Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/70684a-662c-40c5-92b5-bb4eabd1bec3/1/nRo0qVqNoJFGOSBDpWylF4g-tD0.roa
File: nRo0qVqNoJFGOSBDpWylF4g-tD0.roa (raw, json)
Hash identifier: 2x3UNk4dToLydNI9ZuYrDyzZRuQcXTQtDUesqA6pHEg=
Subject key identifier: 9D:1A:34:A9:5A:8D:A0:91:46:39:20:43:A5:6C:A5:17:88:3E:B4:3D
Certificate issuer: /CN=ce4902ded69290c771f7eb0a5719e607536140af
Certificate serial: 01856B2E999412D0F42F426485BEBFF9FA04
Authority key identifier: CE:49:02:DE:D6:92:90:C7:71:F7:EB:0A:57:19:E6:07:53:61:40:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zkkC3taSkMdx9-sKVxnmB1NhQK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/70684a-662c-40c5-92b5-bb4eabd1bec3/1/nRo0qVqNoJFGOSBDpWylF4g-tD0.roa
Signing time: Sun 01 Jan 2023 02:34:54 +0000
ROA not before: Sun 01 Jan 2023 02:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8708
IP address blocks: 194.30.168.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:2e:99:94:12:d0:f4:2f:42:64:85:be:bf:f9:fa:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce4902ded69290c771f7eb0a5719e607536140af
Validity
Not Before: Jan 1 02:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9d1a34a95a8da09146392043a56ca517883eb43d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:a2:c5:24:31:fe:a9:88:8c:ef:74:36:c6:92:
cd:1b:02:2e:b7:32:f3:4a:5f:1c:ff:d2:9a:a3:ac:
98:01:2f:10:60:df:a3:cc:5a:ad:67:ed:1b:87:a6:
7f:a7:d9:72:97:54:25:45:7b:4c:73:e8:87:e6:b0:
97:d4:26:84:8c:86:e8:35:ba:d7:40:a0:c1:85:c9:
e4:fa:a2:8c:d8:21:6a:8e:14:fd:d7:ea:c4:57:ca:
44:11:8d:f1:a7:7b:04:43:ab:d3:9d:9c:88:79:33:
72:de:1c:3b:42:66:2f:7d:14:4c:4c:9d:65:25:81:
7e:39:6c:7d:9c:e7:2b:9a:a9:77:97:f6:60:a3:5f:
13:00:a6:b2:65:d6:c7:8a:13:d7:45:fe:84:48:cb:
a6:c9:1c:2a:8d:70:93:95:f8:e4:69:f6:dc:91:d4:
9a:c7:a2:70:b0:f2:99:18:e2:4c:47:e1:cf:1b:e3:
ee:59:6e:dc:2d:eb:81:7f:5c:c2:d2:da:55:49:08:
fa:20:ad:f7:3f:cf:29:13:42:11:0a:b8:6c:31:2e:
d5:ec:07:16:1b:5d:8e:01:ec:ab:07:25:a3:79:ed:
d3:7f:74:b2:88:7d:0c:60:89:11:86:ef:b7:cf:13:
93:71:ab:2f:e5:85:99:14:ec:a6:a7:5d:89:9e:38:
46:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:1A:34:A9:5A:8D:A0:91:46:39:20:43:A5:6C:A5:17:88:3E:B4:3D
X509v3 Authority Key Identifier:
keyid:CE:49:02:DE:D6:92:90:C7:71:F7:EB:0A:57:19:E6:07:53:61:40:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zkkC3taSkMdx9-sKVxnmB1NhQK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/70684a-662c-40c5-92b5-bb4eabd1bec3/1/nRo0qVqNoJFGOSBDpWylF4g-tD0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/70684a-662c-40c5-92b5-bb4eabd1bec3/1/zkkC3taSkMdx9-sKVxnmB1NhQK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.30.168.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:f4:4f:67:15:2d:5b:84:19:39:58:de:0a:fb:64:72:b1:07:
51:60:d9:af:a5:ad:be:39:0c:f4:b6:29:40:85:a6:cb:db:07:
10:2a:a4:9e:2b:55:3d:6a:31:97:57:1d:ba:bd:fe:6d:0f:e3:
c2:2a:dc:bc:f7:2e:9c:13:d7:22:cc:47:8b:55:ef:0e:3a:38:
6b:45:76:c2:3c:0a:eb:3b:14:55:8c:2b:88:9e:f6:ba:93:d2:
6c:59:10:d3:f3:d7:bd:11:32:92:e6:ef:2f:b0:30:6a:0d:fa:
9d:70:27:ce:ff:10:61:83:fc:5d:a6:77:19:0e:d0:50:72:e3:
aa:cb:7f:50:ab:ee:87:0b:ba:70:1e:67:2f:2e:ff:66:e3:6b:
4f:fb:8c:e9:42:48:f0:2b:89:ed:1c:c7:19:b2:7d:9c:57:8f:
09:ed:01:f9:07:be:fa:8c:c1:6c:21:45:bf:6e:12:5d:a1:ce:
4e:37:13:ee:6c:c6:b4:66:fb:0a:6d:be:3a:56:2e:ac:94:55:
1f:21:63:48:3f:94:43:4f:81:c3:02:25:d0:8e:06:46:e2:60:
c4:8a:7c:35:bc:3e:59:94:d4:24:9b:be:ff:87:58:cd:90:af:
97:d4:73:31:fd:a5:d1:95:5b:5f:f0:94:5f:86:6b:33:d5:17:
5d:51:f5:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:56 2024 by rpki-client on console-ams.rpki-client.org