Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/729034-0cea-44f8-9f30-0d5eb3d609ea/1/rP9N6JfSBno-UFfiu_4EbfhsluA.roa
File: rP9N6JfSBno-UFfiu_4EbfhsluA.roa (raw, json)
Hash identifier: w93kS0HGbIPAs6Sst8ymk7+GPwsd96QZaH24A+VHCUc=
Subject key identifier: AC:FF:4D:E8:97:D2:06:7A:3E:50:57:E2:BB:FE:04:6D:F8:6C:96:E0
Certificate issuer: /CN=85972a0487d95cc1bfe1da6d1a27b89d1d3576d6
Certificate serial: 03B7197C
Authority key identifier: 85:97:2A:04:87:D9:5C:C1:BF:E1:DA:6D:1A:27:B8:9D:1D:35:76:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hZcqBIfZXMG_4dptGie4nR01dtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/729034-0cea-44f8-9f30-0d5eb3d609ea/1/rP9N6JfSBno-UFfiu_4EbfhsluA.roa
Signing time: Wed 23 Mar 2022 09:58:13 +0000
ROA not before: Wed 23 Mar 2022 09:58:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41789
IP address blocks: 45.95.235.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62331260 (0x3b7197c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85972a0487d95cc1bfe1da6d1a27b89d1d3576d6
Validity
Not Before: Mar 23 09:58:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=acff4de897d2067a3e5057e2bbfe046df86c96e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a9:05:65:95:e2:e2:bf:7d:c5:f8:b0:03:c0:
31:6e:84:b5:ec:56:8a:a2:fb:61:ee:6a:4b:2b:f1:
6d:83:fb:ab:8a:11:8f:62:46:5f:d3:39:cb:cd:d6:
d3:c7:8a:a6:5d:d2:7a:50:36:61:09:f8:fa:34:56:
2e:b5:3c:60:13:89:a3:6d:1c:e8:63:66:3b:ea:4a:
5b:65:10:c3:f1:12:b1:e4:80:87:ce:1d:e8:e5:5b:
db:dd:b8:4a:4d:a9:fc:24:fa:e0:14:2c:0c:e6:7f:
f2:70:5c:b9:bd:8d:76:35:84:56:e2:34:f0:83:71:
91:a7:a8:ed:b9:79:7b:a1:66:1d:61:79:d9:be:d9:
53:7a:5e:27:56:10:6e:c6:bc:fd:1e:1d:63:51:d4:
68:2a:31:8e:91:18:3a:28:7d:cf:91:68:e0:b5:f0:
c7:02:11:44:67:53:22:75:b9:12:c8:23:3f:5a:ef:
ac:0e:6f:23:96:be:a2:08:6e:60:86:4f:38:58:4b:
3a:57:ad:bd:19:83:15:47:f5:96:04:b3:0f:1c:68:
46:26:8b:99:01:f2:f7:88:ad:98:19:6c:fd:ae:fa:
11:d2:02:f9:b2:30:89:2f:12:2c:21:31:de:8a:84:
9b:91:f9:fd:d1:a2:74:44:80:0a:d5:54:ea:ef:15:
af:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:FF:4D:E8:97:D2:06:7A:3E:50:57:E2:BB:FE:04:6D:F8:6C:96:E0
X509v3 Authority Key Identifier:
keyid:85:97:2A:04:87:D9:5C:C1:BF:E1:DA:6D:1A:27:B8:9D:1D:35:76:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hZcqBIfZXMG_4dptGie4nR01dtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/729034-0cea-44f8-9f30-0d5eb3d609ea/1/rP9N6JfSBno-UFfiu_4EbfhsluA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/729034-0cea-44f8-9f30-0d5eb3d609ea/1/hZcqBIfZXMG_4dptGie4nR01dtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.235.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:2d:51:c3:ce:36:75:c6:59:2c:60:ab:36:9c:44:4f:7a:65:
4c:d6:6b:13:ae:81:0f:6c:a3:47:d9:49:b7:d4:62:19:99:f7:
2d:cf:3b:93:95:9d:cf:8c:8b:fe:a8:0e:15:67:a4:8e:20:d7:
eb:b5:9c:ac:6a:dc:25:c7:02:09:26:6a:fb:b4:45:99:db:f6:
c6:6a:df:51:24:d1:9e:a0:56:a2:88:29:47:a4:6c:72:53:72:
66:c9:e8:90:eb:33:6b:cf:32:30:d0:4c:b9:d5:d3:f8:c5:14:
3b:a3:70:dd:1a:4e:fc:e8:36:bd:39:33:2f:9a:45:73:2d:52:
0c:0b:4a:69:1e:05:35:14:94:35:bf:bb:58:31:da:a8:94:00:
bb:52:2a:2d:91:09:5f:41:5b:05:a3:a6:3a:8a:56:e3:0a:10:
ab:8a:2b:48:f6:0d:d6:01:4c:af:b9:6f:11:ac:94:ce:60:7d:
e0:71:ba:a6:c7:5a:bb:76:17:d7:02:6e:9d:81:42:dd:af:56:
38:cb:39:7f:21:d2:53:60:dd:00:d0:59:7b:fc:25:e6:ba:98:
68:b5:42:4b:8f:e9:ab:cf:51:c1:68:06:89:47:91:52:f0:cb:
01:bf:ec:48:9f:58:08:32:a4:d0:1d:fa:6b:3c:6e:9d:28:74:
c8:f3:1f:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:18 2024 by rpki-client on console-ams.rpki-client.org