Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/4b90d6-87e6-473e-b36d-6e54215b24e7/1/O5am5NDdVrA32Qykxmvpi26SgwY.roa
File: O5am5NDdVrA32Qykxmvpi26SgwY.roa (raw, json)
Hash identifier: gwYMi5fshG4wNLZGUpg+sZtp18NxlKANh93nMAdolNo=
Subject key identifier: 3B:96:A6:E4:D0:DD:56:B0:37:D9:0C:A4:C6:6B:E9:8B:6E:92:83:06
Certificate issuer: /CN=891d6101d729bc95597da528604ec0b0b7e0042c
Certificate serial: C568D6
Authority key identifier: 89:1D:61:01:D7:29:BC:95:59:7D:A5:28:60:4E:C0:B0:B7:E0:04:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iR1hAdcpvJVZfaUoYE7AsLfgBCw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/4b90d6-87e6-473e-b36d-6e54215b24e7/1/O5am5NDdVrA32Qykxmvpi26SgwY.roa
Signing time: Wed 15 Jun 2022 15:55:07 +0000
ROA not before: Wed 15 Jun 2022 15:55:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 86.104.19.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12937430 (0xc568d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=891d6101d729bc95597da528604ec0b0b7e0042c
Validity
Not Before: Jun 15 15:55:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b96a6e4d0dd56b037d90ca4c66be98b6e928306
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:bc:1f:01:5a:89:a6:9e:be:9c:a8:ec:5b:f3:
08:2c:f9:79:fe:4c:b2:90:ec:94:65:dd:fa:f5:42:
d6:1a:71:7e:cd:23:0c:89:09:cd:91:80:a6:b3:58:
a4:ad:e6:d4:0e:aa:46:d8:9c:a0:0a:f4:a9:08:ab:
06:9c:65:cf:5d:c2:df:fb:d3:d1:0a:d3:e8:39:c6:
0e:bd:bf:4d:a0:a7:81:90:48:27:12:9b:39:f7:66:
ea:65:2a:a8:b1:b8:75:9a:15:39:73:52:3a:6f:a3:
61:23:0f:76:6b:9f:f5:74:a9:75:3b:80:6b:bb:6b:
01:ca:42:68:b3:89:35:42:9b:80:0e:e8:be:ff:fd:
1f:93:0c:79:02:1b:e1:d7:48:17:c2:02:32:17:69:
9d:01:d9:dd:1e:bd:13:c7:04:fc:de:5a:23:01:48:
b1:9e:20:30:3c:c2:7e:1a:7d:fd:f1:b8:f7:5b:8b:
51:b1:d1:41:04:eb:51:f1:4b:c8:16:d4:85:2c:6a:
48:ad:18:2c:34:d5:37:9d:c1:9d:1f:17:41:e2:60:
9b:c8:df:f5:ba:7b:c0:b9:76:9e:fb:62:3c:a0:da:
69:88:15:08:45:84:27:72:b6:2d:2d:db:c7:b6:12:
97:57:98:c8:6b:40:ba:69:e0:08:0b:c2:eb:70:57:
65:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:96:A6:E4:D0:DD:56:B0:37:D9:0C:A4:C6:6B:E9:8B:6E:92:83:06
X509v3 Authority Key Identifier:
keyid:89:1D:61:01:D7:29:BC:95:59:7D:A5:28:60:4E:C0:B0:B7:E0:04:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iR1hAdcpvJVZfaUoYE7AsLfgBCw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/4b90d6-87e6-473e-b36d-6e54215b24e7/1/O5am5NDdVrA32Qykxmvpi26SgwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/4b90d6-87e6-473e-b36d-6e54215b24e7/1/iR1hAdcpvJVZfaUoYE7AsLfgBCw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.104.19.0/24
Signature Algorithm: sha256WithRSAEncryption
45:cf:cb:c2:18:cc:dc:df:b6:24:aa:4a:6c:86:e1:9b:56:21:
89:ec:a5:5f:90:c9:3a:7e:d9:e9:df:50:f6:82:df:e9:b0:4f:
e3:78:25:99:43:6f:cb:5a:50:e9:a2:2a:c1:d7:45:ef:34:bf:
f9:a2:2b:d2:f7:aa:c7:82:8e:94:db:1b:2d:0c:97:5d:52:4c:
cc:76:f3:1b:8f:fc:fe:e1:7b:21:cb:25:1c:da:6e:2d:74:45:
c2:53:73:61:44:65:c5:07:2f:77:fc:a4:31:06:1e:2e:3f:72:
59:e8:57:04:69:92:ca:3f:29:ba:e5:70:ba:f3:5f:29:5a:1f:
4b:af:b7:7f:1b:6a:05:82:a3:8d:29:31:f4:be:33:10:72:ae:
e2:63:31:3a:e4:34:80:92:65:35:66:10:90:db:33:f6:e6:bd:
62:0c:ca:67:e3:41:f7:04:87:7d:5f:3b:f3:b2:b1:69:2e:0c:
d7:4b:31:cc:28:26:bd:8a:ae:3b:df:49:6a:af:ed:12:f0:9f:
00:df:7f:46:94:ef:98:1e:ac:bd:21:d3:5e:3b:02:b6:9f:87:
4e:c3:80:71:24:17:de:19:37:2e:c7:69:1e:99:61:be:59:4b:
93:6e:34:ff:de:ba:5b:d1:f4:60:40:58:d8:f5:be:91:c3:7f:
d4:95:a8:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:06 2023 by rpki-client on console-ams.rpki-client.org