Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/2b95ed-9882-42fa-a9f5-ad80e756d256/1/q6BYQbn7qToln7j2Q-ynI78INOg.roa
File: q6BYQbn7qToln7j2Q-ynI78INOg.roa (raw, json)
Hash identifier: poAQsU6huPihxAmQErZKCR4y5mh+IuPPMLuwTasuzGo=
Subject key identifier: AB:A0:58:41:B9:FB:A9:3A:25:9F:B8:F6:43:EC:A7:23:BF:08:34:E8
Certificate issuer: /CN=2b3840b5d3c3525981c8616166679de920e350f5
Certificate serial: 018BFDCC399FEA55AB4F7ACC6713DDAEAFB2
Authority key identifier: 2B:38:40:B5:D3:C3:52:59:81:C8:61:61:66:67:9D:E9:20:E3:50:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KzhAtdPDUlmByGFhZmed6SDjUPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/2b95ed-9882-42fa-a9f5-ad80e756d256/1/q6BYQbn7qToln7j2Q-ynI78INOg.roa
Signing time: Thu 23 Nov 2023 20:08:21 +0000
ROA not before: Thu 23 Nov 2023 20:08:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216398
IP address blocks: 31.25.138.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:fd:cc:39:9f:ea:55:ab:4f:7a:cc:67:13:dd:ae:af:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b3840b5d3c3525981c8616166679de920e350f5
Validity
Not Before: Nov 23 20:08:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aba05841b9fba93a259fb8f643eca723bf0834e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:20:70:c8:26:c7:a7:63:ac:a5:b3:82:3f:2f:
8a:f7:99:05:10:86:aa:bb:10:31:d4:2c:72:fe:0d:
e4:cb:58:db:1d:e2:75:ae:85:3e:d3:e2:2b:d0:e4:
bd:30:15:2e:7c:9b:6d:75:89:4a:44:f0:91:eb:b7:
cd:d0:58:fc:9a:ad:f2:c6:a3:e7:75:3c:ad:03:60:
a6:c0:7a:46:8a:4a:49:a6:9d:3c:73:b3:12:03:a3:
6c:01:19:16:21:1e:87:3c:af:a5:0f:e3:67:75:d9:
f3:d0:d6:f8:69:d2:98:47:d6:90:e9:d8:86:9e:3a:
34:8e:1f:43:78:37:a8:32:e6:ba:5c:44:5a:a0:bd:
8c:be:cc:03:83:4a:e5:75:d5:33:bc:7c:43:47:a3:
73:75:c5:52:f7:01:b3:c7:4f:e0:a1:25:e2:e8:40:
a6:2a:8e:43:b4:bc:c4:85:55:1c:1d:5f:09:d7:2a:
c8:9b:b0:5f:04:bf:90:89:ff:62:90:30:0c:8b:62:
9f:0b:b2:57:e2:62:a1:32:39:87:fd:ff:bb:2e:4c:
7b:cc:bc:fc:d8:3c:2f:b7:57:ca:04:11:d3:28:ec:
5d:e5:2d:3a:7e:70:4d:e8:e0:bb:a1:c6:a3:81:cb:
8a:a5:d0:10:f5:e1:ac:d3:7b:48:b9:c5:fa:e0:6b:
9a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:A0:58:41:B9:FB:A9:3A:25:9F:B8:F6:43:EC:A7:23:BF:08:34:E8
X509v3 Authority Key Identifier:
keyid:2B:38:40:B5:D3:C3:52:59:81:C8:61:61:66:67:9D:E9:20:E3:50:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KzhAtdPDUlmByGFhZmed6SDjUPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/2b95ed-9882-42fa-a9f5-ad80e756d256/1/q6BYQbn7qToln7j2Q-ynI78INOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/2b95ed-9882-42fa-a9f5-ad80e756d256/1/KzhAtdPDUlmByGFhZmed6SDjUPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.138.0/24
Signature Algorithm: sha256WithRSAEncryption
37:9c:7a:b3:a3:ab:26:18:55:fd:a4:31:a5:d3:a1:95:57:fd:
8d:04:87:23:8d:a3:5d:ca:6c:fb:fb:b6:bd:34:6e:12:ac:23:
35:3a:3b:6a:f3:b0:9f:98:58:43:9e:a1:53:ea:81:40:7b:50:
5a:ca:5f:1e:0a:cd:9b:09:92:7f:fd:f7:ca:61:82:05:3b:22:
90:5b:8c:ce:eb:95:fa:b6:fd:25:d4:d9:5e:d6:d5:e2:d9:3b:
e8:54:d8:36:c6:98:e0:b8:12:54:ab:6e:04:f9:50:55:6b:f8:
c5:83:b1:51:77:da:fa:16:9a:68:8a:b4:22:66:cb:09:0f:ee:
ff:d0:df:7f:99:e4:aa:ef:cf:67:3f:7a:e7:74:7a:29:0d:9e:
03:5c:b3:56:ae:da:9d:9d:3e:7f:24:df:84:97:f3:4b:67:0e:
b2:55:93:3b:65:79:84:2f:ba:14:9f:10:f8:30:3c:5d:3f:76:
c4:bf:7f:15:da:ec:d5:9a:4a:f2:a0:7d:0c:66:69:e2:bd:85:
df:0a:db:24:33:a7:7e:8b:7d:80:4d:eb:f8:47:f8:5d:4c:c7:
56:44:65:a8:cb:1d:69:e9:36:38:f0:0b:46:7f:76:00:09:e8:
2d:b9:17:9a:0a:2a:ff:10:53:ce:ce:23:43:d3:71:1f:d5:7a:
59:58:d9:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:16 2024 by rpki-client on console-ams.rpki-client.org