Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/81ebdd-dc9d-4d82-8d2f-e79aeae39940/1/qjOkf_OzqNhnDb1ox3MJ8Ae3-lk.roa
File: qjOkf_OzqNhnDb1ox3MJ8Ae3-lk.roa (raw, json)
Hash identifier: l0t66ioYpQkbmhswirCbJZj5oUlCBkVl/s1uG/ykyb4=
Subject key identifier: AA:33:A4:7F:F3:B3:A8:D8:67:0D:BD:68:C7:73:09:F0:07:B7:FA:59
Certificate issuer: /CN=715b900ab9fff1388a4f746a89ec41859ef4779e
Certificate serial: 01856307ED58E291F83A0C9D0009959A4CEE
Authority key identifier: 71:5B:90:0A:B9:FF:F1:38:8A:4F:74:6A:89:EC:41:85:9E:F4:77:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cVuQCrn_8TiKT3RqiexBhZ70d54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/81ebdd-dc9d-4d82-8d2f-e79aeae39940/1/qjOkf_OzqNhnDb1ox3MJ8Ae3-lk.roa
Signing time: Fri 30 Dec 2022 12:35:41 +0000
ROA not before: Fri 30 Dec 2022 12:35:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210027
IP address blocks: 86.106.22.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:63:07:ed:58:e2:91:f8:3a:0c:9d:00:09:95:9a:4c:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=715b900ab9fff1388a4f746a89ec41859ef4779e
Validity
Not Before: Dec 30 12:35:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aa33a47ff3b3a8d8670dbd68c77309f007b7fa59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c2:b9:4f:a8:27:e0:62:da:4a:49:e6:7b:75:
f3:83:b3:26:81:b8:f6:79:15:53:31:a7:fa:e5:77:
3c:14:36:02:d5:b6:eb:b5:7a:b1:5a:0f:06:26:0f:
ed:c4:33:5d:78:04:94:1a:bb:8a:3d:2b:a7:78:fd:
b0:e0:d8:ab:b9:26:83:0c:02:a5:95:6f:b3:21:b9:
3c:2a:67:c7:4c:ae:94:87:d4:60:50:e1:81:7d:5b:
8f:12:57:f9:cd:e1:95:fb:f8:47:e4:3d:92:6c:a0:
77:16:17:3d:38:aa:8b:35:06:4c:ee:77:05:93:c1:
b9:ad:19:7a:80:33:b2:0e:31:f5:16:46:b5:78:a6:
29:0a:91:06:96:e4:6b:54:74:9d:ea:6a:fa:48:f9:
bd:11:a8:af:b5:93:e6:05:33:66:75:08:31:33:2e:
27:3e:9d:02:dc:c0:ee:4c:ae:b0:fd:64:a9:aa:fe:
00:89:04:85:d5:d4:9b:c8:7c:7e:3f:95:ce:93:1a:
8d:9d:eb:4e:2d:c0:29:2d:14:c9:91:11:5d:f7:e9:
c4:41:8c:79:6a:52:ca:2c:55:77:9e:8a:e6:65:a7:
d3:b7:db:12:bd:78:40:74:ca:21:ea:4e:8a:0e:65:
3b:7b:f4:47:f9:33:da:12:cb:5f:97:63:d8:f6:b6:
95:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:33:A4:7F:F3:B3:A8:D8:67:0D:BD:68:C7:73:09:F0:07:B7:FA:59
X509v3 Authority Key Identifier:
keyid:71:5B:90:0A:B9:FF:F1:38:8A:4F:74:6A:89:EC:41:85:9E:F4:77:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cVuQCrn_8TiKT3RqiexBhZ70d54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/81ebdd-dc9d-4d82-8d2f-e79aeae39940/1/qjOkf_OzqNhnDb1ox3MJ8Ae3-lk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/81ebdd-dc9d-4d82-8d2f-e79aeae39940/1/cVuQCrn_8TiKT3RqiexBhZ70d54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.106.22.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:f5:45:71:c0:7a:16:b7:f7:8c:31:f8:7f:df:26:a5:7c:52:
ad:98:42:77:cd:16:6a:dd:89:5b:2b:2d:ed:37:bc:9f:e9:e1:
55:1e:94:75:5f:c5:c7:1c:40:7b:81:5f:bb:85:12:9d:e9:5a:
19:d4:9a:23:e2:88:3e:35:25:17:15:f5:dc:c2:97:85:1c:be:
75:b9:96:73:02:8f:0b:a0:71:5c:83:48:59:23:0c:88:9e:18:
32:f5:1a:da:af:e2:51:cf:53:42:b9:27:04:bf:b3:d2:04:58:
ed:1c:bf:f5:49:a4:ed:6d:62:e8:15:d9:8a:49:b6:b3:a2:a4:
c3:6a:69:38:dc:f6:58:ab:6b:e6:e1:e0:ec:30:04:12:5f:74:
b7:0b:3e:d2:9b:6d:f9:54:1e:b7:aa:a4:bb:2d:3b:31:d3:29:
19:23:08:53:f3:a0:10:49:78:cf:b8:8d:30:c1:30:58:48:ac:
e5:f1:a3:bc:8f:db:e8:6d:64:19:cf:62:95:fe:c0:62:1f:fc:
f5:49:9e:e9:0c:34:d7:38:c6:0a:59:a0:fa:a0:0c:30:54:b0:
44:bb:a9:2c:51:7d:95:fe:63:b9:d1:b9:22:a2:2f:3e:6e:af:
52:22:41:5a:e5:5e:33:66:ad:a7:44:a7:29:15:99:ac:6a:dd:
ed:18:a3:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:28 2023 by rpki-client on console-ams.rpki-client.org