Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/d1cc24-a999-40f7-bfc1-7a1e90601167/1/CkjzUJM2lagBIbkfToLU6pE-ksE.roa
File: CkjzUJM2lagBIbkfToLU6pE-ksE.roa (raw, json)
Hash identifier: /Lkai0Rb1mLQC6t1f2VQUqmqWsK25zvLJ99yESu3w0E=
Subject key identifier: 0A:48:F3:50:93:36:95:A8:01:21:B9:1F:4E:82:D4:EA:91:3E:92:C1
Certificate issuer: /CN=97d34b5d066be1dd041ecddd6a597da84c0fade3
Certificate serial: 058DD033
Authority key identifier: 97:D3:4B:5D:06:6B:E1:DD:04:1E:CD:DD:6A:59:7D:A8:4C:0F:AD:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l9NLXQZr4d0EHs3dall9qEwPreM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/d1cc24-a999-40f7-bfc1-7a1e90601167/1/CkjzUJM2lagBIbkfToLU6pE-ksE.roa
Signing time: Sat 01 Jan 2022 14:00:54 +0000
ROA not before: Sat 01 Jan 2022 14:00:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47787
IP address blocks: 195.158.248.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93179955 (0x58dd033)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97d34b5d066be1dd041ecddd6a597da84c0fade3
Validity
Not Before: Jan 1 14:00:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a48f350933695a80121b91f4e82d4ea913e92c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1b:9e:2b:3f:6d:4a:55:d7:fd:18:cc:99:a5:
9b:5e:4d:9b:52:4b:d4:57:be:e3:b0:09:91:70:3e:
63:bb:97:21:18:67:2d:06:6e:7e:86:b1:1c:2c:9d:
e1:d1:2d:40:c6:46:d3:49:ce:28:20:0e:0b:0a:5d:
17:c0:f0:bf:8f:4b:99:a6:ab:83:d9:56:db:72:0c:
ff:0b:32:bb:89:6d:b5:b3:66:ab:8a:7b:1d:bc:27:
f0:e7:ec:32:70:85:ce:29:29:7d:ca:8a:53:86:5c:
4b:02:fb:09:1e:80:eb:3e:e2:e1:c2:f9:7b:42:b1:
31:84:fb:c6:96:04:b1:ce:59:80:35:92:1a:4f:4e:
73:38:fb:71:ae:cc:de:7e:6e:e7:58:1c:58:77:ca:
b7:0e:e5:37:05:33:d4:c3:06:aa:3e:65:8e:e7:23:
aa:a7:f6:f9:59:1e:47:c0:bc:bf:8d:02:42:48:00:
27:f6:54:ed:bd:10:5c:1c:5c:79:e8:a4:bf:e6:aa:
c9:ab:74:e1:fa:8d:4f:fa:68:f1:c7:d3:a7:dd:9d:
70:d4:31:3c:c4:c5:ac:75:b2:f1:cc:91:04:3b:c6:
f5:62:79:bd:ac:4d:b9:1d:0b:7e:b3:f2:42:dd:50:
09:bf:96:1a:94:d4:42:e1:ea:02:68:f1:74:e1:01:
1a:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:48:F3:50:93:36:95:A8:01:21:B9:1F:4E:82:D4:EA:91:3E:92:C1
X509v3 Authority Key Identifier:
keyid:97:D3:4B:5D:06:6B:E1:DD:04:1E:CD:DD:6A:59:7D:A8:4C:0F:AD:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l9NLXQZr4d0EHs3dall9qEwPreM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/d1cc24-a999-40f7-bfc1-7a1e90601167/1/CkjzUJM2lagBIbkfToLU6pE-ksE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/d1cc24-a999-40f7-bfc1-7a1e90601167/1/l9NLXQZr4d0EHs3dall9qEwPreM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.158.248.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:5e:0e:81:95:8f:a5:b3:f8:f7:4f:0c:8b:9a:d0:06:56:e7:
1f:47:03:9e:cf:b4:ed:62:ea:25:73:be:b2:94:b2:28:df:74:
36:41:2d:8b:ae:25:a0:53:f8:d5:22:66:17:f9:37:be:27:9e:
0c:19:d7:ab:fc:a7:62:d0:72:ae:dc:79:2f:b7:8d:a5:c7:d6:
27:36:2e:e4:16:02:80:9e:7a:2d:ed:46:01:1b:17:f9:1b:7a:
dd:d9:ca:64:e8:de:73:e3:d0:d8:b8:13:1a:eb:98:e1:f6:98:
2b:24:cc:18:42:57:74:aa:66:76:6f:e5:86:0c:f9:8f:2d:69:
00:4f:51:76:07:a8:8c:c8:ed:c3:8e:79:fb:2f:84:c8:31:34:
39:00:0a:92:a9:95:49:25:3d:10:81:f0:45:5d:bc:50:3b:c9:
0b:48:8e:3d:5a:f4:f3:9d:49:8a:dd:c0:1a:87:dd:f3:87:38:
33:49:93:d5:53:96:28:1b:c2:bc:ca:aa:1d:e7:45:c7:63:14:
57:83:5c:2f:51:13:ad:9c:41:a3:51:a5:93:73:3e:42:0b:df:
9d:dc:ea:11:0a:cb:32:51:e8:3a:65:ea:2b:9c:b9:f7:47:7b:
30:a0:1e:13:fa:1b:9b:9e:9e:11:f8:65:b2:c6:3f:40:91:5d:
b2:37:30:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:10 2024 by rpki-client on console-ams.rpki-client.org