Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/e1a857-ef60-4e1d-afe5-105130454fb0/1/CLftnFue2b9jSaisKr1cwN-0UgY.roa
File: CLftnFue2b9jSaisKr1cwN-0UgY.roa (raw, json)
Hash identifier: j5U1XliuS4ZyVCDFVaipKXRB7CL8uzmQIfxf0HNwRvU=
Subject key identifier: 08:B7:ED:9C:5B:9E:D9:BF:63:49:A8:AC:2A:BD:5C:C0:DF:B4:52:06
Certificate issuer: /CN=6655c1a30667a9d08231ca4870a33194ad53406f
Certificate serial: 88008C
Authority key identifier: 66:55:C1:A3:06:67:A9:D0:82:31:CA:48:70:A3:31:94:AD:53:40:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZlXBowZnqdCCMcpIcKMxlK1TQG8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/e1a857-ef60-4e1d-afe5-105130454fb0/1/CLftnFue2b9jSaisKr1cwN-0UgY.roa
Signing time: Sat 01 Jan 2022 01:53:42 +0000
ROA not before: Sat 01 Jan 2022 01:53:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 195.96.155.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8913036 (0x88008c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6655c1a30667a9d08231ca4870a33194ad53406f
Validity
Not Before: Jan 1 01:53:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=08b7ed9c5b9ed9bf6349a8ac2abd5cc0dfb45206
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5a:da:8f:42:ed:37:8a:1b:7e:27:51:eb:dc:
de:aa:38:8b:97:55:0e:c4:b3:7a:6a:4e:bb:52:ec:
75:2a:e0:bf:84:6e:0b:f8:fa:e0:c8:16:3e:d7:ce:
b1:b0:59:4f:11:a9:5e:b0:05:d2:f4:40:9e:2c:cf:
dd:fc:b4:7b:4b:09:ad:75:17:5d:c8:8e:58:e5:21:
2f:d6:8c:67:77:f4:96:39:95:58:55:38:20:d3:d9:
ee:06:77:2a:89:58:5c:ac:80:50:cb:b6:65:fb:4a:
76:53:47:c5:f8:08:5e:da:71:43:6c:a3:6d:89:20:
33:2e:48:f1:2f:f8:29:08:dc:fa:e6:32:c5:ef:9d:
da:5a:01:e5:c8:de:fd:9f:36:62:17:33:56:ee:bb:
f9:ec:e7:9b:db:d9:7d:78:d3:c9:e6:d3:3b:3f:aa:
5f:ec:a6:db:1f:94:2f:ee:fc:38:f6:03:bd:a5:51:
74:fb:49:5a:d2:61:6c:16:da:34:b1:0c:3c:a5:17:
0c:fe:36:d8:32:b9:33:c0:c7:19:0c:fc:f7:ae:6f:
77:a8:00:0e:98:c5:21:58:63:d9:59:df:3b:b5:f8:
98:77:4b:30:58:bd:80:aa:f1:8b:ed:b8:93:23:fe:
e7:54:68:6d:80:be:f9:4b:7e:27:14:85:d0:55:2b:
83:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:B7:ED:9C:5B:9E:D9:BF:63:49:A8:AC:2A:BD:5C:C0:DF:B4:52:06
X509v3 Authority Key Identifier:
keyid:66:55:C1:A3:06:67:A9:D0:82:31:CA:48:70:A3:31:94:AD:53:40:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZlXBowZnqdCCMcpIcKMxlK1TQG8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/e1a857-ef60-4e1d-afe5-105130454fb0/1/CLftnFue2b9jSaisKr1cwN-0UgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/e1a857-ef60-4e1d-afe5-105130454fb0/1/ZlXBowZnqdCCMcpIcKMxlK1TQG8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.155.0/24
Signature Algorithm: sha256WithRSAEncryption
16:6f:2c:c4:d7:bc:b4:ab:e3:a1:c9:f0:0c:b4:41:05:c8:46:
c8:da:f8:c1:53:b5:5b:c9:f1:c1:6f:1f:16:cb:01:97:7b:0b:
45:38:e2:99:f6:13:96:0d:c3:8f:ca:f6:3d:9e:e3:90:75:eb:
67:9f:64:b5:11:f4:85:dc:f5:03:10:be:75:69:bc:07:00:db:
25:ce:9f:65:d5:4e:65:24:1d:2b:d4:f7:cf:f2:e7:2e:d4:d2:
75:cf:cb:c7:3a:7a:c0:70:51:43:a9:f7:9c:68:6d:33:fe:bd:
0c:0a:71:a7:d4:bc:bf:ee:47:34:4c:09:fd:23:fc:41:d4:bd:
06:36:95:c4:65:c5:16:bb:f2:76:21:11:5c:1b:41:ab:08:4c:
72:09:ca:58:08:e8:b2:3e:56:ee:72:43:03:89:ba:9c:b0:86:
38:dd:d5:12:7f:d5:41:7f:14:be:5b:fb:03:e3:72:dd:5c:77:
d3:81:59:61:1f:6c:3a:8b:00:3f:b0:53:b4:88:52:01:70:f3:
27:fe:f3:e2:c8:fb:e5:6c:58:80:aa:28:2a:36:b0:23:55:a6:
b2:49:ed:82:27:be:bd:83:a0:12:33:0c:98:29:ac:22:60:a6:
ec:c7:be:2c:1a:e5:c1:07:80:2b:fe:f1:d3:e7:ed:bf:6f:d7:
14:54:c6:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:10:53 2025 by rpki-client