Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/d5d6e5-c60f-4479-9b52-960c266eca5d/1/v8OgLTQsBVbm5v6vRpjwytcMcDU.roa
File: v8OgLTQsBVbm5v6vRpjwytcMcDU.roa (raw, json)
Hash identifier: Uq6JJDcrLGEe+qPXy/KvJFOzEIOarZAcas6fd+GlH4A=
Subject key identifier: BF:C3:A0:2D:34:2C:05:56:E6:E6:FE:AF:46:98:F0:CA:D7:0C:70:35
Certificate issuer: /CN=8aaf2268d47e7cd5459d7a006ebc51d3eb9458c9
Certificate serial: 01856DCB020BABEC04AE280CA4FC56CAB284
Authority key identifier: 8A:AF:22:68:D4:7E:7C:D5:45:9D:7A:00:6E:BC:51:D3:EB:94:58:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iq8iaNR-fNVFnXoAbrxR0-uUWMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/d5d6e5-c60f-4479-9b52-960c266eca5d/1/v8OgLTQsBVbm5v6vRpjwytcMcDU.roa
Signing time: Sun 01 Jan 2023 14:44:58 +0000
ROA not before: Sun 01 Jan 2023 14:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50131
IP address blocks: 62.3.24.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:cb:02:0b:ab:ec:04:ae:28:0c:a4:fc:56:ca:b2:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aaf2268d47e7cd5459d7a006ebc51d3eb9458c9
Validity
Not Before: Jan 1 14:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bfc3a02d342c0556e6e6feaf4698f0cad70c7035
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:54:69:d5:80:57:73:90:b6:ce:b1:ba:cb:57:
eb:30:b4:31:13:b2:79:ec:24:62:79:e5:b8:e1:69:
e4:a5:49:fd:91:02:92:0b:56:74:19:f9:85:57:b0:
f6:ef:6f:b3:55:25:d4:d1:2a:6f:13:01:9f:21:15:
2d:3e:db:f5:f2:4a:33:3f:5e:e9:ba:b3:71:18:8f:
60:f8:10:ac:e0:7d:d1:ad:27:ce:57:e7:eb:03:bf:
49:b8:f0:6f:5a:32:9e:2c:e9:8f:24:b5:f4:4e:9c:
d5:d4:55:d4:65:6f:c6:56:91:13:63:27:97:44:ca:
da:5c:95:da:00:84:66:2d:a4:34:01:81:28:5e:45:
46:29:95:8f:b3:c8:78:5f:3c:9c:3e:6f:d0:4e:13:
83:a7:3c:42:37:26:46:b2:11:79:a7:b8:dc:e2:1a:
b9:9c:87:e5:47:54:d9:59:3b:79:65:5d:69:72:2e:
de:85:9e:11:c1:5a:e0:82:74:c1:09:d4:f1:65:f0:
c0:5c:29:ea:6a:08:6d:93:8d:36:81:d9:27:db:88:
21:df:a3:0a:5c:23:7f:03:df:a6:e7:89:d4:6a:dc:
37:3d:41:26:0b:5b:ae:a6:f3:09:6d:e0:88:c5:e7:
a8:6e:39:10:47:35:35:7c:48:ad:29:d8:63:78:71:
ae:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:C3:A0:2D:34:2C:05:56:E6:E6:FE:AF:46:98:F0:CA:D7:0C:70:35
X509v3 Authority Key Identifier:
keyid:8A:AF:22:68:D4:7E:7C:D5:45:9D:7A:00:6E:BC:51:D3:EB:94:58:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iq8iaNR-fNVFnXoAbrxR0-uUWMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/d5d6e5-c60f-4479-9b52-960c266eca5d/1/v8OgLTQsBVbm5v6vRpjwytcMcDU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/d5d6e5-c60f-4479-9b52-960c266eca5d/1/iq8iaNR-fNVFnXoAbrxR0-uUWMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.24.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:67:56:07:b3:42:45:52:c6:b3:4f:b5:2a:1a:28:ab:7d:c4:
79:77:6f:c1:56:ca:35:a3:94:98:30:96:73:31:85:34:fb:0f:
2f:6f:f7:2a:fd:44:e1:fc:6d:a2:b8:6b:a3:da:ae:21:3f:50:
7f:14:bb:13:5a:73:08:24:3c:e6:9a:80:3e:05:32:06:dc:d8:
c6:b0:f6:32:e6:43:25:5e:a3:69:cb:14:06:33:cc:fc:e3:09:
94:30:64:4d:c1:6d:9d:9f:9f:c5:98:3b:75:52:db:98:ab:8b:
70:71:db:f8:ad:53:84:f4:d8:65:03:e5:b2:10:d4:5e:de:a8:
05:62:62:08:73:3b:0d:48:e4:37:7b:64:7f:88:af:9f:fb:d6:
93:59:47:c7:40:91:c4:bf:bf:89:31:9e:6a:35:97:90:56:0b:
07:7f:bc:c5:c7:04:d9:d1:09:fc:c6:63:6a:58:9e:4f:25:01:
0f:8b:07:bd:4e:2d:2b:94:1f:eb:ae:f4:26:96:e5:8e:17:c0:
3f:da:e1:4f:bc:b3:41:70:63:83:7b:69:14:17:04:c2:23:60:
2a:22:76:a7:9e:24:e8:ec:27:ac:fa:a1:51:e1:b3:65:49:09:
6b:4f:13:0c:8f:38:e3:5c:fa:88:2f:b6:63:24:04:80:05:02:
cf:cf:5a:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 14 12:07:07 2023 by rpki-client on console-fra.rpki-client.org