Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/YSjaVZkpfuilyNqIo-vbSMCaV5w.roa
File: YSjaVZkpfuilyNqIo-vbSMCaV5w.roa (raw, json)
Hash identifier: Tr7hb2ofpUCRCPZcCKMY39pneN6wLipvqeHSd5Npo7s=
Subject key identifier: 61:28:DA:55:99:29:7E:E8:A5:C8:DA:88:A3:EB:DB:48:C0:9A:57:9C
Certificate issuer: /CN=2cd9516db9417952dedd9252fe5d83f09a3d99f5
Certificate serial: 017ABE8B
Authority key identifier: 2C:D9:51:6D:B9:41:79:52:DE:DD:92:52:FE:5D:83:F0:9A:3D:99:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LNlRbblBeVLe3ZJS_l2D8Jo9mfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/YSjaVZkpfuilyNqIo-vbSMCaV5w.roa
Signing time: Sat 01 Jan 2022 09:03:42 +0000
ROA not before: Sat 01 Jan 2022 09:03:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56529
IP address blocks: 192.144.4.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24821387 (0x17abe8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cd9516db9417952dedd9252fe5d83f09a3d99f5
Validity
Not Before: Jan 1 09:03:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6128da5599297ee8a5c8da88a3ebdb48c09a579c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:86:13:e3:62:d1:25:8e:18:d9:a5:77:e7:f5:
a6:44:a8:b9:ae:e6:e8:91:e5:b9:93:46:ec:7d:71:
e7:6c:97:ac:78:95:84:83:20:ef:a5:ea:30:9f:9b:
c2:1e:d2:25:39:aa:cc:94:17:15:45:38:f7:b0:b1:
2a:8c:23:14:02:03:55:5f:9e:2d:9d:5e:37:c9:4b:
b9:c8:63:45:56:fc:5e:8e:01:f6:b5:8e:5b:4f:5a:
b8:3d:dc:ac:1b:6a:61:4f:03:8f:2b:26:ee:09:83:
6c:e0:a0:d1:11:c4:ee:b3:38:70:75:09:fc:1a:54:
e1:13:25:b9:4d:7b:ba:96:c3:69:05:df:61:af:54:
e4:74:2a:f8:02:7d:cd:be:99:4b:86:e6:47:1d:b8:
f9:28:74:0a:4a:ef:3b:d6:41:2a:60:03:75:90:45:
b5:fc:6c:3b:72:ed:3f:95:51:d1:3c:a5:dc:ca:fd:
f9:7e:68:85:58:0d:f1:49:ca:4a:35:8a:0b:c3:42:
3e:51:c0:5b:77:90:ce:c3:08:e8:9d:95:98:c9:f1:
6c:98:5b:ec:27:ad:bc:eb:b5:01:1d:0c:a4:07:ed:
f5:8f:41:0c:9f:e7:fc:ec:f1:d2:63:4f:1e:50:d6:
d3:2e:c4:20:f1:ff:8c:e5:b0:46:9e:58:e3:a7:94:
2b:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:28:DA:55:99:29:7E:E8:A5:C8:DA:88:A3:EB:DB:48:C0:9A:57:9C
X509v3 Authority Key Identifier:
keyid:2C:D9:51:6D:B9:41:79:52:DE:DD:92:52:FE:5D:83:F0:9A:3D:99:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LNlRbblBeVLe3ZJS_l2D8Jo9mfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/YSjaVZkpfuilyNqIo-vbSMCaV5w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/LNlRbblBeVLe3ZJS_l2D8Jo9mfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.144.4.0/24
Signature Algorithm: sha256WithRSAEncryption
02:24:75:b3:52:fb:75:e2:14:b7:59:29:58:20:c8:4f:41:8a:
12:a0:d7:a0:21:a0:7a:00:a7:48:fe:45:9c:47:27:94:52:0e:
ba:80:ec:5f:42:fc:31:d0:bb:fc:f9:63:de:1d:0a:f8:0d:4c:
c4:1f:d1:5c:58:e9:88:16:17:01:83:bd:23:2c:86:0c:23:1d:
98:d4:68:c0:21:3b:3c:05:42:6a:38:ff:a4:4e:35:d2:f3:db:
3e:05:28:64:5a:dc:d1:f3:ee:6c:e4:82:64:a9:fd:88:f8:0c:
3f:89:90:0d:fb:03:54:9a:c9:1b:da:3c:89:52:92:4c:9d:e7:
2d:fa:68:95:ec:fc:d6:c6:57:a3:5d:35:eb:25:8d:a8:1e:16:
6e:8d:8f:e7:85:d4:e4:a7:62:13:71:f7:b4:8f:e0:2f:61:9a:
12:a7:e5:9e:f2:c4:99:d4:b3:b8:14:dc:1a:54:23:32:d7:ab:
19:c7:e3:d0:a6:02:3c:66:00:0b:73:ae:d8:b8:28:58:b3:c1:
64:bd:9b:85:65:09:37:c3:71:ac:42:65:c0:54:75:f9:ce:90:
5e:d1:d3:38:bb:83:a3:5c:b2:62:31:c0:d3:b6:98:c1:c3:ba:
fc:40:35:54:0e:5c:07:d8:a1:d3:5f:d4:35:15:44:68:ff:fb:
b6:81:3c:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:37 2024 by rpki-client on console-ams.rpki-client.org