: Sun 01 Jan 2023 19:35:15 +0000
ROA not before: Sun 01 Jan 2023 19:35:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137409
IP address blocks: 195.8.201.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:c5:4c:75:14:96:8f:33:40:51:4a:f8:ab:9f:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Validity
Not Before: Jan 1 19:35:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=60a40b0230ca59636da8f853aa9766534e18306c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:04:0e:a7:12:5b:6e:80:de:d9:35:1a:b5:66:
d1:d6:22:c6:6f:ad:48:af:3b:63:ab:26:36:da:66:
2e:a3:5f:d3:1a:4b:e2:b5:bd:c5:fd:bb:2e:63:35:
e2:aa:a8:4f:a6:a4:97:0a:2e:02:27:32:69:2c:ef:
eb:24:66:2c:2f:03:64:21:a7:58:7c:ea:75:42:2b:
88:50:80:37:fb:d6:1f:83:8d:8b:c0:4a:da:6c:38:
bc:73:33:11:76:95:d4:d2:89:a8:19:f6:d7:f9:d1:
c3:90:22:4a:73:84:35:73:94:ca:e9:ec:79:82:78:
0d:00:ab:de:af:7c:87:af:cf:df:93:41:11:1f:77:
74:dd:c3:cf:a2:2a:56:57:14:a3:1c:8a:d2:27:ac:
55:05:bb:bb:ef:a1:70:8d:4c:86:42:42:24:0b:c6:
38:8c:00:1b:66:06:c6:66:24:62:a4:fa:59:15:ed:
e9:a2:3e:ae:76:85:b5:a6:40:53:5d:4d:0c:e9:fc:
54:d4:c9:fe:85:65:37:05:33:67:77:ec:a7:d0:99:
c5:57:87:73:01:6d:52:d0:0f:2f:96:f0:bf:af:d6:
2b:02:85:48:c9:80:6c:a8:b0:fc:cd:1e:e2:6d:3d:
ee:c3:03:4c:f6:9b:3e:ec:db:91:09:1a:7f:74:69:
c9:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:A4:0B:02:30:CA:59:63:6D:A8:F8:53:AA:97:66:53:4E:18:30:6C
X509v3 Authority Key Identifier:
keyid:3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/YKQLAjDKWWNtqPhTqpdmU04YMGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/PNzIvNtsdErN9D3XLWjSBFGhefY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.8.201.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:eb:ee:98:63:60:62:1a:b5:ee:ca:5d:9a:71:5a:e8:a1:69:
76:8e:f4:40:c4:08:9d:b1:d5:37:aa:f0:08:56:08:f6:04:ad:
1f:f5:a1:9f:6d:00:43:c9:4f:85:80:70:cb:f5:d2:ac:ff:e5:
d2:53:e2:67:8d:fd:29:fd:50:94:b2:10:0a:25:19:70:b8:48:
51:05:10:59:8a:c9:e3:53:76:62:95:b0:78:fe:08:36:97:67:
f5:02:f2:0e:e5:54:05:7f:ac:1d:7c:b9:d0:d6:71:af:83:e3:
fe:e4:32:e3:51:ad:02:ce:c2:30:ae:7d:e0:f0:33:07:23:11:
15:bf:a0:4a:d1:d1:43:a9:57:f3:ed:71:3f:52:ee:23:e0:8e:
25:77:a0:35:b0:1d:81:9a:9f:0b:cb:83:6c:5c:1a:02:44:a6:
e1:a8:6f:b5:26:7d:81:cd:c6:c6:6f:cf:3b:3a:10:d4:6b:b5:
64:aa:51:bb:58:0b:37:54:77:e5:f5:f5:b1:d5:02:f9:31:76:
85:89:9a:1e:84:fb:d8:3e:e8:ce:e5:31:ab:22:46:a6:d9:a4:
f2:34:33:c1:fa:ab:23:73:23:57:8a:36:45:6d:a3:4f:2a:c6:
fb:89:a0:a7:bc:61:db:59:f5:8a:e7:40:ea:17:b7:48:7f:cf:
d5:3a:8c:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 13:19:31 2023 by rpki-client on console-fra.rpki-client.org