Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/70684a-662c-40c5-92b5-bb4eabd1bec3/1/APDa87igpM1i2VLvfJ3nlDJdMw0.roa
File: APDa87igpM1i2VLvfJ3nlDJdMw0.roa (raw, json)
Hash identifier: mGz03zRzjCpJN7iDRskEO34tw6bkwDonogfdJYHjnwk=
Subject key identifier: 00:F0:DA:F3:B8:A0:A4:CD:62:D9:52:EF:7C:9D:E7:94:32:5D:33:0D
Certificate issuer: /CN=ce4902ded69290c771f7eb0a5719e607536140af
Certificate serial: 010A03
Authority key identifier: CE:49:02:DE:D6:92:90:C7:71:F7:EB:0A:57:19:E6:07:53:61:40:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zkkC3taSkMdx9-sKVxnmB1NhQK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/70684a-662c-40c5-92b5-bb4eabd1bec3/1/APDa87igpM1i2VLvfJ3nlDJdMw0.roa
Signing time: Thu 12 May 2022 12:57:02 +0000
ROA not before: Thu 12 May 2022 12:57:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8708
IP address blocks: 194.30.168.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68099 (0x10a03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce4902ded69290c771f7eb0a5719e607536140af
Validity
Not Before: May 12 12:57:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00f0daf3b8a0a4cd62d952ef7c9de794325d330d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:b3:e8:d1:3a:96:46:cb:ca:2d:1f:48:25:f2:
0e:4f:e5:39:ef:47:61:61:d8:62:1c:2e:6b:32:f5:
cb:4d:3c:90:69:04:14:01:c1:cf:b1:10:4e:4f:1c:
6d:6f:80:99:9d:72:f1:74:52:3f:fd:59:15:d5:1a:
b9:6c:f2:77:46:31:0d:8f:4b:e8:e0:b9:34:2d:95:
a5:59:5f:b1:46:3e:24:7a:c6:d6:90:d7:6b:1b:10:
a8:81:58:86:ff:d6:7d:2e:b2:69:ea:cd:c3:08:61:
ed:5d:2e:9b:b7:e2:3a:6d:7c:14:b9:ef:a9:a9:2f:
eb:4f:84:ea:66:bf:33:15:99:77:3e:dd:c8:b8:a6:
b5:56:2b:48:c0:b3:9a:92:7b:2c:01:25:5e:b4:91:
31:28:75:dc:64:f7:f0:54:3b:2b:89:c4:99:8a:64:
ed:87:42:54:f3:63:60:cb:db:bc:5b:87:8e:ff:b5:
56:fc:df:65:66:59:4d:cc:80:13:e2:64:9c:97:5f:
3d:f1:eb:2f:cc:1e:50:a6:9a:ab:c3:65:73:df:c9:
94:22:9e:74:94:3e:67:50:ca:7e:04:44:d2:76:7a:
3f:01:f1:77:7e:02:11:a9:bd:05:a7:d3:30:ac:04:
8e:0c:ff:69:90:74:65:d4:55:e7:51:49:d6:c2:12:
bb:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:F0:DA:F3:B8:A0:A4:CD:62:D9:52:EF:7C:9D:E7:94:32:5D:33:0D
X509v3 Authority Key Identifier:
keyid:CE:49:02:DE:D6:92:90:C7:71:F7:EB:0A:57:19:E6:07:53:61:40:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zkkC3taSkMdx9-sKVxnmB1NhQK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/70684a-662c-40c5-92b5-bb4eabd1bec3/1/APDa87igpM1i2VLvfJ3nlDJdMw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/70684a-662c-40c5-92b5-bb4eabd1bec3/1/zkkC3taSkMdx9-sKVxnmB1NhQK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.30.168.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:5f:1c:c4:74:ee:f8:87:74:40:e4:c4:7c:18:0c:a5:a1:db:
3c:64:22:85:fd:2d:e1:00:28:68:8d:b3:bf:e2:3c:9c:a3:df:
86:81:5c:49:0d:62:c1:b4:7a:bc:94:19:8d:11:dc:74:00:b9:
1b:b4:ee:06:80:0b:4e:7f:cd:88:bb:7c:a3:f1:49:1c:77:e3:
8d:98:aa:53:bd:68:a1:5b:06:55:ae:6c:e4:42:76:19:e0:47:
6d:5b:c8:9c:37:96:42:9d:f1:ae:97:37:71:5e:98:08:64:95:
01:01:a6:5d:e0:bd:e8:ea:66:56:d2:81:f6:2c:71:39:12:c5:
5e:8c:d7:83:39:5a:fa:87:98:06:69:9b:05:98:f8:c5:f5:6f:
79:ea:65:97:bd:4d:9b:36:53:fd:dc:c0:c3:78:6f:9a:37:c1:
60:de:4e:53:f3:ba:85:9f:18:43:5d:19:96:f4:2b:4c:f1:c7:
38:ba:21:8a:1f:08:b3:b5:a3:6e:3e:62:43:4a:18:89:2d:c6:
94:bd:27:68:f5:fc:2d:00:80:ed:49:36:38:8c:70:99:dd:21:
c0:76:92:e9:4e:c7:14:57:35:1b:72:cd:ec:6c:26:57:91:8e:
5d:50:63:b1:e9:cb:2d:7c:ac:34:cc:12:16:98:28:9a:f4:fa:
84:d7:02:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:59 2024 by rpki-client on console-fra.rpki-client.org