Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/29accb-9c66-4eaf-8396-6dac96c16bf6/1/DB4zb0Lq96qHYeug9nu9O97nusk.roa
File: DB4zb0Lq96qHYeug9nu9O97nusk.roa (raw, json)
Hash identifier: 423wXXOB4EJDhF83fR0CMVl91hCg+X47H1wzKnllelM=
Subject key identifier: 0C:1E:33:6F:42:EA:F7:AA:87:61:EB:A0:F6:7B:BD:3B:DE:E7:BA:C9
Certificate issuer: /CN=d4ddb0e63eddf07369f493ec7d310135adfed94f
Certificate serial: 37FC
Authority key identifier: D4:DD:B0:E6:3E:DD:F0:73:69:F4:93:EC:7D:31:01:35:AD:FE:D9:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1N2w5j7d8HNp9JPsfTEBNa3-2U8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/29accb-9c66-4eaf-8396-6dac96c16bf6/1/DB4zb0Lq96qHYeug9nu9O97nusk.roa
Signing time: Fri 15 Apr 2022 15:09:50 +0000
ROA not before: Fri 15 Apr 2022 15:09:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196695
IP address blocks: 217.28.132.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14332 (0x37fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4ddb0e63eddf07369f493ec7d310135adfed94f
Validity
Not Before: Apr 15 15:09:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c1e336f42eaf7aa8761eba0f67bbd3bdee7bac9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:23:d2:b8:1e:86:e4:17:b6:f3:24:a4:5b:65:
a5:c6:c3:26:e0:ed:f2:a7:a9:f5:76:2c:d1:9c:29:
df:70:48:24:93:12:83:5d:6d:86:a9:3e:c3:a1:3f:
3b:27:f2:59:74:33:5b:5c:eb:b0:c3:69:72:54:6c:
e4:47:c5:33:41:35:fc:bc:a3:db:0d:2d:1d:a8:6d:
7a:ff:3d:75:ee:73:b9:8c:77:ca:88:e5:0f:1f:31:
1f:75:73:c6:14:13:77:4b:a3:34:64:f1:f1:ac:aa:
4a:17:23:18:b9:3d:a2:aa:1a:52:9a:d7:d5:7a:b2:
b7:2f:63:44:8f:a9:a6:0c:07:b2:02:b9:67:f0:5a:
83:7e:d1:9c:6a:f4:ac:51:91:01:6c:33:6b:45:16:
c6:dc:12:44:49:6b:d6:3a:76:0a:02:eb:28:49:f1:
08:22:54:90:53:6f:ce:fe:dc:e7:35:d2:57:e8:a4:
6f:82:cc:43:bb:a2:04:f0:1a:db:96:44:59:42:c0:
1a:0f:71:79:2c:73:8c:56:f2:6e:cb:48:20:a5:5b:
c4:59:7b:c4:74:6e:b8:10:38:6c:66:7f:7d:21:44:
5c:4d:4f:b4:6f:8b:24:24:de:a9:9e:76:41:da:d2:
32:5c:42:51:d2:39:eb:21:a5:64:eb:6e:18:d1:89:
99:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:1E:33:6F:42:EA:F7:AA:87:61:EB:A0:F6:7B:BD:3B:DE:E7:BA:C9
X509v3 Authority Key Identifier:
keyid:D4:DD:B0:E6:3E:DD:F0:73:69:F4:93:EC:7D:31:01:35:AD:FE:D9:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1N2w5j7d8HNp9JPsfTEBNa3-2U8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/29accb-9c66-4eaf-8396-6dac96c16bf6/1/DB4zb0Lq96qHYeug9nu9O97nusk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/29accb-9c66-4eaf-8396-6dac96c16bf6/1/1N2w5j7d8HNp9JPsfTEBNa3-2U8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.28.132.0/24
Signature Algorithm: sha256WithRSAEncryption
40:6b:60:fe:b5:b6:18:29:73:ff:bb:25:4a:2d:96:1b:45:d1:
84:25:67:86:4e:34:27:2f:e9:59:da:ef:11:5f:19:74:ba:7d:
00:f6:3d:c5:c4:58:89:23:53:22:67:af:21:51:fb:a9:a9:ce:
97:69:0b:d1:1e:4c:a3:f8:10:d6:70:94:cf:3e:21:62:69:73:
01:96:80:90:57:e2:0a:ee:01:bf:e0:fe:c9:63:58:8f:03:13:
7c:70:ff:cc:b3:67:93:6b:84:52:39:be:d8:e0:6b:b5:5e:d4:
0b:a6:6f:35:95:5d:70:f9:0c:d2:ae:89:75:7d:cc:b0:d6:b7:
2a:cb:cb:74:f9:24:04:f6:64:e6:ba:93:fd:3b:da:06:22:06:
fe:b5:b8:6a:b6:97:20:5b:90:9b:35:30:f4:eb:d9:94:ef:be:
e1:22:6f:c7:26:5a:98:51:ed:d0:8f:ce:3b:5a:d6:55:11:98:
23:e6:df:c0:dc:71:ee:15:33:88:9c:10:b6:7d:6c:a9:d9:ef:
43:3c:d0:19:26:1c:3c:a7:12:a1:9d:bd:c0:f2:c8:67:56:e8:
2a:fa:02:92:eb:19:2e:16:7f:06:ae:c6:d8:aa:57:60:dd:29:
0f:90:66:67:c1:9b:1b:fe:38:dd:07:44:6c:14:9f:93:c8:e6:
c2:25:1e:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:33 2024 by rpki-client on console-ams.rpki-client.org