Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/s6VJrNfPa7yLVrDoMIOhatX8CnE.roa
File: s6VJrNfPa7yLVrDoMIOhatX8CnE.roa (raw, json)
Hash identifier: 9lJAL96yRtr6wtU2bvE6OnJwfOL4ucN2Ur/7Ue8FHZU=
Subject key identifier: B3:A5:49:AC:D7:CF:6B:BC:8B:56:B0:E8:30:83:A1:6A:D5:FC:0A:71
Certificate issuer: /CN=2cd9516db9417952dedd9252fe5d83f09a3d99f5
Certificate serial: 01E9FF7D
Authority key identifier: 2C:D9:51:6D:B9:41:79:52:DE:DD:92:52:FE:5D:83:F0:9A:3D:99:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LNlRbblBeVLe3ZJS_l2D8Jo9mfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/s6VJrNfPa7yLVrDoMIOhatX8CnE.roa
Signing time: Fri 18 Feb 2022 11:47:41 +0000
ROA not before: Fri 18 Feb 2022 11:47:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201211
IP address blocks: 46.21.240.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32112509 (0x1e9ff7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cd9516db9417952dedd9252fe5d83f09a3d99f5
Validity
Not Before: Feb 18 11:47:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3a549acd7cf6bbc8b56b0e83083a16ad5fc0a71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:51:d5:a2:b2:32:93:11:0a:54:65:33:62:ef:
5f:5e:e3:d1:16:9b:65:c7:7c:95:97:8e:a7:0d:71:
23:53:2b:b4:98:04:28:b8:af:f0:05:38:f2:e7:69:
e9:ef:77:4d:55:fa:54:e3:b4:a4:21:c5:1b:f2:77:
24:7d:4e:02:cc:da:a0:86:7b:d4:d0:52:5e:ec:87:
17:c7:c9:04:5f:00:dd:50:a2:59:8b:51:7a:bd:ff:
b2:49:7a:64:80:58:1a:15:89:2a:1b:1a:77:ad:9a:
d8:50:1a:8f:c1:18:3a:ae:32:9a:d9:8a:7a:f9:63:
09:54:3d:b9:cd:35:33:4e:78:45:90:43:4e:6d:d9:
d7:b2:d5:57:7c:ed:73:8b:54:d4:0b:2f:93:44:60:
4a:82:dc:89:28:4f:4a:af:55:55:72:ec:f3:c9:0a:
61:a5:87:e8:89:78:0a:41:73:6f:3e:ba:df:58:33:
b1:f9:38:c0:21:ec:fd:2f:17:5f:72:8b:69:b2:11:
3a:2b:85:60:79:ed:02:c6:dd:8e:ee:7e:ee:14:a2:
cc:fa:8e:56:6d:3d:04:62:f1:f2:48:48:6a:76:a7:
54:b5:96:d1:ad:8b:6a:13:3d:e4:bd:1d:24:ec:5b:
df:4a:2c:8f:45:0a:1a:73:5c:6e:43:a7:3c:36:4b:
c6:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:A5:49:AC:D7:CF:6B:BC:8B:56:B0:E8:30:83:A1:6A:D5:FC:0A:71
X509v3 Authority Key Identifier:
keyid:2C:D9:51:6D:B9:41:79:52:DE:DD:92:52:FE:5D:83:F0:9A:3D:99:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LNlRbblBeVLe3ZJS_l2D8Jo9mfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/s6VJrNfPa7yLVrDoMIOhatX8CnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/LNlRbblBeVLe3ZJS_l2D8Jo9mfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.21.240.0/22
Signature Algorithm: sha256WithRSAEncryption
13:a4:cc:c8:0c:d2:94:ad:ac:14:bf:e6:d4:da:5e:06:5c:4e:
47:20:2c:1c:34:1b:4e:9c:91:f2:cf:9d:9d:54:79:1a:0b:28:
c9:a2:c5:11:5e:d2:4c:9d:96:dc:20:e9:13:59:7e:99:ef:14:
0d:43:39:c5:ed:47:39:e5:74:95:8f:97:3d:d2:99:05:58:8c:
c9:eb:3c:ec:32:12:02:74:b8:e6:00:38:45:75:41:ed:4d:51:
bd:f6:bf:7a:fb:2b:99:03:75:59:e6:ea:3e:08:33:45:4e:c9:
87:c6:b5:3d:a2:39:a7:7b:f1:a8:20:f3:8d:36:ad:18:87:5e:
bc:ac:2e:3d:6e:89:23:b3:2b:56:27:77:cf:36:8f:9d:14:6f:
95:c8:5c:23:33:60:9c:89:50:9f:de:f3:1f:1e:27:cf:96:34:
9e:65:60:d5:d1:04:b8:44:81:98:98:69:91:23:c4:6c:8f:22:
0c:43:f5:aa:59:8a:51:3c:6b:48:30:e2:5e:e2:cd:e9:00:90:
50:f5:bf:34:20:6d:38:61:92:04:ba:de:08:5d:0d:58:c5:63:
07:71:41:85:93:a6:14:65:24:5b:0f:66:cd:33:f0:4b:14:f1:
af:ae:9d:8a:2f:87:8a:2b:a0:e2:34:6d:43:2f:10:fe:c3:2f:
5b:ff:bc:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:13 2024 by rpki-client on console-fra.rpki-client.org