Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/cb4b6b-18aa-4e2c-a405-e7e77b6fac1e/1/J5Viyme0T5CwddSoS-R8NAxAgCg.roa
File: J5Viyme0T5CwddSoS-R8NAxAgCg.roa (raw, json)
Hash identifier: HHfeb//gdLFFQ0aOmcBNFHGS5kIICw912MhSByHbv58=
Subject key identifier: 27:95:62:CA:67:B4:4F:90:B0:75:D4:A8:4B:E4:7C:34:0C:40:80:28
Certificate issuer: /CN=d3202774b7de641d8ea18be56a75ff6098747618
Certificate serial: 0141F10E
Authority key identifier: D3:20:27:74:B7:DE:64:1D:8E:A1:8B:E5:6A:75:FF:60:98:74:76:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0yAndLfeZB2OoYvlanX_YJh0dhg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/cb4b6b-18aa-4e2c-a405-e7e77b6fac1e/1/J5Viyme0T5CwddSoS-R8NAxAgCg.roa
Signing time: Tue 07 Jun 2022 15:51:02 +0000
ROA not before: Tue 07 Jun 2022 15:51:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204330
IP address blocks: 109.95.124.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21098766 (0x141f10e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3202774b7de641d8ea18be56a75ff6098747618
Validity
Not Before: Jun 7 15:51:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=279562ca67b44f90b075d4a84be47c340c408028
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:0c:8b:ab:31:fd:f5:f3:c7:9f:bd:d2:1a:19:
93:ed:c6:58:56:84:37:57:4d:5b:21:e4:f2:59:19:
57:60:a2:cd:02:00:5f:f3:34:84:c7:91:9a:14:02:
71:c5:46:ae:35:32:b5:90:10:dd:87:09:c9:e8:62:
1f:f1:1b:6f:9c:23:c7:bc:b5:1c:4e:a3:ed:de:a8:
22:0c:98:3b:30:ca:a6:45:38:4e:93:83:9b:e4:e0:
69:b0:4c:f1:e2:1f:fe:08:9f:9a:9e:b8:28:ef:59:
b4:ce:de:b7:e2:d0:ab:8c:98:a7:ff:96:43:e5:83:
95:d6:f1:ce:58:80:f6:1c:95:98:bd:00:38:93:ef:
88:bf:dc:7a:a6:5c:56:81:81:12:ac:58:cb:15:ef:
6e:fd:c5:a1:91:d2:97:78:62:da:e4:7a:45:7f:81:
68:96:18:76:b0:ab:74:db:84:1e:a5:ce:dd:4a:1f:
5a:a5:47:de:d3:9d:02:ec:ce:b2:72:09:69:e9:aa:
c8:f8:e0:31:0c:36:06:bb:c1:a2:06:44:b4:b2:83:
bf:f4:79:94:62:05:b2:66:7c:1f:5a:89:50:e3:78:
7a:22:b5:6d:04:02:6d:fa:8d:0c:05:c3:87:18:bd:
e1:b3:d0:d0:7f:f8:98:35:53:59:da:a2:c8:eb:6a:
5f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:95:62:CA:67:B4:4F:90:B0:75:D4:A8:4B:E4:7C:34:0C:40:80:28
X509v3 Authority Key Identifier:
keyid:D3:20:27:74:B7:DE:64:1D:8E:A1:8B:E5:6A:75:FF:60:98:74:76:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0yAndLfeZB2OoYvlanX_YJh0dhg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/cb4b6b-18aa-4e2c-a405-e7e77b6fac1e/1/J5Viyme0T5CwddSoS-R8NAxAgCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/cb4b6b-18aa-4e2c-a405-e7e77b6fac1e/1/0yAndLfeZB2OoYvlanX_YJh0dhg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.95.124.0/22
Signature Algorithm: sha256WithRSAEncryption
18:77:f3:f6:09:1c:1b:fb:6a:7f:56:af:40:9e:e1:b6:92:c4:
f6:e1:78:7b:4b:4e:a4:bb:9a:bb:c3:64:f4:aa:4c:ce:c7:fa:
7e:d6:74:64:44:d1:c8:67:d9:7a:86:0b:0b:08:ec:4f:09:f6:
cb:cc:db:c7:f5:29:ca:d6:45:97:98:d7:9d:36:eb:25:ad:a6:
86:f0:db:ea:94:70:27:79:05:74:07:6d:05:c6:d0:d5:6f:71:
25:56:71:22:34:fb:c9:af:47:09:c3:17:ab:e9:12:32:3b:0e:
2d:85:df:cd:d8:a5:f8:b1:f6:a8:51:cd:57:e9:c4:74:f3:bf:
94:bb:1e:62:bb:38:8a:33:67:3c:c8:d6:5f:e1:c2:e6:07:4d:
43:29:44:8e:46:29:bd:da:7e:7b:b2:3e:06:62:2e:b0:fa:f5:
c4:15:78:50:aa:2b:15:48:b3:6e:8e:e3:23:bd:35:66:13:ac:
f7:7d:81:44:0a:8c:13:8c:72:fe:48:c7:07:b2:d1:be:5e:ba:
56:fc:94:5a:72:8e:5e:49:b5:62:f3:91:d5:7e:f7:c0:23:d3:
e2:bf:3f:e5:af:dc:0c:50:0f:e7:ea:8a:23:8e:15:42:f6:f5:
b8:76:ea:37:36:85:45:dd:1a:76:f2:cf:b6:fd:a3:d5:80:8c:
fc:37:b8:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:21 2024 by rpki-client on console-ams.rpki-client.org