Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/d4d68a-e7bd-4938-ad50-32fbf47781d3/1/oRbUu1bK3dbruG2tW5kHZrQ4dMY.roa
File: oRbUu1bK3dbruG2tW5kHZrQ4dMY.roa (raw, json)
Hash identifier: ubcnA1GeF1FtZ2wuCUMGUZhaMTK7fCZ7FOIPhtihutw=
Subject key identifier: A1:16:D4:BB:56:CA:DD:D6:EB:B8:6D:AD:5B:99:07:66:B4:38:74:C6
Certificate issuer: /CN=5ea5531451734961fc4e89cef3f09c76a33f423f
Certificate serial: 01856F26D0578D399AC317A2E467DC14D872
Authority key identifier: 5E:A5:53:14:51:73:49:61:FC:4E:89:CE:F3:F0:9C:76:A3:3F:42:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XqVTFFFzSWH8TonO8_CcdqM_Qj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/d4d68a-e7bd-4938-ad50-32fbf47781d3/1/oRbUu1bK3dbruG2tW5kHZrQ4dMY.roa
Signing time: Sun 01 Jan 2023 21:04:52 +0000
ROA not before: Sun 01 Jan 2023 21:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58061
IP address blocks: 195.96.148.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:d0:57:8d:39:9a:c3:17:a2:e4:67:dc:14:d8:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ea5531451734961fc4e89cef3f09c76a33f423f
Validity
Not Before: Jan 1 21:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a116d4bb56caddd6ebb86dad5b990766b43874c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:c7:c1:f1:5c:33:dc:8e:61:e1:29:02:f1:fc:
98:d7:dc:92:e8:87:22:ab:a2:8b:c5:ec:93:26:7e:
b1:34:aa:05:78:7d:34:50:90:7f:f1:03:58:08:a5:
b8:f6:45:5b:7d:f0:d3:3a:1f:73:00:3b:3f:fe:d1:
30:e4:ac:93:a5:7e:6d:70:b5:3d:e7:b1:54:8f:23:
a1:42:73:56:3e:5b:59:76:fa:d9:86:61:bc:b2:f8:
3a:34:4d:1e:2a:47:c6:08:b5:9c:f4:e4:5a:e3:49:
de:f2:fb:fa:af:93:b4:92:6c:d5:0b:1a:75:7d:a8:
41:cb:bb:f0:33:ed:c3:b1:22:8c:98:a5:b1:6e:6c:
79:57:32:c2:75:03:b2:25:f1:4b:e6:48:69:16:c5:
b2:c8:ee:5e:ab:fe:ae:f6:86:4c:c2:e5:c5:36:3e:
05:4d:e6:8a:03:19:94:e2:13:cd:4f:dd:52:02:dc:
7d:b8:c6:d8:eb:b8:2a:00:53:db:7e:7e:7d:12:98:
a7:0d:fb:ca:e3:fe:a7:8a:09:b2:46:c6:f0:0f:3f:
71:86:02:4a:c4:1d:2c:c6:dd:87:0b:f4:82:c0:d8:
f3:1f:bc:aa:2f:a2:dc:65:75:13:57:90:56:4d:7e:
5e:fd:c3:c6:de:3a:bc:e0:dc:d1:bf:b9:e9:45:83:
d7:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:16:D4:BB:56:CA:DD:D6:EB:B8:6D:AD:5B:99:07:66:B4:38:74:C6
X509v3 Authority Key Identifier:
keyid:5E:A5:53:14:51:73:49:61:FC:4E:89:CE:F3:F0:9C:76:A3:3F:42:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XqVTFFFzSWH8TonO8_CcdqM_Qj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d4d68a-e7bd-4938-ad50-32fbf47781d3/1/oRbUu1bK3dbruG2tW5kHZrQ4dMY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d4d68a-e7bd-4938-ad50-32fbf47781d3/1/XqVTFFFzSWH8TonO8_CcdqM_Qj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.148.0/24
Signature Algorithm: sha256WithRSAEncryption
71:a3:32:8a:5f:ab:12:3b:8e:30:23:6c:75:94:dc:66:7d:a9:
c6:8e:a9:57:a7:2c:65:f0:e1:4d:65:3c:75:1f:e3:76:24:b4:
b5:69:df:cd:5a:ac:80:b9:e7:52:f4:fa:2c:62:29:c0:8f:ef:
c2:5e:72:97:84:ed:fb:80:96:64:d8:bb:f2:da:8f:95:16:a8:
cf:75:c3:9a:5a:81:a1:c4:5c:2d:58:78:8d:5a:74:36:31:95:
01:b6:0d:5d:57:d1:81:13:c2:8a:f0:6c:ff:ce:50:ec:b3:26:
b0:fa:f4:b8:0e:c9:5e:b3:40:a9:49:b9:04:48:71:df:89:19:
71:a5:69:e0:fa:bd:b0:e9:72:b1:4f:c1:e2:65:62:cb:66:fc:
e7:8c:ec:4e:1d:f6:8a:1a:7e:ed:d5:d7:4e:09:b7:a6:36:fd:
2a:b3:03:fd:2f:f9:46:e7:cc:9b:1a:09:19:d1:ad:12:e9:7f:
78:fc:7b:6e:03:63:41:92:cf:ca:9b:90:30:64:50:82:f9:38:
38:1b:3b:e8:2b:09:a9:ff:f7:eb:42:f6:68:45:cc:77:48:ef:
19:be:f6:11:71:a2:95:9e:04:e1:d4:2a:a9:b9:bc:15:c0:64:
a2:66:a5:7a:a4:cf:43:89:bb:4f:f5:49:08:49:7e:da:ec:50:
fb:82:86:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:31 2024 by rpki-client on console-ams.rpki-client.org