Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/85737e-5c58-4e0f-afef-88075d1f8dbc/1/NN7ujKAN2K23ilY7Nh23Li46Njs.roa
File: NN7ujKAN2K23ilY7Nh23Li46Njs.roa (raw, json)
Hash identifier: iP7A2+EP6Sh733Goq3MOcYg1B+EuzJTVHeU6rUO2Wzc=
Subject key identifier: 34:DE:EE:8C:A0:0D:D8:AD:B7:8A:56:3B:36:1D:B7:2E:2E:3A:36:3B
Certificate issuer: /CN=9f22b1cad7333d34bbd3dddea4ba07b1a8204426
Certificate serial: 01856F42EA0A631D08C495827C0B1B2D9B79
Authority key identifier: 9F:22:B1:CA:D7:33:3D:34:BB:D3:DD:DE:A4:BA:07:B1:A8:20:44:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nyKxytczPTS7093epLoHsaggRCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/85737e-5c58-4e0f-afef-88075d1f8dbc/1/NN7ujKAN2K23ilY7Nh23Li46Njs.roa
Signing time: Sun 01 Jan 2023 21:35:34 +0000
ROA not before: Sun 01 Jan 2023 21:35:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5464
IP address blocks: 195.78.76.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:ea:0a:63:1d:08:c4:95:82:7c:0b:1b:2d:9b:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f22b1cad7333d34bbd3dddea4ba07b1a8204426
Validity
Not Before: Jan 1 21:35:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=34deee8ca00dd8adb78a563b361db72e2e3a363b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:bb:92:72:18:c9:33:36:c3:a2:9c:9b:7d:d2:
4a:90:5a:62:ca:56:44:f7:de:50:54:4f:8b:ce:5b:
b3:7d:09:7d:da:12:1c:66:ea:de:0d:15:63:6d:7c:
29:f1:04:1f:27:b9:d1:aa:2d:de:b1:b1:f7:bb:36:
cd:0e:2a:19:95:3d:29:85:25:fe:37:e0:d1:c7:70:
b3:80:c4:b6:1a:3f:16:fb:e1:4e:7b:b9:91:ae:e3:
90:02:fa:4f:f2:48:0a:5b:a2:67:f3:1b:04:55:62:
af:e6:e6:20:17:4c:3a:a1:99:9b:af:8d:74:61:a3:
11:fa:44:8c:6f:9c:4a:b2:19:b5:87:e3:3d:31:76:
a5:f8:9d:ae:01:4d:c8:da:db:7a:22:4c:f8:08:2c:
8e:dd:e7:3f:11:89:cc:7e:45:cc:d8:05:c5:4b:c9:
41:4c:0b:5d:da:5a:03:6e:e8:1c:fd:56:9a:22:bd:
a4:da:3e:ee:ff:c3:8f:14:a9:49:e4:61:7e:15:71:
9c:13:89:98:31:9b:3d:3d:e1:28:5c:82:d2:cb:6e:
24:39:a8:61:ba:99:7f:44:40:05:90:61:7d:8e:b7:
cc:fb:1f:29:b8:dd:c8:55:f2:48:1e:d0:65:6c:d9:
92:e3:ab:e9:f7:a4:be:68:23:50:cb:5b:39:d3:1e:
9a:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:DE:EE:8C:A0:0D:D8:AD:B7:8A:56:3B:36:1D:B7:2E:2E:3A:36:3B
X509v3 Authority Key Identifier:
keyid:9F:22:B1:CA:D7:33:3D:34:BB:D3:DD:DE:A4:BA:07:B1:A8:20:44:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nyKxytczPTS7093epLoHsaggRCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/85737e-5c58-4e0f-afef-88075d1f8dbc/1/NN7ujKAN2K23ilY7Nh23Li46Njs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/85737e-5c58-4e0f-afef-88075d1f8dbc/1/nyKxytczPTS7093epLoHsaggRCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.78.76.0/23
Signature Algorithm: sha256WithRSAEncryption
3f:f4:b4:a0:3e:02:f1:e6:5f:21:13:c0:ad:83:ff:68:b6:46:
49:29:22:4b:bd:e9:28:01:a7:f1:65:08:79:c0:af:f3:4a:17:
c7:9b:eb:bd:b2:bd:a5:5c:e9:e2:f0:5d:c8:e6:65:26:b9:41:
02:54:e2:4a:a8:07:b9:20:fb:d0:c2:84:a4:b4:7e:f6:0c:8b:
98:50:2d:41:4f:f1:2f:c7:06:a8:68:ba:24:06:43:80:20:03:
f1:60:ae:ca:be:c4:8a:f3:75:44:cd:4d:d0:d7:93:ca:c8:f9:
6b:7a:10:a4:76:b7:8a:4e:c7:8f:0f:3c:22:7d:3d:42:9b:75:
c0:55:a1:55:33:18:d5:c0:e8:e5:dd:b9:a6:0d:53:e1:6a:0f:
f1:27:6e:61:cd:2b:36:18:d3:56:7a:9c:1c:13:27:c8:24:33:
b2:a1:5d:87:8e:ab:50:74:e7:da:a6:ff:8d:a9:15:5f:36:53:
2b:13:ee:ef:79:ce:5b:35:ca:85:fb:7a:24:2d:c7:da:50:5f:
7a:8e:d7:f7:0a:06:f5:90:97:9e:7f:85:dc:52:9e:35:db:31:
9d:fe:04:df:f9:a6:12:a1:60:8a:13:21:18:45:72:36:24:a1:
25:cd:b6:e4:21:dd:19:a8:c1:25:9a:34:d9:a9:5a:8f:28:4e:
b0:36:29:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:27 2024 by rpki-client on console-fra.rpki-client.org