Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/974238-01fa-4c15-b942-52d50b75d70c/1/nV3S39rnjjvSWCQbBFRKRchba0Q.roa
File: nV3S39rnjjvSWCQbBFRKRchba0Q.roa (raw, json)
Hash identifier: qIgkrunfiFQC8EzblNtqMd+SgbCw3FUWVlKc9wU3n54=
Subject key identifier: 9D:5D:D2:DF:DA:E7:8E:3B:D2:58:24:1B:04:54:4A:45:C8:5B:6B:44
Certificate issuer: /CN=5e2f2e4b664d3edba236a8768dc9541e7d9d529c
Certificate serial: 0141B841
Authority key identifier: 5E:2F:2E:4B:66:4D:3E:DB:A2:36:A8:76:8D:C9:54:1E:7D:9D:52:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xi8uS2ZNPtuiNqh2jclUHn2dUpw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/974238-01fa-4c15-b942-52d50b75d70c/1/nV3S39rnjjvSWCQbBFRKRchba0Q.roa
Signing time: Thu 21 Apr 2022 10:39:38 +0000
ROA not before: Thu 21 Apr 2022 10:39:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136744
IP address blocks: 195.96.132.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21084225 (0x141b841)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e2f2e4b664d3edba236a8768dc9541e7d9d529c
Validity
Not Before: Apr 21 10:39:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d5dd2dfdae78e3bd258241b04544a45c85b6b44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d3:17:7f:f8:8c:25:6c:15:f6:cc:d5:dc:8b:
1e:e8:96:70:fb:a9:c5:b7:a2:fa:55:a5:55:73:9e:
3c:8d:8d:90:80:8c:12:95:e7:63:0f:87:59:b6:8b:
da:5e:aa:fa:11:50:55:e0:ed:71:ec:cc:79:bf:7d:
b3:73:34:4a:0c:66:bc:29:8e:cd:43:d4:7d:23:9a:
bc:5c:a1:c1:54:73:a6:53:a2:17:0c:b6:cd:5d:6a:
28:d2:10:4b:af:21:fb:7e:1f:3f:70:88:19:62:f5:
31:ec:86:91:c6:48:2e:30:f4:82:ad:2f:8d:77:36:
9b:56:59:89:c7:ae:14:07:3a:a6:28:78:1c:8e:2d:
af:ac:2d:5a:5b:90:0d:54:ea:de:13:42:19:42:09:
25:3a:29:1e:12:bd:61:c9:b4:22:a2:97:66:19:56:
2c:8e:79:77:aa:82:e8:5e:53:5d:17:bf:1f:83:46:
c1:05:d0:24:d3:b3:2a:37:ca:eb:3f:83:64:63:8e:
10:d7:a4:37:e6:cc:0b:75:dc:1e:5c:fa:e9:c2:98:
82:61:72:b6:04:e2:9f:6b:94:9e:46:b6:f9:68:7b:
d2:ab:b5:b7:f4:28:e1:ce:15:77:9a:3c:59:05:9e:
18:e7:6e:3f:53:a7:07:e3:ff:53:6c:22:58:09:91:
87:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:5D:D2:DF:DA:E7:8E:3B:D2:58:24:1B:04:54:4A:45:C8:5B:6B:44
X509v3 Authority Key Identifier:
keyid:5E:2F:2E:4B:66:4D:3E:DB:A2:36:A8:76:8D:C9:54:1E:7D:9D:52:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xi8uS2ZNPtuiNqh2jclUHn2dUpw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/974238-01fa-4c15-b942-52d50b75d70c/1/nV3S39rnjjvSWCQbBFRKRchba0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/974238-01fa-4c15-b942-52d50b75d70c/1/Xi8uS2ZNPtuiNqh2jclUHn2dUpw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.132.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:24:70:3d:5c:b2:58:b4:42:2f:de:41:4e:75:ca:a0:e9:22:
a2:9b:6c:57:43:11:02:76:a3:2e:53:84:49:45:e6:80:82:ab:
7f:83:87:ec:65:4e:d2:35:23:6f:c2:fc:46:e0:82:64:35:ca:
f9:e8:a3:a0:27:55:69:2b:eb:6d:2a:97:7e:37:b2:77:4d:48:
32:13:e5:fd:89:ee:fb:a6:8b:5d:da:83:d3:bf:c1:8d:35:56:
a8:a9:7f:87:bd:58:c2:3e:93:54:12:74:7e:09:cc:fa:b3:1d:
1b:e1:9d:f5:99:b3:c3:1a:d7:6f:48:1a:f8:c4:74:d1:18:36:
b2:1c:ab:92:98:e2:e0:d8:c0:c7:4f:81:18:af:96:11:bb:45:
20:11:fe:92:85:10:db:be:a1:85:59:74:7f:26:1f:b0:24:96:
79:3f:fd:8b:ce:ca:f7:f6:a2:20:ea:dd:3a:9f:64:2f:8b:4c:
e1:fb:67:b5:f1:09:05:80:a3:61:64:77:cf:ad:1a:e6:7d:e8:
3b:73:5d:bc:9f:f7:f5:cc:c1:a1:8e:06:a6:a2:6e:14:25:cb:
7a:f4:ec:06:bd:4d:43:53:dc:73:c9:16:a1:e2:29:cd:b4:5a:
9c:2d:84:4f:be:27:51:9e:ad:2a:c9:3d:65:3b:1b:c2:9c:78:
33:99:33:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:02 2024 by rpki-client on console-ams.rpki-client.org