Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/85737e-5c58-4e0f-afef-88075d1f8dbc/1/b4oYm602t5ZOqeDKXaSBAk5lJgU.roa
File: b4oYm602t5ZOqeDKXaSBAk5lJgU.roa (raw, json)
Hash identifier: Vi2sjFZIw4vs2RpgXIydu4SkAoMfrQAJAXz3YakpAXM=
Subject key identifier: 6F:8A:18:9B:AD:36:B7:96:4E:A9:E0:CA:5D:A4:81:02:4E:65:26:05
Certificate issuer: /CN=9f22b1cad7333d34bbd3dddea4ba07b1a8204426
Certificate serial: 08A9EA
Authority key identifier: 9F:22:B1:CA:D7:33:3D:34:BB:D3:DD:DE:A4:BA:07:B1:A8:20:44:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nyKxytczPTS7093epLoHsaggRCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/85737e-5c58-4e0f-afef-88075d1f8dbc/1/b4oYm602t5ZOqeDKXaSBAk5lJgU.roa
Signing time: Sat 01 Jan 2022 01:55:09 +0000
ROA not before: Sat 01 Jan 2022 01:55:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5464
IP address blocks: 195.78.76.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 567786 (0x8a9ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f22b1cad7333d34bbd3dddea4ba07b1a8204426
Validity
Not Before: Jan 1 01:55:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f8a189bad36b7964ea9e0ca5da481024e652605
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:72:12:95:f8:7a:8c:bb:74:90:37:88:b2:f4:
48:0e:32:98:f5:94:01:4f:22:8b:09:78:ad:a4:51:
f1:10:49:cc:71:9d:ae:57:72:02:64:9a:4a:0b:f3:
e8:1a:72:02:f9:d6:23:75:b5:f2:f1:b7:f8:74:4a:
bc:e5:49:71:7e:75:bc:fd:88:03:08:19:7b:9e:47:
09:7e:3b:d5:ad:4a:a1:5f:64:fb:c7:5f:5e:19:08:
33:b5:53:55:15:de:05:18:02:3c:6f:a0:b3:69:d1:
1a:dc:f8:b3:02:3b:b3:b5:9a:0a:fb:1c:76:6a:6a:
f6:d4:8f:97:26:21:04:7a:21:23:df:6b:5f:34:d8:
c6:33:4a:0b:1b:cf:89:fb:6a:b4:2c:e4:48:c5:b7:
5c:10:88:54:7e:34:0e:f3:9c:2d:68:f8:38:07:73:
ee:86:ce:9d:9e:27:1c:88:4f:6f:34:55:23:fe:47:
61:cd:89:90:46:65:5a:6c:bb:7d:96:e7:11:5f:5c:
3b:74:40:f5:52:37:a5:7a:0c:43:85:bd:70:fb:04:
35:c1:95:7f:7d:f9:87:93:1c:a8:ed:f3:7a:5c:1e:
d5:0c:a0:52:d4:27:da:ad:51:f7:53:6e:af:79:87:
3a:53:27:25:e0:47:20:e2:64:5a:b5:42:6f:c9:bb:
47:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:8A:18:9B:AD:36:B7:96:4E:A9:E0:CA:5D:A4:81:02:4E:65:26:05
X509v3 Authority Key Identifier:
keyid:9F:22:B1:CA:D7:33:3D:34:BB:D3:DD:DE:A4:BA:07:B1:A8:20:44:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nyKxytczPTS7093epLoHsaggRCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/85737e-5c58-4e0f-afef-88075d1f8dbc/1/b4oYm602t5ZOqeDKXaSBAk5lJgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/85737e-5c58-4e0f-afef-88075d1f8dbc/1/nyKxytczPTS7093epLoHsaggRCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.78.76.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:00:7d:af:af:56:6f:09:d1:a0:e6:23:95:2c:2b:38:1b:4b:
31:0b:d5:5f:47:4a:f9:49:3e:68:d3:0d:e9:26:14:c9:16:e0:
c0:e2:8c:2a:0e:d4:3e:3f:f5:77:78:49:84:85:33:c4:68:6e:
27:6d:1f:22:ab:5c:ce:31:b8:07:71:89:58:14:df:bd:5c:15:
5c:f7:da:7f:14:fd:52:ea:c8:3c:a7:29:6b:fd:cd:a2:10:68:
ef:0d:2f:32:0b:6d:0a:bf:8c:dc:29:8b:21:da:d3:ec:5b:f0:
66:20:27:89:ad:e1:3b:de:fb:82:4f:e7:b7:3e:ae:ad:a8:bb:
9f:e6:70:41:e8:62:8b:a7:6b:5b:60:ec:7c:12:ce:d1:77:46:
f5:45:e8:d7:75:eb:de:d1:87:ad:bd:d4:39:f7:aa:61:30:98:
b1:d2:a4:cc:29:18:38:8c:1e:2c:73:0a:76:17:42:61:a3:e0:
d0:3e:0c:c5:bb:89:4a:81:02:f3:01:0f:75:99:98:80:33:f5:
88:66:d2:de:f2:db:17:71:02:e4:b1:f5:21:91:ba:c0:8c:bf:
78:c8:25:7f:12:73:b6:ba:c7:04:fb:ec:29:b4:31:d8:5d:46:
08:ee:7f:db:ac:21:28:0a:24:3c:03:f3:66:c5:3d:e8:c7:00:
66:03:c8:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:38 2024 by rpki-client on console-ams.rpki-client.org