Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/641aec-da38-4df3-8e71-f7fe3e473b12/1/BNDprMK6aYyXgLvTaBGtBf6sHC0.roa
File: BNDprMK6aYyXgLvTaBGtBf6sHC0.roa (raw, json)
Hash identifier: LnKHqfjLf1Gvb2+UOZWKyEbAr1N7cSM852PkwqOVnCA=
Subject key identifier: 04:D0:E9:AC:C2:BA:69:8C:97:80:BB:D3:68:11:AD:05:FE:AC:1C:2D
Certificate issuer: /CN=cda81fe95261904e941237ea4c7cec8f768b046d
Certificate serial: 01821F84A7E41F69C0E1E08588129A4957BC
Authority key identifier: CD:A8:1F:E9:52:61:90:4E:94:12:37:EA:4C:7C:EC:8F:76:8B:04:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zagf6VJhkE6UEjfqTHzsj3aLBG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/641aec-da38-4df3-8e71-f7fe3e473b12/1/BNDprMK6aYyXgLvTaBGtBf6sHC0.roa
Signing time: Thu 21 Jul 2022 06:49:23 +0000
ROA not before: Thu 21 Jul 2022 06:49:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 193.111.40.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1f:84:a7:e4:1f:69:c0:e1:e0:85:88:12:9a:49:57:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cda81fe95261904e941237ea4c7cec8f768b046d
Validity
Not Before: Jul 21 06:49:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=04d0e9acc2ba698c9780bbd36811ad05feac1c2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:cd:b0:dc:f2:d2:a1:06:2b:f0:28:dc:ca:7c:
ca:f1:7f:69:15:94:3d:11:bf:a2:59:a5:9c:8a:7b:
b0:4e:e1:8c:13:60:98:59:f3:92:4f:74:82:d3:17:
cd:6c:5d:28:60:4d:cd:86:83:61:29:b6:eb:ce:69:
2b:12:27:d6:ec:6a:ef:82:69:21:ba:bd:99:04:86:
c5:ad:4c:33:40:b3:cc:7a:9c:20:9a:6d:cf:0b:10:
e2:eb:07:aa:e8:ca:60:13:9c:37:09:a7:dc:1a:65:
15:26:0f:46:77:29:78:d2:ee:9e:81:a7:81:af:a9:
96:8c:20:15:96:c1:74:d5:26:4f:b1:8a:05:9c:96:
b3:dc:0f:b0:c0:65:a0:89:2a:77:ff:26:24:6a:2d:
3c:71:e0:c1:2b:47:0f:75:71:f3:e5:da:05:fc:2b:
c3:c8:49:07:b1:75:55:df:de:15:e7:fb:67:ae:27:
22:57:84:f7:0e:ae:08:e5:2f:4e:46:a3:27:9b:30:
d8:61:f1:8b:59:93:56:1e:8a:74:8b:b8:00:32:16:
d7:39:b5:eb:1f:ef:23:4a:68:f9:04:59:64:ac:1b:
70:92:b6:4a:4e:2d:61:c4:57:be:14:4a:04:35:0a:
90:24:a1:27:7e:85:46:7e:d5:3c:62:c1:3b:81:f5:
10:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:D0:E9:AC:C2:BA:69:8C:97:80:BB:D3:68:11:AD:05:FE:AC:1C:2D
X509v3 Authority Key Identifier:
keyid:CD:A8:1F:E9:52:61:90:4E:94:12:37:EA:4C:7C:EC:8F:76:8B:04:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zagf6VJhkE6UEjfqTHzsj3aLBG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/641aec-da38-4df3-8e71-f7fe3e473b12/1/BNDprMK6aYyXgLvTaBGtBf6sHC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/641aec-da38-4df3-8e71-f7fe3e473b12/1/zagf6VJhkE6UEjfqTHzsj3aLBG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.40.0/24
Signature Algorithm: sha256WithRSAEncryption
89:de:fe:d0:49:9b:30:fc:d9:41:cf:5f:6a:63:ee:b0:3c:33:
8b:82:44:ad:de:5f:68:77:55:5a:b1:8b:5c:82:33:80:28:f3:
bc:db:5d:0b:45:4d:e1:27:5c:13:8c:1e:50:81:1a:1a:eb:13:
51:74:51:93:82:72:88:af:e3:c8:60:52:2c:49:4d:13:f1:6c:
6d:40:a7:58:69:a6:12:e7:03:02:ad:c2:6a:7f:77:58:43:0a:
42:c0:ac:c2:e8:a4:b0:eb:3f:74:84:c5:f2:74:d1:2f:5e:7a:
4a:50:fa:7d:0a:01:c7:af:d5:64:48:65:68:cc:7b:53:bc:8d:
24:93:0e:ee:b6:c4:b2:56:f2:81:a3:df:52:e5:e2:5e:c7:2e:
bd:95:7a:27:ec:fe:63:7b:4f:95:f3:bb:b3:3c:b8:13:75:6e:
8f:c7:2b:e9:10:0a:26:dd:32:48:82:31:07:6c:30:09:d5:48:
fa:9b:91:06:6f:dc:35:c1:32:4d:46:e7:7d:9f:88:54:c2:6f:
ca:69:3d:da:17:a3:5e:8c:0d:6f:fe:e9:b7:a0:f3:76:ad:00:
02:6d:d2:0e:56:c3:1b:57:9a:2e:40:b7:cc:5c:1a:60:01:68:
24:af:13:f0:6f:fe:21:9a:79:1e:d7:b4:0f:7d:99:1b:e4:55:
30:39:37:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:14 2024 by rpki-client on console-ams.rpki-client.org