Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/Yla9sSWhD4ydcqHI6A-tHWYd6Ns.roa
File: Yla9sSWhD4ydcqHI6A-tHWYd6Ns.roa (raw, json)
Hash identifier: 0QtT6Ath3H6IIkdXu1IpwMy79OiflOEfCV+L2kRC5gw=
Subject key identifier: 62:56:BD:B1:25:A1:0F:8C:9D:72:A1:C8:E8:0F:AD:1D:66:1D:E8:DB
Certificate issuer: /CN=2cd9516db9417952dedd9252fe5d83f09a3d99f5
Certificate serial: 024E46E3
Authority key identifier: 2C:D9:51:6D:B9:41:79:52:DE:DD:92:52:FE:5D:83:F0:9A:3D:99:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LNlRbblBeVLe3ZJS_l2D8Jo9mfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/Yla9sSWhD4ydcqHI6A-tHWYd6Ns.roa
Signing time: Fri 01 Apr 2022 10:13:31 +0000
ROA not before: Fri 01 Apr 2022 10:13:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35830
IP address blocks: 37.44.254.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38684387 (0x24e46e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cd9516db9417952dedd9252fe5d83f09a3d99f5
Validity
Not Before: Apr 1 10:13:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6256bdb125a10f8c9d72a1c8e80fad1d661de8db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:64:73:d1:53:40:f1:4e:d2:3a:4b:24:81:51:
d9:ba:b6:44:a1:1a:5c:80:0f:71:3c:0c:7d:a6:25:
b6:ad:b9:93:e8:3d:52:04:d5:37:49:70:50:da:1f:
ae:38:72:9e:d0:79:e8:d6:ad:e7:70:42:fd:e1:a8:
fe:3c:4d:e0:6a:be:9b:70:47:ec:cb:df:d0:57:25:
f4:99:b0:de:ab:77:5e:32:a4:55:34:23:26:33:55:
d3:02:52:3f:9a:45:44:10:da:ce:fe:d3:2f:8c:2c:
6e:18:1d:15:c8:c5:0d:34:75:bd:21:ab:47:bf:5c:
b5:28:c3:71:ab:e5:83:7f:2d:e0:c1:80:0c:59:26:
df:36:20:72:76:95:da:f3:24:39:84:a2:7e:91:ee:
45:2b:5c:09:e9:20:1c:b4:16:1f:73:79:16:c9:44:
55:49:a3:35:94:0d:07:cc:ca:5f:75:5e:65:e5:c8:
64:71:95:96:1b:6f:58:06:e4:ba:4e:2b:08:3c:7a:
8d:86:e9:87:a9:0e:d2:3e:6b:7a:62:69:da:27:5a:
72:f1:89:a2:b7:b8:e4:e9:c8:6a:31:d6:a1:0a:57:
02:08:28:a3:07:50:c7:82:67:e3:45:62:47:95:82:
ca:b1:29:f9:b3:5a:3d:f1:18:a6:dc:83:cf:cf:32:
33:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:56:BD:B1:25:A1:0F:8C:9D:72:A1:C8:E8:0F:AD:1D:66:1D:E8:DB
X509v3 Authority Key Identifier:
keyid:2C:D9:51:6D:B9:41:79:52:DE:DD:92:52:FE:5D:83:F0:9A:3D:99:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LNlRbblBeVLe3ZJS_l2D8Jo9mfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/Yla9sSWhD4ydcqHI6A-tHWYd6Ns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/LNlRbblBeVLe3ZJS_l2D8Jo9mfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.44.254.0/23
Signature Algorithm: sha256WithRSAEncryption
7f:bd:15:4a:b5:08:65:f6:c5:66:76:ef:70:b5:3b:00:3c:49:
69:87:f5:c4:34:9d:6c:07:aa:ee:53:da:b3:5b:d6:56:06:5e:
ec:32:81:e9:ea:01:c0:fc:36:8b:1b:45:78:da:cf:ff:b8:90:
6c:8b:76:6b:9b:3c:ef:4e:3f:d7:89:52:c4:91:1c:e1:2f:95:
0b:9d:fd:70:2f:b5:61:3b:94:da:55:35:c9:22:5d:71:ec:a7:
81:13:8b:a5:77:a5:0d:1f:06:24:1c:fe:66:1b:2e:4e:14:1d:
cf:5d:8c:e3:b5:96:bc:b2:c4:68:b2:04:4e:3f:d3:86:3a:cb:
5d:47:43:04:7d:3f:bf:8c:19:06:37:b7:3d:c5:1c:05:31:12:
72:6e:7f:af:a7:ce:6e:cb:cd:ee:02:c8:55:c4:f2:e9:aa:25:
66:a9:90:cb:7e:07:f9:4f:68:88:d5:46:08:3e:f9:03:da:7e:
a2:81:03:c3:56:20:66:e3:d1:f8:de:5e:09:49:1e:72:d1:c6:
78:6d:5a:ba:e5:f0:09:51:c7:ee:e6:a8:5d:72:30:1e:33:50:
58:77:a1:e2:68:22:32:4f:f2:22:48:b7:1e:c1:8e:bd:32:e6:
26:1b:46:52:a3:6a:6b:ed:6d:c8:7b:c2:87:f7:a1:ef:9c:3f:
14:ee:5b:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:13 2024 by rpki-client on console-fra.rpki-client.org