Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/738b83-448e-44eb-8312-04a5f737e130/1/xSNmfZUoPU7-k3gMBeuApOYN0I0.roa
File: xSNmfZUoPU7-k3gMBeuApOYN0I0.roa (raw, json)
Hash identifier: /Dv+aP0QUEXEy9Kat/4/xMhMO7rJjGHwH6SgRQBUjhg=
Subject key identifier: C5:23:66:7D:95:28:3D:4E:FE:93:78:0C:05:EB:80:A4:E6:0D:D0:8D
Certificate issuer: /CN=95c2a097957d0138cf1ed1941f08fb494e7d89ad
Certificate serial: 01896478EDAC3EC64BE45145960C79A95896
Authority key identifier: 95:C2:A0:97:95:7D:01:38:CF:1E:D1:94:1F:08:FB:49:4E:7D:89:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lcKgl5V9ATjPHtGUHwj7SU59ia0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/738b83-448e-44eb-8312-04a5f737e130/1/xSNmfZUoPU7-k3gMBeuApOYN0I0.roa
Signing time: Mon 17 Jul 2023 15:29:53 +0000
ROA not before: Mon 17 Jul 2023 15:29:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 83.138.48.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:78:ed:ac:3e:c6:4b:e4:51:45:96:0c:79:a9:58:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95c2a097957d0138cf1ed1941f08fb494e7d89ad
Validity
Not Before: Jul 17 15:29:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c523667d95283d4efe93780c05eb80a4e60dd08d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:96:10:b4:3a:43:7d:9d:fd:8b:0f:2f:d3:72:
2b:7d:15:5b:38:55:33:c7:09:69:6d:61:69:be:1b:
1b:4e:26:7f:95:7e:47:ec:5b:7b:40:0d:a2:e7:5a:
18:4b:9e:4d:01:8d:60:77:36:0e:84:28:75:4a:da:
b4:a5:14:22:b4:9e:a0:5b:18:21:b5:0b:8d:26:98:
79:98:c5:81:4f:33:20:e5:24:88:54:a2:4d:d7:da:
b8:b9:60:5a:52:0d:df:31:a0:22:af:41:4c:6c:fa:
a3:b7:b5:dc:67:59:fc:7a:4d:23:aa:db:30:2d:8a:
01:e5:fe:b0:93:56:c2:ed:a0:f7:9e:25:f9:37:3a:
e3:3d:94:64:0a:bb:79:a2:49:71:21:d3:aa:72:98:
f4:df:46:27:8c:88:a9:80:7f:e0:89:82:f8:05:ec:
48:76:76:f7:22:e6:28:01:e8:65:be:06:d5:6a:bc:
05:f7:22:a5:d7:19:8a:d3:df:f8:ac:d2:6e:12:7e:
05:6c:02:88:f9:9d:56:05:96:89:0f:83:90:ea:1c:
2e:1e:5a:75:b0:ea:84:42:60:11:b6:ea:2c:0b:42:
74:48:95:7d:1b:92:91:2f:48:15:66:86:f3:5b:cb:
6c:18:79:11:f6:4f:7f:38:14:03:d4:ba:e1:97:27:
cb:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:23:66:7D:95:28:3D:4E:FE:93:78:0C:05:EB:80:A4:E6:0D:D0:8D
X509v3 Authority Key Identifier:
keyid:95:C2:A0:97:95:7D:01:38:CF:1E:D1:94:1F:08:FB:49:4E:7D:89:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lcKgl5V9ATjPHtGUHwj7SU59ia0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/738b83-448e-44eb-8312-04a5f737e130/1/xSNmfZUoPU7-k3gMBeuApOYN0I0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/738b83-448e-44eb-8312-04a5f737e130/1/lcKgl5V9ATjPHtGUHwj7SU59ia0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.138.48.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:fb:81:59:ae:3a:32:0e:ce:b2:dd:f6:ad:3f:c4:f0:cb:13:
e9:f1:f4:a4:75:6e:a4:73:98:d9:7e:69:01:02:03:f7:c1:b8:
18:2e:9b:09:65:a1:05:57:0d:7a:6f:f7:92:57:2b:c6:c7:d2:
10:d0:8d:d7:81:02:99:bf:51:56:ee:a1:e0:39:d5:28:71:4a:
81:b6:c5:cf:93:d9:f8:23:8e:4f:9c:7f:e8:ae:68:0a:b0:89:
3d:3a:f0:d5:ca:f3:9f:c9:68:45:7b:78:8b:fa:49:e3:aa:61:
c4:72:ba:ee:98:c7:5b:c7:d0:36:97:97:ac:0b:89:6d:0a:2d:
b6:cd:6f:84:e1:3a:2d:4e:fc:d3:fa:27:94:f8:eb:f3:fb:98:
28:a8:d9:b2:79:02:c7:c7:93:bb:3c:47:d7:55:f8:54:2d:a2:
c8:21:30:27:d8:45:eb:18:94:ec:eb:ee:0b:de:6d:9b:78:be:
0f:cb:81:de:00:d1:cf:14:8c:0c:58:e6:d8:4c:f9:ad:8a:0a:
99:f0:10:96:e3:c0:5f:7e:1c:1f:a9:3b:12:2d:1a:e6:91:99:
8f:5c:1a:e3:a6:d3:18:3d:d4:d0:58:4f:ac:77:64:36:dd:40:
13:fc:57:04:4b:52:8f:5c:2c:27:62:42:85:67:6e:82:6a:da:
ed:9d:cf:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:25 2024 by rpki-client on console-ams.rpki-client.org