Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/3822e5-07a4-4a38-ae68-b6c04330ccd1/1/C6Nze1EruPpdaSgP1MtFjOtxND8.roa
File: C6Nze1EruPpdaSgP1MtFjOtxND8.roa (raw, json)
Hash identifier: aFlcBupmOO7eWfwq75zZQm0IlzsKRomkgBJTXyevdZU=
Subject key identifier: 0B:A3:73:7B:51:2B:B8:FA:5D:69:28:0F:D4:CB:45:8C:EB:71:34:3F
Certificate issuer: /CN=00ca712bb4911b7674c7af047ddd86aa2063ce00
Certificate serial: 018572A7DD973999ED4606C84D119379E1E7
Authority key identifier: 00:CA:71:2B:B4:91:1B:76:74:C7:AF:04:7D:DD:86:AA:20:63:CE:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AMpxK7SRG3Z0x68Efd2GqiBjzgA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/3822e5-07a4-4a38-ae68-b6c04330ccd1/1/C6Nze1EruPpdaSgP1MtFjOtxND8.roa
Signing time: Mon 02 Jan 2023 13:24:41 +0000
ROA not before: Mon 02 Jan 2023 13:24:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 194.104.135.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:a7:dd:97:39:99:ed:46:06:c8:4d:11:93:79:e1:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00ca712bb4911b7674c7af047ddd86aa2063ce00
Validity
Not Before: Jan 2 13:24:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ba3737b512bb8fa5d69280fd4cb458ceb71343f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:55:bd:22:99:8c:95:81:d0:9f:7d:cb:16:e2:
ef:b6:1b:ce:5e:f2:bc:fb:c6:62:83:0d:06:30:e7:
55:c0:81:9d:bb:72:8a:50:04:f2:6b:d7:b1:0c:02:
9f:39:2b:5e:60:19:e3:8e:a3:1a:fa:99:ea:ce:8f:
b8:ce:af:4a:34:c3:90:20:74:e7:ec:79:61:3b:9a:
30:8c:a7:18:ae:93:28:2c:e7:09:cd:e6:4c:45:8c:
70:02:a8:3f:20:9c:9e:97:0c:6c:40:36:3c:d3:28:
57:97:a6:c6:88:02:5b:10:cf:a5:7b:27:32:d2:48:
d1:60:d7:a9:53:03:e8:8a:42:a4:bb:23:2f:ac:4f:
d9:6c:5a:93:0f:f7:32:43:75:ea:dd:2c:e0:ab:b3:
8f:e0:d2:b3:b9:77:1f:2b:6f:37:31:42:cd:1b:a8:
bd:83:35:57:e5:47:f9:fd:63:78:4f:42:a6:1e:2b:
56:53:b9:c3:ba:64:c1:ec:25:f0:b2:e8:e2:a5:a1:
d3:73:8b:09:2e:20:c8:f5:40:68:45:98:cf:67:f6:
18:97:79:26:ea:aa:d4:60:8a:74:82:1c:53:78:f1:
22:d7:fe:08:eb:fc:ae:97:af:1e:1d:9e:81:cf:ac:
18:81:33:67:43:6a:51:0b:78:20:a6:85:bd:be:82:
5d:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:A3:73:7B:51:2B:B8:FA:5D:69:28:0F:D4:CB:45:8C:EB:71:34:3F
X509v3 Authority Key Identifier:
keyid:00:CA:71:2B:B4:91:1B:76:74:C7:AF:04:7D:DD:86:AA:20:63:CE:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AMpxK7SRG3Z0x68Efd2GqiBjzgA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/3822e5-07a4-4a38-ae68-b6c04330ccd1/1/C6Nze1EruPpdaSgP1MtFjOtxND8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/3822e5-07a4-4a38-ae68-b6c04330ccd1/1/AMpxK7SRG3Z0x68Efd2GqiBjzgA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.104.135.0/24
Signature Algorithm: sha256WithRSAEncryption
09:8c:65:37:4a:a1:3e:e8:6f:c0:2b:4e:e2:a0:6d:bf:fb:68:
91:18:8a:a9:61:f9:f8:30:4e:3c:77:95:15:e0:67:22:04:25:
70:c2:6a:16:d5:f6:b9:44:db:ae:b1:dc:b8:a9:e7:c7:0b:ac:
c5:be:28:a1:6a:d7:8c:5a:e1:20:e4:41:7d:fc:44:43:a7:f3:
db:46:9a:e9:90:91:b2:e4:b0:f4:2e:c6:c7:77:2a:a3:9e:55:
ee:bf:51:bf:a9:1e:ea:c6:19:d0:7e:3b:d5:9a:8e:9d:8e:a2:
b7:df:a3:4e:68:a5:78:be:c5:0a:fe:dc:c6:40:55:ae:ab:b9:
33:32:53:d9:9c:6a:24:ff:13:9d:46:ab:ed:c8:fd:93:8d:56:
f6:d3:4d:a8:a0:40:ee:3f:d8:7a:c6:7c:64:84:84:09:2b:f4:
34:5e:a6:52:c0:0d:ae:fa:b2:5f:57:56:19:d1:1a:77:30:bd:
5e:11:38:ac:94:8d:df:0e:d4:b6:65:99:36:f3:99:63:1c:0a:
6c:48:0d:e8:2b:a3:98:d9:93:62:62:8b:f7:75:2d:60:fe:66:
1e:9d:2c:e8:c5:0d:49:df:39:a2:6c:62:29:f2:3e:a9:3f:d0:
9d:f5:6c:b4:fb:7e:d0:57:be:5c:d7:01:e9:54:60:13:a0:94:
2f:75:ef:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:00:43 2025 by rpki-client