Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/Y1jCr2WbMta2rpIb6XIJYf3KuJ0.roa
File: Y1jCr2WbMta2rpIb6XIJYf3KuJ0.roa (raw, json)
Hash identifier: l1OrwCTAV7vm2oQa61i0ta68Vc2ss8bHw5kfJZe4rGI=
Subject key identifier: 63:58:C2:AF:65:9B:32:D6:B6:AE:92:1B:E9:72:09:61:FD:CA:B8:9D
Certificate issuer: /CN=6dd2e9b3a4d7b24b3a6aa14f3eda3f14fa29c76b
Certificate serial: 30E857E0
Authority key identifier: 6D:D2:E9:B3:A4:D7:B2:4B:3A:6A:A1:4F:3E:DA:3F:14:FA:29:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdLps6TXsks6aqFPPto_FPopx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/Y1jCr2WbMta2rpIb6XIJYf3KuJ0.roa
Signing time: Sat 01 Jan 2022 10:55:39 +0000
ROA not before: Sat 01 Jan 2022 10:55:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206129
IP address blocks: 109.121.175.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 820533216 (0x30e857e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dd2e9b3a4d7b24b3a6aa14f3eda3f14fa29c76b
Validity
Not Before: Jan 1 10:55:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6358c2af659b32d6b6ae921be9720961fdcab89d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:0b:a9:3d:e4:5b:df:6f:30:67:9e:03:b0:d5:
70:5f:33:30:a8:da:20:3d:3a:11:41:8e:dc:12:da:
7a:c9:d5:1b:37:81:3c:23:af:16:05:02:6b:c7:20:
e2:13:a6:bf:48:53:63:0f:33:65:b5:c9:11:6b:b5:
2f:78:e0:83:8c:c0:aa:01:4a:a5:4d:2f:55:cc:a1:
70:a0:05:96:ac:79:6c:ac:44:71:84:9e:64:96:90:
66:cb:d7:f9:14:f3:7d:eb:e2:ea:89:2b:ba:c5:12:
4d:ab:20:84:a0:bb:f0:3f:6c:07:3a:33:7f:95:ac:
2a:07:89:31:ba:ae:2e:52:68:d3:1d:3e:79:f1:a5:
29:55:49:67:0c:be:1d:32:55:f8:1d:83:6b:22:aa:
61:73:c5:2b:8d:fd:0c:37:93:35:d8:e6:3d:0b:f3:
98:12:e8:07:a9:5e:d7:ee:5d:6f:24:eb:4f:3d:d7:
66:59:b4:d2:c2:c7:30:2e:40:3a:eb:df:3b:47:eb:
71:f9:a5:0c:50:f4:83:1d:35:87:e9:5e:55:18:4b:
2b:a6:60:51:02:0c:92:6b:15:41:4e:3c:20:61:2c:
42:ca:f5:69:ef:6b:38:7b:ab:ca:4e:3b:5f:f5:45:
96:2e:db:bf:5e:ae:85:64:b6:1b:67:08:72:8a:b3:
aa:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:58:C2:AF:65:9B:32:D6:B6:AE:92:1B:E9:72:09:61:FD:CA:B8:9D
X509v3 Authority Key Identifier:
keyid:6D:D2:E9:B3:A4:D7:B2:4B:3A:6A:A1:4F:3E:DA:3F:14:FA:29:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdLps6TXsks6aqFPPto_FPopx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/Y1jCr2WbMta2rpIb6XIJYf3KuJ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/bdLps6TXsks6aqFPPto_FPopx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.121.175.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:53:8a:b3:6e:a0:a3:02:cf:86:95:af:cd:84:81:bb:86:61:
65:8a:af:8a:9c:13:3f:d0:c8:61:ae:2b:55:7d:d1:33:ae:38:
8a:77:50:e1:48:02:23:d6:cc:4c:a5:63:cf:93:fc:66:18:6f:
c9:79:92:22:0c:16:18:31:12:9a:d5:34:f6:ff:4c:74:bf:92:
53:33:99:f8:fc:c3:38:19:86:ae:5c:7b:7a:45:ea:94:d0:c4:
6e:0c:d2:af:f6:ac:49:a6:3d:80:2e:4e:a3:98:ae:c7:ba:3d:
86:8f:e9:c0:82:81:f6:3c:d7:18:89:47:20:44:a0:54:5b:5b:
90:6a:b7:02:8f:24:1c:ad:a8:07:71:d7:f1:4f:8e:1a:c1:23:
f6:6f:32:f5:35:f9:5a:dd:90:cd:56:78:8a:df:bc:35:4d:9f:
38:df:49:e4:ea:11:7d:88:1a:6a:7c:81:42:98:53:8a:a7:7e:
40:26:71:9d:8c:21:5b:e9:85:f4:83:7f:0b:53:10:e6:44:84:
6e:1b:49:d1:10:34:a4:25:d3:40:ef:8a:8d:5f:88:37:56:e3:
96:e9:f2:9e:e3:7f:b5:24:4a:66:3e:60:94:87:61:b9:9a:7e:
f8:63:2b:ce:47:8c:f3:c0:f6:d0:e2:38:1c:c2:4a:5f:0e:c8:
70:58:88:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:34 2023 by rpki-client on console-fra.rpki-client.org