Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/974238-01fa-4c15-b942-52d50b75d70c/1/LcyxNFnFZKaFIjToOUwFf7RPrVA.roa
File: LcyxNFnFZKaFIjToOUwFf7RPrVA.roa (raw, json)
Hash identifier: EfxsnOegl/kIlL+BT+iEEGSdovWDVxadXcGUaY0CWPk=
Subject key identifier: 2D:CC:B1:34:59:C5:64:A6:85:22:34:E8:39:4C:05:7F:B4:4F:AD:50
Certificate issuer: /CN=5e2f2e4b664d3edba236a8768dc9541e7d9d529c
Certificate serial: 01856EA6A7A955FC1B4F2B541CD8E974ED27
Authority key identifier: 5E:2F:2E:4B:66:4D:3E:DB:A2:36:A8:76:8D:C9:54:1E:7D:9D:52:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xi8uS2ZNPtuiNqh2jclUHn2dUpw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/974238-01fa-4c15-b942-52d50b75d70c/1/LcyxNFnFZKaFIjToOUwFf7RPrVA.roa
Signing time: Sun 01 Jan 2023 18:44:53 +0000
ROA not before: Sun 01 Jan 2023 18:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 195.96.132.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:a7:a9:55:fc:1b:4f:2b:54:1c:d8:e9:74:ed:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e2f2e4b664d3edba236a8768dc9541e7d9d529c
Validity
Not Before: Jan 1 18:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2dccb13459c564a6852234e8394c057fb44fad50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:b5:c3:4b:58:27:43:e8:c3:8b:8e:59:76:fa:
53:6a:63:d4:95:f3:e1:24:59:ed:00:48:f9:92:4f:
99:c7:80:8a:35:0d:22:11:71:c7:58:ca:36:79:ea:
09:35:3b:93:22:63:c2:7f:1c:32:7c:fb:16:38:bf:
49:0d:f4:08:14:7e:6c:0f:d8:e0:a4:5e:b7:18:f8:
b1:1a:b8:9a:69:8c:b5:cb:1d:86:d1:18:f7:3c:7f:
fe:92:02:e0:bc:3e:54:fb:4a:07:7a:73:db:04:27:
14:24:02:64:8a:0b:cc:52:c7:5a:c4:40:c6:85:79:
71:ca:db:fb:22:b2:bf:01:f4:91:09:a3:41:4b:dc:
9c:7b:f4:4a:1f:45:ab:28:04:02:44:87:78:c9:0f:
b8:fd:6e:8b:ce:cf:80:78:9b:47:cd:43:a2:60:5e:
6c:54:1c:1b:65:20:62:d9:f6:31:df:4a:b4:c4:6e:
c7:ef:cd:5f:a0:4d:4c:b2:fd:e8:f5:e7:f1:68:3a:
22:ca:76:f5:96:c1:a1:e2:a3:99:7a:97:40:ec:7c:
59:9f:f0:83:f7:2a:97:b8:92:32:37:08:f3:6d:51:
89:2b:c0:66:82:40:c9:c7:06:b3:9a:ea:56:8f:ee:
56:dc:1a:c8:29:b9:e4:e0:0b:57:4b:cd:a7:e9:57:
b8:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:CC:B1:34:59:C5:64:A6:85:22:34:E8:39:4C:05:7F:B4:4F:AD:50
X509v3 Authority Key Identifier:
keyid:5E:2F:2E:4B:66:4D:3E:DB:A2:36:A8:76:8D:C9:54:1E:7D:9D:52:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xi8uS2ZNPtuiNqh2jclUHn2dUpw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/974238-01fa-4c15-b942-52d50b75d70c/1/LcyxNFnFZKaFIjToOUwFf7RPrVA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/974238-01fa-4c15-b942-52d50b75d70c/1/Xi8uS2ZNPtuiNqh2jclUHn2dUpw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.132.0/24
Signature Algorithm: sha256WithRSAEncryption
97:97:43:29:b2:ee:71:f6:be:a7:08:d3:25:9e:d1:84:c5:80:
26:2e:69:82:a4:a5:4d:8e:73:7e:fa:9c:a9:b6:57:fe:a3:68:
26:ed:4c:85:2c:84:ea:02:02:b7:15:f2:8d:b6:8b:12:9d:8f:
e8:e2:3f:82:cc:61:a3:ef:25:a6:ac:64:3e:38:f5:83:65:8e:
29:e1:bf:79:2a:56:0a:5c:b6:0f:e5:a7:71:85:e9:ec:db:d0:
ac:e1:ac:54:74:f5:97:43:f4:47:7d:e0:12:c3:a0:01:b3:07:
5e:7d:96:48:05:cf:88:86:ab:c3:a9:be:66:f5:f0:63:9a:0c:
2b:6a:27:36:60:e0:3d:c8:77:4a:21:4b:ad:85:ff:87:fc:2c:
28:00:ec:18:83:0f:8f:13:b1:15:c0:45:46:2e:fd:c6:10:64:
38:9d:c4:fd:22:33:db:59:82:b0:06:b7:54:e2:16:50:88:2c:
6e:6b:11:8f:f3:d1:2e:a3:c1:67:e7:d3:13:44:2e:f1:35:29:
75:7c:44:d3:24:80:19:8c:6e:32:f5:72:d5:d6:a1:78:12:22:
75:44:d3:7e:4e:b7:ea:10:36:36:95:12:65:8e:46:1f:35:a1:
e3:5e:9c:72:5a:62:12:15:46:d2:7e:13:d2:66:62:aa:96:b3:
bb:9f:8f:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 6 09:34:20 2023 by rpki-client on console-fra.rpki-client.org