Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/a4d3f6-1e46-47d3-a5d0-ff89917d40d0/1/tI-KoIxfgXEkABr5eo_f9HdPxHs.roa
File: tI-KoIxfgXEkABr5eo_f9HdPxHs.roa (raw, json)
Hash identifier: v7fKpK1elqfs9AtWjkRkr7/RvWXCKwmJ4eaiegrfe0E=
Subject key identifier: B4:8F:8A:A0:8C:5F:81:71:24:00:1A:F9:7A:8F:DF:F4:77:4F:C4:7B
Certificate issuer: /CN=147ced88a406124c8c4df166c5740509e6415d2a
Certificate serial: 018A9849954E3C884AE4957B5C82E85790D5
Authority key identifier: 14:7C:ED:88:A4:06:12:4C:8C:4D:F1:66:C5:74:05:09:E6:41:5D:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FHztiKQGEkyMTfFmxXQFCeZBXSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/a4d3f6-1e46-47d3-a5d0-ff89917d40d0/1/tI-KoIxfgXEkABr5eo_f9HdPxHs.roa
Signing time: Fri 15 Sep 2023 10:01:13 +0000
ROA not before: Fri 15 Sep 2023 10:01:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 37.140.247.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:98:49:95:4e:3c:88:4a:e4:95:7b:5c:82:e8:57:90:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=147ced88a406124c8c4df166c5740509e6415d2a
Validity
Not Before: Sep 15 10:01:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b48f8aa08c5f817124001af97a8fdff4774fc47b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:2a:48:02:bb:0e:08:4f:27:f9:32:1f:14:1a:
d2:25:3d:eb:c5:fc:a2:74:af:52:1f:4b:35:c2:b7:
c2:5c:63:92:aa:f1:0c:b3:90:8b:0e:af:ec:fa:7b:
fa:c1:31:84:ae:e6:2a:f0:13:3a:7e:80:24:91:41:
91:9d:83:36:e8:ad:40:e5:53:92:4d:24:6a:dd:aa:
34:00:b0:55:27:ab:fc:34:71:06:8b:4b:01:94:e4:
49:6e:1c:27:91:26:ad:ae:37:e5:c3:1c:67:d2:27:
c4:53:c8:d6:76:65:51:67:1d:ac:53:4f:38:0c:a3:
b5:52:bb:bd:76:a5:7b:5d:37:dc:42:7b:7c:65:f9:
36:05:8d:25:40:03:c0:87:46:c2:b2:f4:5d:a2:38:
5e:70:f8:51:e6:4c:bd:b6:ff:62:6b:43:14:6a:79:
79:de:fc:a2:f1:2c:d1:6b:39:4d:aa:46:d5:f7:47:
20:87:3f:a8:9d:43:33:59:ea:3f:7d:45:1b:a6:7d:
ff:72:89:2d:77:45:5b:91:65:ee:75:fc:74:fe:d8:
6f:05:f3:71:72:c1:fd:b4:cb:cf:0f:c0:f5:32:6a:
cf:06:52:5b:da:de:99:0b:73:85:25:76:fa:46:65:
2a:7c:43:c5:c0:5f:01:18:b6:55:c9:c3:47:d6:38:
d6:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:8F:8A:A0:8C:5F:81:71:24:00:1A:F9:7A:8F:DF:F4:77:4F:C4:7B
X509v3 Authority Key Identifier:
keyid:14:7C:ED:88:A4:06:12:4C:8C:4D:F1:66:C5:74:05:09:E6:41:5D:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FHztiKQGEkyMTfFmxXQFCeZBXSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a4d3f6-1e46-47d3-a5d0-ff89917d40d0/1/tI-KoIxfgXEkABr5eo_f9HdPxHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a4d3f6-1e46-47d3-a5d0-ff89917d40d0/1/FHztiKQGEkyMTfFmxXQFCeZBXSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.247.0/24
Signature Algorithm: sha256WithRSAEncryption
72:0c:47:03:c0:b4:18:8d:32:a3:fe:85:4f:de:42:b0:65:58:
b6:92:73:bb:10:4c:b2:4c:1a:25:3e:2e:07:eb:46:ae:65:9d:
30:10:d4:2d:d0:58:8d:a3:6d:97:1f:ec:9d:53:1a:7c:c9:22:
2c:6a:dc:b9:dd:c9:ff:69:20:7b:3e:11:f4:85:30:a1:36:25:
11:35:5f:5e:17:f0:8c:88:16:f9:4f:8b:f3:c5:62:14:ce:9d:
7e:a4:fe:ad:e4:39:ca:f0:13:18:82:2b:f5:cd:0b:1d:ca:ac:
ca:f0:5d:43:33:c5:5c:8e:93:03:37:40:78:b4:5e:1a:f4:37:
f3:4e:0f:2c:1d:35:eb:2f:60:dd:d3:e0:6d:f2:78:03:d1:41:
ed:37:09:fd:50:c0:8b:fb:e1:c7:2a:c2:92:81:56:f6:91:2f:
fc:d1:f7:99:79:cc:38:1e:98:bb:32:af:a8:16:68:ed:1e:ea:
ae:18:ac:cd:dc:f5:de:7a:06:eb:87:23:e8:d2:52:60:4f:e6:
25:fb:a1:e1:f8:c6:5b:30:df:0c:87:83:1c:fb:22:15:d0:c3:
76:2e:77:19:f3:8f:25:d7:3f:2e:bb:41:69:3c:14:1f:62:7b:
e3:04:a5:63:12:82:4f:3f:c4:85:91:0c:4f:ee:33:31:68:fa:
41:7d:1a:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:32 2024 by rpki-client on console-ams.rpki-client.org