Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/b7a6b6-c37c-4996-85f8-ad34df45eaba/1/69Wst1M1_66RPuHPFPLvC0FWEwA.roa
File: 69Wst1M1_66RPuHPFPLvC0FWEwA.roa (raw, json)
Hash identifier: sLGmIRM5iLNGB8QPPrPyc2X2jbm9TjCVIh4El7n7wHg=
Subject key identifier: EB:D5:AC:B7:53:35:FF:AE:91:3E:E1:CF:14:F2:EF:0B:41:56:13:00
Certificate issuer: /CN=5db3ca79bbaa9753de2a56448c4901f3067e29aa
Certificate serial: 01857155369AB05C46F077F968463C379B68
Authority key identifier: 5D:B3:CA:79:BB:AA:97:53:DE:2A:56:44:8C:49:01:F3:06:7E:29:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XbPKebuql1PeKlZEjEkB8wZ-Kao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/b7a6b6-c37c-4996-85f8-ad34df45eaba/1/69Wst1M1_66RPuHPFPLvC0FWEwA.roa
Signing time: Mon 02 Jan 2023 07:14:48 +0000
ROA not before: Mon 02 Jan 2023 07:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35470
IP address blocks: 87.239.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:55:36:9a:b0:5c:46:f0:77:f9:68:46:3c:37:9b:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5db3ca79bbaa9753de2a56448c4901f3067e29aa
Validity
Not Before: Jan 2 07:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ebd5acb75335ffae913ee1cf14f2ef0b41561300
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:44:1c:d0:94:2a:9f:d2:2d:55:2a:9e:6e:27:
29:e5:e8:c4:93:92:8d:9f:06:0a:c9:f5:7a:db:1b:
d9:af:7a:b8:d9:83:4d:15:51:17:b0:62:c0:b8:e1:
d2:a4:e9:54:db:8a:23:8b:b2:1b:66:46:39:3b:70:
8d:d7:a6:36:0d:f9:47:48:f7:97:1d:89:ea:32:ba:
12:14:72:7d:e2:76:02:14:9d:b0:10:ff:2d:46:1f:
e4:4a:b4:ce:28:80:16:86:66:65:f2:82:69:d0:70:
36:10:63:eb:bf:bf:8a:d2:cb:80:5e:b0:2c:f1:16:
55:64:87:58:a8:ec:40:e3:47:49:56:67:06:26:72:
64:0f:47:a5:09:3f:a5:26:e4:db:46:96:66:ca:36:
94:9f:e5:be:60:66:51:55:24:ae:88:95:1c:33:bd:
3e:07:a8:0a:71:61:11:61:e9:91:41:35:5a:b6:5f:
87:44:d4:ad:ed:24:62:c7:a2:9c:d4:b5:f7:67:0d:
d4:f6:ec:ba:7f:b1:82:05:23:20:74:58:59:1d:1e:
ad:0e:fd:0c:98:3e:c1:8e:ea:ac:df:c7:0f:98:94:
62:a0:1c:cf:24:f6:0e:01:77:75:f0:73:5d:77:0d:
f9:cf:58:74:0b:2a:bc:f8:fa:a2:87:7a:3a:e0:2c:
77:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:D5:AC:B7:53:35:FF:AE:91:3E:E1:CF:14:F2:EF:0B:41:56:13:00
X509v3 Authority Key Identifier:
keyid:5D:B3:CA:79:BB:AA:97:53:DE:2A:56:44:8C:49:01:F3:06:7E:29:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XbPKebuql1PeKlZEjEkB8wZ-Kao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/b7a6b6-c37c-4996-85f8-ad34df45eaba/1/69Wst1M1_66RPuHPFPLvC0FWEwA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/b7a6b6-c37c-4996-85f8-ad34df45eaba/1/XbPKebuql1PeKlZEjEkB8wZ-Kao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.239.11.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:ba:d0:b9:ee:cb:91:63:02:62:d6:79:cd:11:df:db:0e:a6:
21:3c:3d:50:54:f7:bc:5e:47:ca:30:2f:39:41:62:3c:c9:2a:
e2:b5:52:21:17:a6:01:20:bc:53:b1:fc:c4:95:20:88:66:8f:
99:7b:34:e7:52:b9:61:51:7d:3b:b8:c9:77:71:a6:ad:63:59:
f9:35:8e:a7:13:a6:4e:34:d7:69:43:56:ca:07:7d:ed:2b:3b:
02:48:0b:f7:a1:7d:25:96:7d:26:c6:be:a4:11:51:c7:5b:2e:
26:a0:dd:a5:45:24:83:8e:e3:52:65:e1:c5:72:12:d4:46:cc:
34:db:18:64:3c:38:ad:e0:4b:d3:d6:d1:36:3a:fe:f4:67:85:
7d:de:e9:22:de:d9:7f:75:5c:c3:0b:ec:52:f8:25:a4:33:f3:
22:94:58:39:62:cb:4f:f0:f2:e9:01:19:ca:f7:17:cc:09:5b:
2c:fc:10:55:4e:17:0e:56:1c:6e:9e:53:9e:38:75:15:e3:5c:
cb:f0:8c:03:b1:42:92:54:31:5c:b7:33:a3:38:f2:06:47:4c:
a8:71:a6:45:3c:14:91:81:9d:36:ef:52:11:cb:6f:be:47:1a:
06:ba:5b:a7:37:05:ea:66:53:a3:14:ac:47:ed:59:fa:4d:21:
25:39:5e:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:10 2024 by rpki-client on console-ams.rpki-client.org