Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/cd94f2-3b19-4826-a0eb-bfe221553f07/1/yBFKgbOBYDJZ9x1jfMEW_DfXm70.roa
File: yBFKgbOBYDJZ9x1jfMEW_DfXm70.roa (raw, json)
Hash identifier: jBaK7J4WZ5dNRC9Cxl0mFKZmuTt41wHA32NWlFrRnrY=
Subject key identifier: C8:11:4A:81:B3:81:60:32:59:F7:1D:63:7C:C1:16:FC:37:D7:9B:BD
Certificate issuer: /CN=b3efea3a72faf0df4322cdaab9a136d79de8a3ef
Certificate serial: 018B589844DE6AF61BD0A5E47A75961F81A3
Authority key identifier: B3:EF:EA:3A:72:FA:F0:DF:43:22:CD:AA:B9:A1:36:D7:9D:E8:A3:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s-_qOnL68N9DIs2quaE2153oo-8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/cd94f2-3b19-4826-a0eb-bfe221553f07/1/yBFKgbOBYDJZ9x1jfMEW_DfXm70.roa
Signing time: Sun 22 Oct 2023 18:14:15 +0000
ROA not before: Sun 22 Oct 2023 18:14:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 194.26.215.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:58:98:44:de:6a:f6:1b:d0:a5:e4:7a:75:96:1f:81:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3efea3a72faf0df4322cdaab9a136d79de8a3ef
Validity
Not Before: Oct 22 18:14:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c8114a81b381603259f71d637cc116fc37d79bbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f2:a5:7a:7e:f1:b1:fc:0f:72:27:87:db:0b:
43:1d:f5:f9:61:a3:04:ce:17:08:47:0d:47:47:87:
cf:ac:77:c1:66:d8:98:2f:31:76:3b:3b:17:63:f9:
55:56:28:24:64:80:2a:63:14:57:b2:e5:11:57:fd:
63:d4:d9:36:d8:25:59:a4:73:b6:a3:c3:8b:2c:03:
37:c3:47:21:25:0a:a0:c9:62:48:2c:fb:c2:1d:1d:
82:e3:f5:cd:9b:0d:e4:45:e3:66:bb:fc:3c:d1:d3:
1e:cb:92:fb:67:09:79:be:50:59:6c:8d:4d:27:70:
a9:c0:63:69:6d:fa:a1:f7:3f:30:be:d9:b6:c5:88:
b3:f3:0f:2c:6f:b2:93:74:fb:a9:85:72:fc:e5:3a:
30:66:7d:a8:d3:96:f2:82:d8:98:c0:14:37:3e:91:
4a:6c:12:eb:a5:4d:a3:8b:59:81:45:91:cd:1a:1f:
03:18:2e:ff:21:93:9c:1e:74:d1:b0:f2:d2:ac:10:
fa:da:70:51:a3:0c:37:c2:8f:64:3c:91:db:4a:c8:
0b:80:59:cf:c1:44:74:e2:ef:fe:6b:1c:5e:5f:86:
c8:6d:c5:cf:a6:8a:c2:60:04:33:e7:90:70:08:6d:
4c:57:7f:3a:96:20:85:7f:b8:fa:18:10:6f:3d:27:
ab:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:11:4A:81:B3:81:60:32:59:F7:1D:63:7C:C1:16:FC:37:D7:9B:BD
X509v3 Authority Key Identifier:
keyid:B3:EF:EA:3A:72:FA:F0:DF:43:22:CD:AA:B9:A1:36:D7:9D:E8:A3:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s-_qOnL68N9DIs2quaE2153oo-8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/cd94f2-3b19-4826-a0eb-bfe221553f07/1/yBFKgbOBYDJZ9x1jfMEW_DfXm70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/cd94f2-3b19-4826-a0eb-bfe221553f07/1/s-_qOnL68N9DIs2quaE2153oo-8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.215.0/24
Signature Algorithm: sha256WithRSAEncryption
07:f3:06:24:e9:9d:cb:e5:1f:b4:b5:cf:50:18:f5:62:a6:0d:
c5:37:e8:84:0a:01:5a:6a:3a:8c:89:92:71:ab:14:e2:2f:8a:
7b:a5:8f:26:5b:23:54:3e:da:4d:8a:ea:13:87:73:bd:77:51:
38:a7:0d:ee:ff:a3:d0:32:d0:c6:5c:56:b2:da:27:de:98:82:
d5:7c:b5:aa:c9:b9:ee:8e:ec:47:80:28:e6:8a:6c:ed:7d:b1:
3e:0c:2c:6c:54:64:fb:f8:11:e9:f9:b1:00:c8:13:7b:42:0b:
6f:23:ca:d8:98:af:0b:fb:18:99:c3:29:9b:29:04:53:5d:20:
3d:92:bd:1a:8c:64:b4:d7:80:2c:76:2e:0d:9b:61:86:29:ad:
19:ab:fa:d6:59:b0:d5:e5:ae:9c:67:e0:58:b2:74:47:e6:76:
40:d8:fc:ef:13:ba:b0:c8:45:53:b3:15:77:b8:76:ec:c8:c0:
8f:36:39:09:84:48:7e:c4:29:20:a5:f6:d9:4e:34:02:7c:b9:
69:01:19:93:8f:e8:d0:39:65:67:76:2c:7f:19:ca:53:65:cd:
1a:98:68:1b:64:95:4a:4d:87:f9:b7:c8:1e:7e:7f:05:2b:5e:
58:72:b1:3a:27:41:79:bc:0c:96:d4:d5:58:0e:0f:98:02:b1:
0d:9b:02:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:54 2024 by rpki-client on console-ams.rpki-client.org