Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/8f95cd-a797-4780-855c-7e42c15a8a1d/1/umurG5d5064RXjGp-JVqwO5rLdY.roa
File: umurG5d5064RXjGp-JVqwO5rLdY.roa (raw, json)
Hash identifier: Jrk+lB3G/aP2OcluAfgIe5dqKwSsF6KmgsTIfzbpNaI=
Subject key identifier: BA:6B:AB:1B:97:79:D3:AE:11:5E:31:A9:F8:95:6A:C0:EE:6B:2D:D6
Certificate issuer: /CN=cbec2487e97a699b5451a429e7dddaf295b523f1
Certificate serial: 018BF6AAA94F51ACEE48FD07A09831431197
Authority key identifier: CB:EC:24:87:E9:7A:69:9B:54:51:A4:29:E7:DD:DA:F2:95:B5:23:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y-wkh-l6aZtUUaQp593a8pW1I_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/8f95cd-a797-4780-855c-7e42c15a8a1d/1/umurG5d5064RXjGp-JVqwO5rLdY.roa
Signing time: Wed 22 Nov 2023 10:54:21 +0000
ROA not before: Wed 22 Nov 2023 10:54:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29684
IP address blocks: 176.98.32.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f6:aa:a9:4f:51:ac:ee:48:fd:07:a0:98:31:43:11:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbec2487e97a699b5451a429e7dddaf295b523f1
Validity
Not Before: Nov 22 10:54:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba6bab1b9779d3ae115e31a9f8956ac0ee6b2dd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8a:d0:bb:9b:c8:a1:07:81:1c:81:96:c4:cf:
e1:dc:f5:87:dd:63:df:fd:c0:8f:59:ce:f0:30:b3:
88:9e:f7:8a:5f:1f:a2:e9:43:e3:fa:84:e8:8b:58:
ee:06:fc:ff:4a:49:00:ec:10:d6:c7:d9:20:c5:07:
00:5c:e2:00:4e:5e:ac:36:27:29:a5:6e:4e:c8:7a:
84:49:27:41:e9:11:77:30:0e:dc:3d:c3:76:e2:3c:
93:3d:83:d2:8d:0c:ce:51:f6:f7:61:ce:ea:f7:8b:
c7:9e:09:9d:bf:ab:b6:a6:3c:f9:c5:89:ad:db:b3:
ed:2b:be:d2:66:f8:eb:b4:5b:29:f3:4b:79:45:00:
36:74:5e:55:63:91:9b:15:90:8f:a7:18:15:ec:77:
41:73:ed:14:71:a2:26:24:1d:b9:43:10:61:ff:26:
b3:37:fb:db:60:35:50:19:8a:f8:55:07:03:03:05:
b5:a5:f1:a0:a2:b2:af:3e:81:4f:24:65:e4:a2:18:
f3:62:6e:82:99:a4:52:e6:96:d4:dd:3d:0d:90:65:
7f:8f:0d:a2:09:da:72:21:9a:a6:7a:8f:d1:a4:f4:
07:fd:db:79:e0:6b:0a:8d:8a:ba:83:f1:cf:ad:1b:
5f:92:2d:93:9d:f3:99:49:33:44:af:d7:64:ec:08:
f7:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:6B:AB:1B:97:79:D3:AE:11:5E:31:A9:F8:95:6A:C0:EE:6B:2D:D6
X509v3 Authority Key Identifier:
keyid:CB:EC:24:87:E9:7A:69:9B:54:51:A4:29:E7:DD:DA:F2:95:B5:23:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y-wkh-l6aZtUUaQp593a8pW1I_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/8f95cd-a797-4780-855c-7e42c15a8a1d/1/umurG5d5064RXjGp-JVqwO5rLdY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/8f95cd-a797-4780-855c-7e42c15a8a1d/1/y-wkh-l6aZtUUaQp593a8pW1I_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.98.32.0/22
Signature Algorithm: sha256WithRSAEncryption
bf:35:60:08:43:b5:e5:63:8a:b2:74:d3:f7:eb:49:06:2d:fd:
42:1a:96:90:dd:78:72:28:6f:b6:4a:f8:e5:e3:af:5d:78:da:
3f:c6:ec:ee:e3:d9:8a:79:53:ae:eb:9c:03:8e:65:52:19:88:
df:53:c8:86:b1:0a:de:c1:b7:67:2d:a0:bc:07:73:22:f4:46:
ee:bd:de:5a:d8:ea:da:38:6d:f7:2c:af:27:9e:f2:ca:f2:35:
9e:26:a5:0a:50:04:ae:96:1c:2a:cb:c8:b7:9f:83:3d:8d:60:
79:d2:3f:5d:db:8b:d5:23:bc:28:85:89:8f:ed:b2:23:f1:ba:
48:9c:53:98:95:7c:63:0f:71:7d:96:0a:74:05:64:34:18:8e:
2b:a0:ad:65:3c:85:bb:cf:04:ee:8c:eb:af:38:47:45:89:b7:
85:5e:9e:46:cc:39:c7:90:78:fa:d4:d3:0a:94:39:ea:33:18:
bb:ba:92:e0:e4:0e:68:97:a0:dc:99:b3:5f:f5:8d:db:b2:69:
5f:60:17:fb:70:01:d0:5f:51:46:76:f0:69:2e:ff:97:ef:9e:
83:4d:8c:7e:28:cc:bf:58:da:d8:52:1d:31:f9:22:a2:86:d5:
f9:bf:e1:38:a0:ac:cb:20:08:6a:e3:6e:15:7e:51:6c:95:72:
41:2a:8d:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:47 2024 by rpki-client on console-ams.rpki-client.org