Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/915ae2-e7db-40d4-a736-30bf378fb2e7/1/aHuz9D3JLxzvpDjuImFBAgEq2cs.roa
File: aHuz9D3JLxzvpDjuImFBAgEq2cs.roa (raw, json)
Hash identifier: lMt3rqkWVi78KAkAgnUmyM8RIZrqQxP+BFklXcu5SaA=
Subject key identifier: 68:7B:B3:F4:3D:C9:2F:1C:EF:A4:38:EE:22:61:41:02:01:2A:D9:CB
Certificate issuer: /CN=346d4fea47fb39ec8c2e3aa93be60686dceaea45
Certificate serial: 018571957FD12593EBC62ED208F36085E879
Authority key identifier: 34:6D:4F:EA:47:FB:39:EC:8C:2E:3A:A9:3B:E6:06:86:DC:EA:EA:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NG1P6kf7OeyMLjqpO-YGhtzq6kU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/915ae2-e7db-40d4-a736-30bf378fb2e7/1/aHuz9D3JLxzvpDjuImFBAgEq2cs.roa
Signing time: Mon 02 Jan 2023 08:25:00 +0000
ROA not before: Mon 02 Jan 2023 08:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 79.110.231.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:7f:d1:25:93:eb:c6:2e:d2:08:f3:60:85:e8:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=346d4fea47fb39ec8c2e3aa93be60686dceaea45
Validity
Not Before: Jan 2 08:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=687bb3f43dc92f1cefa438ee22614102012ad9cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ee:a2:a0:c4:c0:1c:ab:c9:a3:cf:8f:b5:b5:
89:11:a0:6a:e6:ed:aa:51:39:84:af:8a:0b:f3:f5:
73:64:f3:68:36:c8:a9:8e:15:e1:da:ea:df:a9:0c:
93:fd:e9:94:c6:a9:18:50:b6:34:0a:51:a2:ef:3d:
ab:8e:53:3f:45:28:8f:6a:5d:4a:15:2a:12:ed:36:
1f:9a:de:40:22:5a:e8:d5:07:e5:0b:ae:98:91:d2:
e0:87:e4:d5:6d:63:8e:0e:2e:e6:13:98:67:c5:44:
16:8b:6b:44:92:a1:0c:fa:57:77:6a:e7:5a:b6:54:
3d:ac:8b:d7:89:fc:c3:0d:f7:bb:21:17:b8:be:6e:
de:e7:3f:83:f5:a4:76:3b:f8:12:d5:75:12:01:bd:
71:70:72:2f:ba:8b:83:71:1d:c6:42:06:f1:83:ad:
82:3d:67:57:93:57:f1:93:76:9d:44:de:60:c3:f2:
91:70:01:09:99:91:55:d8:98:77:da:30:d1:ad:73:
7a:ce:30:a8:ff:12:97:43:ee:32:ae:b1:01:bc:9d:
8d:30:f2:2c:77:b4:65:15:45:d1:d0:5a:bb:2a:5b:
5f:2b:5c:e7:98:c0:dc:a8:99:3b:d7:75:cf:83:c1:
ac:59:3f:4c:91:b4:87:d6:71:5e:85:01:ef:47:05:
cc:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:7B:B3:F4:3D:C9:2F:1C:EF:A4:38:EE:22:61:41:02:01:2A:D9:CB
X509v3 Authority Key Identifier:
keyid:34:6D:4F:EA:47:FB:39:EC:8C:2E:3A:A9:3B:E6:06:86:DC:EA:EA:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NG1P6kf7OeyMLjqpO-YGhtzq6kU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/915ae2-e7db-40d4-a736-30bf378fb2e7/1/aHuz9D3JLxzvpDjuImFBAgEq2cs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/915ae2-e7db-40d4-a736-30bf378fb2e7/1/NG1P6kf7OeyMLjqpO-YGhtzq6kU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.110.231.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:9b:21:e2:fc:79:25:9e:e1:35:b5:bb:7b:9d:20:7f:e5:a6:
d7:b6:0a:48:44:97:1b:ed:05:77:b5:ec:fe:0c:c2:6a:81:3d:
74:9b:d1:23:ee:72:2b:bf:9c:b4:a2:65:91:38:76:38:46:68:
e7:17:57:83:cb:48:ce:67:ca:5b:10:6b:2b:ef:bf:e5:0c:4d:
cf:72:fb:9c:97:5e:dc:ef:95:54:b1:ea:67:1e:fc:00:c4:21:
25:48:b3:3a:1c:fc:bd:3a:51:f3:ab:90:cd:c7:90:78:56:6b:
40:3c:7a:84:50:2e:82:28:bf:ff:eb:46:db:d3:05:51:54:9c:
e5:7b:71:a9:76:86:e4:18:cb:5b:03:52:c7:8c:9d:07:f0:bc:
56:9c:f9:cc:48:79:fd:cd:db:6b:4c:26:68:ed:b3:fd:36:19:
3f:7f:90:78:cc:d2:be:81:c4:48:fb:b7:90:5b:8e:62:24:31:
b8:8e:47:c5:24:ea:ed:c5:67:1d:9c:7e:56:4d:6f:e6:70:90:
00:8c:da:9b:ba:84:c5:25:bd:00:ed:e6:67:1c:0b:51:a3:e5:
9a:4b:0f:98:21:7b:9e:e0:5c:a3:4b:87:bc:3d:95:4c:b4:f8:
f3:9b:47:05:37:d9:d2:a7:cb:fe:c7:63:06:b6:80:27:37:9f:
20:e0:65:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:19 2024 by rpki-client on console-fra.rpki-client.org