Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/9e9f54-7cff-45b1-b7b0-f1118aa2df4a/1/1-umKVL0r63D7PUBDMI4hBbHuWa0.roa
File: 1-umKVL0r63D7PUBDMI4hBbHuWa0.roa (raw, json)
Hash identifier: JlIyLC3XfJnM0UKVTSA+h6pjdl5EdS/1fOxsMN0sZIg=
Subject key identifier: FA:E9:8A:54:BD:2B:EB:70:FB:3D:40:43:30:8E:21:05:B1:EE:59:AD
Certificate issuer: /CN=57273137f308df5d28fff89cb5bdb71b64b5760a
Certificate serial: 01857343C2B94253B96A6102A430A7706B3E
Authority key identifier: 57:27:31:37:F3:08:DF:5D:28:FF:F8:9C:B5:BD:B7:1B:64:B5:76:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VycxN_MI310o__ictb23G2S1dgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/9e9f54-7cff-45b1-b7b0-f1118aa2df4a/1/1-umKVL0r63D7PUBDMI4hBbHuWa0.roa
Signing time: Mon 02 Jan 2023 16:14:58 +0000
ROA not before: Mon 02 Jan 2023 16:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213302
IP address blocks: 195.200.235.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:43:c2:b9:42:53:b9:6a:61:02:a4:30:a7:70:6b:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57273137f308df5d28fff89cb5bdb71b64b5760a
Validity
Not Before: Jan 2 16:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fae98a54bd2beb70fb3d4043308e2105b1ee59ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:45:52:2c:a5:31:15:a3:48:43:1b:e2:e2:48:
d6:87:11:63:6d:75:e8:db:da:02:7d:87:fa:ee:ce:
f0:31:fe:88:93:73:f5:5e:ac:8e:51:fb:f2:dc:7a:
1d:f5:04:1e:e4:2b:d0:05:f7:d0:2a:41:9c:df:1f:
9c:e8:b8:50:59:c4:0b:b2:37:73:27:60:ed:be:0e:
ff:7c:76:f0:16:79:0d:ac:c6:41:19:36:da:54:5d:
58:dd:76:05:50:b6:00:77:a3:cf:3c:45:34:54:a6:
35:cd:bb:c3:c6:98:93:7a:92:17:e7:30:53:cd:73:
04:2a:81:0f:2f:54:ca:82:ba:b7:df:f4:1d:b9:00:
15:13:95:b8:c4:66:81:1f:44:0c:9c:6b:16:98:60:
a4:e9:74:c0:3e:b2:c5:aa:e7:86:81:9b:1b:a2:e6:
77:cc:e1:72:1d:a3:61:3a:14:60:56:b8:1a:96:6c:
8e:d3:cd:c7:1c:31:10:cd:53:5f:89:e5:1d:83:7a:
3b:97:da:f9:a2:7e:9a:0b:19:be:e5:44:05:6f:70:
56:02:30:f5:95:66:1a:13:fa:63:0e:39:e0:74:d8:
30:88:42:1d:98:4f:03:65:9b:1a:df:fe:20:be:b2:
fe:d4:73:8b:0d:70:b6:26:aa:bd:17:c4:f2:90:06:
1e:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:E9:8A:54:BD:2B:EB:70:FB:3D:40:43:30:8E:21:05:B1:EE:59:AD
X509v3 Authority Key Identifier:
keyid:57:27:31:37:F3:08:DF:5D:28:FF:F8:9C:B5:BD:B7:1B:64:B5:76:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VycxN_MI310o__ictb23G2S1dgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/9e9f54-7cff-45b1-b7b0-f1118aa2df4a/1/1-umKVL0r63D7PUBDMI4hBbHuWa0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/9e9f54-7cff-45b1-b7b0-f1118aa2df4a/1/VycxN_MI310o__ictb23G2S1dgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.200.235.0/24
Signature Algorithm: sha256WithRSAEncryption
37:d8:6e:a2:11:5b:87:16:a5:6c:ae:29:16:ba:32:38:c0:ab:
1c:d0:c3:4f:32:f1:d2:e8:24:20:f5:4d:d5:b7:3a:ef:e6:ca:
1c:b3:6f:e5:aa:39:f3:6c:fb:fc:a0:87:06:10:e2:68:22:ce:
66:a5:c5:16:81:37:e8:f4:2a:d1:cf:13:4d:7f:3c:8a:24:19:
75:af:81:f0:f5:ed:aa:a2:72:bf:a2:95:95:b0:23:8b:45:63:
75:36:b1:31:4c:5d:3f:e2:be:10:6e:85:26:ba:03:0f:60:bd:
0c:17:74:f0:74:2e:67:eb:23:74:fe:8e:1e:c4:13:46:1c:bd:
93:dc:c0:2a:03:49:c9:46:25:e6:fc:84:fe:8d:79:78:f5:31:
aa:40:c9:5e:35:1a:47:38:ce:11:45:de:88:b2:fb:c6:a3:70:
e8:4a:66:2e:c5:30:f7:6c:9b:1f:fa:7e:d0:10:e2:a9:1d:f7:
cc:d8:3f:53:48:3c:ea:e6:fd:ee:24:d7:6d:f9:bd:86:ad:19:
57:f6:2d:c2:5c:19:8e:85:d1:d0:58:24:c2:c6:2c:65:22:77:
72:3a:5c:d8:f2:66:ba:46:8f:33:49:14:a0:ab:85:c1:17:f4:
a3:82:ad:d5:ca:b7:00:cd:ce:e0:56:ed:74:a8:11:54:f7:e9:
7a:9e:82:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:23 2024 by rpki-client on console-ams.rpki-client.org