Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/b7a6b6-c37c-4996-85f8-ad34df45eaba/1/mkWGOiQv8-zaJqV7AuXQ4StFsWU.roa
File: mkWGOiQv8-zaJqV7AuXQ4StFsWU.roa (raw, json)
Hash identifier: 3bQg1m7y2d35Lg88DWfGvLLnUVyU6z8gAz0s8QL20NI=
Subject key identifier: 9A:45:86:3A:24:2F:F3:EC:DA:26:A5:7B:02:E5:D0:E1:2B:45:B1:65
Certificate issuer: /CN=5db3ca79bbaa9753de2a56448c4901f3067e29aa
Certificate serial: 01857155361EA5192FAE444B0E01E4FB99F8
Authority key identifier: 5D:B3:CA:79:BB:AA:97:53:DE:2A:56:44:8C:49:01:F3:06:7E:29:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XbPKebuql1PeKlZEjEkB8wZ-Kao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/b7a6b6-c37c-4996-85f8-ad34df45eaba/1/mkWGOiQv8-zaJqV7AuXQ4StFsWU.roa
Signing time: Mon 02 Jan 2023 07:14:47 +0000
ROA not before: Mon 02 Jan 2023 07:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21155
IP address blocks: 87.239.8.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:55:36:1e:a5:19:2f:ae:44:4b:0e:01:e4:fb:99:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5db3ca79bbaa9753de2a56448c4901f3067e29aa
Validity
Not Before: Jan 2 07:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9a45863a242ff3ecda26a57b02e5d0e12b45b165
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:16:83:14:28:91:f8:ab:4e:73:09:10:64:3b:
2b:2e:c2:00:fc:d3:09:d7:95:2c:87:b2:8a:b2:03:
fd:34:9f:e8:b5:21:49:6e:7a:80:13:c2:ba:a4:8b:
f6:77:36:02:70:18:1a:42:f2:b4:74:f1:63:19:9c:
6e:f1:2e:86:a8:7f:60:1d:7a:99:70:e6:cd:7d:30:
d9:14:f6:6e:52:28:ee:4c:f3:17:bc:f0:1a:84:0c:
41:83:ec:15:6a:06:a1:25:3b:41:a1:54:ca:ab:2a:
28:e7:43:ad:b0:15:1e:e2:0d:e2:c7:72:b6:9a:71:
ed:a9:12:54:26:65:b7:51:f9:04:3e:38:21:ed:9c:
dc:1e:5c:da:9c:86:0e:9b:e1:8e:89:9b:9a:08:8b:
8d:31:6e:70:fb:f2:f9:ee:ef:fe:89:4f:53:81:cc:
24:2a:1d:a6:35:8e:86:a8:42:12:b2:5b:6e:83:ca:
84:ce:40:c6:8c:91:70:dc:7d:15:13:97:df:b6:75:
4c:7c:69:5c:da:10:e7:ee:3b:c8:bb:28:f1:11:72:
0b:2e:b0:4b:fa:1b:93:11:af:10:20:d4:1b:e0:ed:
7a:9a:54:a4:0b:db:1f:3d:da:8a:6e:9f:3a:7d:ba:
d7:13:88:35:ef:36:b5:c8:72:3a:d2:28:b6:17:1a:
db:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:45:86:3A:24:2F:F3:EC:DA:26:A5:7B:02:E5:D0:E1:2B:45:B1:65
X509v3 Authority Key Identifier:
keyid:5D:B3:CA:79:BB:AA:97:53:DE:2A:56:44:8C:49:01:F3:06:7E:29:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XbPKebuql1PeKlZEjEkB8wZ-Kao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/b7a6b6-c37c-4996-85f8-ad34df45eaba/1/mkWGOiQv8-zaJqV7AuXQ4StFsWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/b7a6b6-c37c-4996-85f8-ad34df45eaba/1/XbPKebuql1PeKlZEjEkB8wZ-Kao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.239.8.0/21
Signature Algorithm: sha256WithRSAEncryption
45:32:9a:b6:e6:59:b7:52:8a:8b:67:a8:2f:9b:9a:ee:71:c0:
11:cb:48:55:32:cd:09:65:93:fa:b5:82:6a:a3:80:0e:ec:b8:
1b:56:49:c1:b0:d2:74:e2:66:1d:74:d3:fe:71:f7:24:33:c3:
40:f1:89:46:66:73:88:28:29:dd:c6:a7:ef:09:d9:52:07:0e:
39:da:ec:cf:47:47:14:fb:db:57:a4:ec:3a:f8:67:74:22:db:
fe:0b:84:92:d0:24:e3:a1:39:f0:f1:3c:76:9c:39:4b:a3:67:
fc:67:6e:70:94:3a:e3:4f:ae:48:38:2e:93:79:f4:65:8e:ba:
7f:f1:32:8b:84:2d:3a:5a:0e:7f:ca:e1:03:aa:36:33:1a:9c:
a4:94:ae:e3:4e:7c:79:0a:42:07:97:33:c4:d1:9a:84:2b:ac:
06:ce:96:70:61:62:58:c1:fb:e8:d2:4c:ca:a6:0f:3f:18:f9:
5e:4d:08:82:d8:67:47:cc:c7:90:10:06:df:92:31:b5:17:6c:
01:31:50:97:71:8d:0b:ef:68:e3:00:b7:87:12:ab:76:a1:5c:
d1:3a:67:f4:a5:91:29:b5:1d:55:ab:b2:bd:99:72:c4:64:7c:
a9:c3:a8:0a:2d:9c:f8:eb:98:af:ac:6b:71:72:42:f9:87:fb:
ed:80:1d:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:10 2024 by rpki-client on console-ams.rpki-client.org