Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/790303-3b6c-4daf-a31f-efb871d12e46/1/8sAlPfOlJUZo5VREJro6zabcTaU.roa
File: 8sAlPfOlJUZo5VREJro6zabcTaU.roa (raw, json)
Hash identifier: El+vnLA/+3u+3pTgRjds9ZYDVt+M8lw8MFzcQzEgaBo=
Subject key identifier: F2:C0:25:3D:F3:A5:25:46:68:E5:54:44:26:BA:3A:CD:A6:DC:4D:A5
Certificate issuer: /CN=9beaa3f4124ae4fb8d36c416a6b190026a9edb79
Certificate serial: 018CC5DC2658E795600A7339B991817BCDE9
Authority key identifier: 9B:EA:A3:F4:12:4A:E4:FB:8D:36:C4:16:A6:B1:90:02:6A:9E:DB:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m-qj9BJK5PuNNsQWprGQAmqe23k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/790303-3b6c-4daf-a31f-efb871d12e46/1/8sAlPfOlJUZo5VREJro6zabcTaU.roa
Signing time: Mon 01 Jan 2024 16:29:48 +0000
ROA not before: Mon 01 Jan 2024 16:29:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203020
IP address blocks: 213.217.10.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:26:58:e7:95:60:0a:73:39:b9:91:81:7b:cd:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9beaa3f4124ae4fb8d36c416a6b190026a9edb79
Validity
Not Before: Jan 1 16:29:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f2c0253df3a5254668e5544426ba3acda6dc4da5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:6b:ca:a5:90:b2:f3:ae:0a:7c:ea:0b:a2:33:
43:5e:b6:60:98:17:b9:e8:ea:45:33:90:5f:74:5a:
f6:05:cf:01:ba:4b:2e:21:21:d9:15:d2:4a:5c:07:
97:25:f7:f3:59:e7:10:fe:2a:1b:e4:f0:9b:38:77:
57:4b:81:56:4e:29:fa:8e:7f:ad:b9:2a:3d:0a:b9:
23:54:65:e1:79:11:db:3a:55:96:c2:5d:6c:e0:06:
eb:ba:7d:a2:e2:89:06:5e:ce:fd:7d:22:10:7a:21:
ac:00:d9:88:15:d7:bf:a5:c3:ac:47:11:72:aa:75:
79:45:18:7b:c3:eb:91:5a:ce:2a:6a:1f:69:77:1e:
37:83:8d:b8:86:fd:8c:db:ee:5a:1f:b6:29:02:24:
9c:17:68:8b:58:8c:2c:62:6d:9c:88:62:35:62:97:
f0:c1:4c:05:63:4e:87:f0:3e:e8:5e:8d:e1:80:dc:
38:59:55:22:d6:87:e3:89:56:c7:d1:4f:08:db:1f:
40:3b:2c:ba:75:d3:04:b1:f5:db:8a:fa:4a:f2:19:
5c:41:99:f8:a4:da:56:31:6d:88:b5:64:7f:ea:88:
20:6c:40:91:5d:ce:e9:45:8e:36:63:1c:c7:91:4e:
7f:9e:d0:9d:19:95:7d:76:78:2a:b6:3c:78:89:cc:
b6:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:C0:25:3D:F3:A5:25:46:68:E5:54:44:26:BA:3A:CD:A6:DC:4D:A5
X509v3 Authority Key Identifier:
keyid:9B:EA:A3:F4:12:4A:E4:FB:8D:36:C4:16:A6:B1:90:02:6A:9E:DB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m-qj9BJK5PuNNsQWprGQAmqe23k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/790303-3b6c-4daf-a31f-efb871d12e46/1/8sAlPfOlJUZo5VREJro6zabcTaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/790303-3b6c-4daf-a31f-efb871d12e46/1/m-qj9BJK5PuNNsQWprGQAmqe23k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.217.10.0/24
Signature Algorithm: sha256WithRSAEncryption
37:63:80:49:b9:ff:29:f0:3a:44:5f:66:a9:bf:6c:c8:24:7e:
2c:61:7f:81:ec:32:b8:73:95:53:ca:e5:3d:93:25:d8:df:ef:
58:8c:dd:31:9d:eb:29:f9:2d:f3:38:57:ab:5d:cc:be:d3:99:
3c:b4:49:0b:a9:75:02:4f:07:53:dc:f9:f1:83:62:99:dc:7a:
93:24:55:0c:51:4d:85:92:94:88:06:de:8d:7b:9f:5e:7b:1d:
c9:75:8f:92:40:a5:91:ff:39:d1:c7:98:8b:65:a0:8d:de:44:
fa:01:be:74:20:35:3c:64:16:1f:a7:74:07:56:cb:18:db:0a:
90:b8:67:a6:64:4e:2a:b3:b6:3f:fb:cf:ff:13:83:ac:a2:ef:
2a:5d:26:45:fc:de:ad:c3:36:11:75:1b:b5:c3:44:8e:79:b8:
a4:a0:43:0e:65:04:dc:1e:99:44:e6:c2:3f:75:22:d3:98:01:
7c:99:a2:5f:35:fa:30:b8:29:27:96:47:4c:68:5c:e6:6a:ba:
50:36:fe:fa:25:2e:d0:4a:41:b7:a8:30:06:62:d8:29:3a:a6:
eb:f0:d5:49:cd:fe:48:eb:60:36:4d:60:9f:66:03:04:6b:f9:
f3:46:62:3c:fe:4d:06:96:af:ce:66:61:af:8a:11:db:13:53:
9c:63:25:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 4 19:50:28 2024 by rpki-client on console-ams.rpki-client.org