Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/81db49-fb83-4219-9f89-619d31b554b3/1/2W-6YC2w16Ei8Z1-K0zds0-vOOk.roa
File: 2W-6YC2w16Ei8Z1-K0zds0-vOOk.roa (raw, json)
Hash identifier: yfeqpKnqzfXbdkjoSCEkGZNh1xKCuWjB70n6v83XBbo=
Subject key identifier: D9:6F:BA:60:2D:B0:D7:A1:22:F1:9D:7E:2B:4C:DD:B3:4F:AF:38:E9
Certificate issuer: /CN=b0cc4a043d3f45f3feabf7ec0620637f461ae7f8
Certificate serial: 018571B0E591B1BC53A427DF546841798C91
Authority key identifier: B0:CC:4A:04:3D:3F:45:F3:FE:AB:F7:EC:06:20:63:7F:46:1A:E7:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sMxKBD0_RfP-q_fsBiBjf0Ya5_g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/81db49-fb83-4219-9f89-619d31b554b3/1/2W-6YC2w16Ei8Z1-K0zds0-vOOk.roa
Signing time: Mon 02 Jan 2023 08:54:56 +0000
ROA not before: Mon 02 Jan 2023 08:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49453
IP address blocks: 94.154.113.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b0:e5:91:b1:bc:53:a4:27:df:54:68:41:79:8c:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0cc4a043d3f45f3feabf7ec0620637f461ae7f8
Validity
Not Before: Jan 2 08:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d96fba602db0d7a122f19d7e2b4cddb34faf38e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ca:1e:86:1d:3d:fa:30:6d:90:32:e2:00:ca:
9c:30:58:3f:25:b0:47:0d:7a:3c:43:42:9b:a5:f7:
e2:50:2d:9e:89:60:18:bd:fc:83:83:1e:c7:32:0a:
b2:93:45:06:85:b4:19:42:0c:34:fb:9f:90:ba:e3:
80:89:0a:db:36:1b:df:5e:bd:63:0c:fe:b8:e5:b1:
d5:10:71:67:2f:cf:47:c8:53:7f:ce:bb:a5:0b:a4:
cd:ef:cc:ae:14:c1:ab:f9:0c:96:c3:5b:6b:5d:1d:
38:60:a5:a6:40:a0:77:f6:02:64:d5:63:fb:21:76:
c6:28:0e:73:d4:f8:0a:f6:3f:fc:c6:4e:25:cd:06:
80:44:a8:ba:71:32:7f:6e:80:05:80:9a:ba:64:07:
a4:31:53:3a:90:77:f3:b0:bc:19:15:94:fd:45:6b:
ba:d4:47:ef:ee:0f:cf:78:10:2f:fd:8c:4d:51:b5:
1e:4d:16:42:09:2b:ea:b1:84:4d:20:e4:bc:a7:e3:
ad:4a:ae:d1:b7:2e:ec:4a:e2:77:05:f8:bd:3d:f0:
96:f5:f7:2b:f0:6e:70:9c:86:8d:92:f1:97:9d:16:
33:44:23:9b:dc:a0:00:b8:42:fc:9c:4d:20:c6:28:
f9:b6:78:06:89:7d:48:2f:6e:9b:ab:2c:e0:0a:5f:
95:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:6F:BA:60:2D:B0:D7:A1:22:F1:9D:7E:2B:4C:DD:B3:4F:AF:38:E9
X509v3 Authority Key Identifier:
keyid:B0:CC:4A:04:3D:3F:45:F3:FE:AB:F7:EC:06:20:63:7F:46:1A:E7:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sMxKBD0_RfP-q_fsBiBjf0Ya5_g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/81db49-fb83-4219-9f89-619d31b554b3/1/2W-6YC2w16Ei8Z1-K0zds0-vOOk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/81db49-fb83-4219-9f89-619d31b554b3/1/sMxKBD0_RfP-q_fsBiBjf0Ya5_g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.113.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:91:70:a4:7a:b3:3c:cd:dd:0e:72:d3:8a:23:c7:47:a0:9e:
6c:b4:21:3a:4a:22:98:09:cb:65:46:2f:b6:b7:19:45:ad:b7:
ac:a8:3a:10:3a:e2:15:a0:cc:09:2e:07:92:91:d7:ee:b9:54:
b0:f6:55:1c:12:17:48:5f:bd:d1:4b:bb:31:2f:c3:6e:c0:61:
55:f8:f2:22:ea:51:24:f5:db:4c:bc:a4:9d:9c:71:7e:78:ee:
57:28:ce:a1:16:f0:6d:16:5d:98:93:81:63:71:18:44:88:71:
5b:2d:3a:11:aa:45:77:f7:08:22:2f:43:0c:ef:e7:70:04:7e:
5e:36:7c:28:31:c3:87:c5:c3:33:ec:fb:fd:5c:18:af:23:f8:
e3:a3:51:ab:48:df:f2:7d:4a:2d:75:8f:62:ff:4e:c7:6a:e2:
e1:4b:61:c3:db:dd:0d:8f:0b:1f:37:d0:3c:e4:f9:e2:88:00:
89:6e:a4:be:3c:2c:69:de:82:30:a7:ec:70:3d:44:80:41:46:
2a:a2:18:23:31:59:b0:26:57:04:d4:1a:ba:d7:01:bd:01:44:
b7:8b:f1:22:5c:bf:72:ad:da:58:13:ed:de:56:f8:50:c4:b9:
5f:6d:4e:46:e5:4f:6e:93:c2:ea:31:c3:1d:29:4b:67:80:c5:
c0:66:cd:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:12 2024 by rpki-client on console-fra.rpki-client.org