Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/e1a857-ef60-4e1d-afe5-105130454fb0/1/Y3WvQzCci48pTqFnk6AFEoTfdqY.roa
File: Y3WvQzCci48pTqFnk6AFEoTfdqY.roa (raw, json)
Hash identifier: zWyYsqtyUBf7nSOc6Sv3N4yqh0H+L+V1jfDy+Z0LMN0=
Subject key identifier: 63:75:AF:43:30:9C:8B:8F:29:4E:A1:67:93:A0:05:12:84:DF:76:A6
Certificate issuer: /CN=6655c1a30667a9d08231ca4870a33194ad53406f
Certificate serial: 01856F39214346B2C28197640502F8A98869
Authority key identifier: 66:55:C1:A3:06:67:A9:D0:82:31:CA:48:70:A3:31:94:AD:53:40:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZlXBowZnqdCCMcpIcKMxlK1TQG8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/e1a857-ef60-4e1d-afe5-105130454fb0/1/Y3WvQzCci48pTqFnk6AFEoTfdqY.roa
Signing time: Sun 01 Jan 2023 21:24:53 +0000
ROA not before: Sun 01 Jan 2023 21:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58061
IP address blocks: 195.96.155.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:39:21:43:46:b2:c2:81:97:64:05:02:f8:a9:88:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6655c1a30667a9d08231ca4870a33194ad53406f
Validity
Not Before: Jan 1 21:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6375af43309c8b8f294ea16793a0051284df76a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:76:f6:fe:7a:f0:b4:a6:95:1b:21:be:25:bc:
c9:34:27:94:9e:87:05:31:ac:6b:67:dd:26:53:69:
2c:7a:69:5d:83:70:a3:75:16:29:92:7b:16:d6:7d:
04:bf:1e:5c:03:90:e0:d9:c0:df:be:d4:32:62:e0:
a8:35:27:84:2c:f1:11:55:a2:a1:6d:eb:9e:09:f6:
1f:ea:f5:be:c4:95:cf:d7:33:0a:31:16:ac:c4:ec:
a8:bf:2c:e6:bd:be:32:24:6b:3c:ed:5a:65:e9:af:
e0:cc:99:9a:dd:f1:44:d7:9c:63:bf:90:47:2c:b4:
59:a7:71:5d:6b:56:35:53:68:14:41:7f:7a:be:88:
6e:2d:59:7d:de:18:74:11:5d:c2:c5:56:64:e2:e9:
48:89:f1:72:67:3a:67:77:c9:58:13:80:43:90:a3:
d0:c2:77:cc:21:5c:9f:09:6f:7a:cc:b4:b2:56:cb:
20:b2:7e:89:7f:f0:7f:2f:60:f6:29:79:1b:95:0f:
d1:a5:ac:e0:4c:43:11:1a:9e:b6:f9:3b:6b:da:46:
aa:81:e8:e4:c5:a3:48:bd:77:7a:ce:ac:35:ae:29:
e9:30:90:fb:0d:79:7b:59:14:6f:74:38:84:45:3c:
f3:17:fb:7c:75:22:c2:ba:ff:ae:53:f1:b9:40:66:
42:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:75:AF:43:30:9C:8B:8F:29:4E:A1:67:93:A0:05:12:84:DF:76:A6
X509v3 Authority Key Identifier:
keyid:66:55:C1:A3:06:67:A9:D0:82:31:CA:48:70:A3:31:94:AD:53:40:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZlXBowZnqdCCMcpIcKMxlK1TQG8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/e1a857-ef60-4e1d-afe5-105130454fb0/1/Y3WvQzCci48pTqFnk6AFEoTfdqY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/e1a857-ef60-4e1d-afe5-105130454fb0/1/ZlXBowZnqdCCMcpIcKMxlK1TQG8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.155.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:45:bc:f2:54:29:b3:2e:b5:3e:20:ee:f5:1b:72:1a:47:1f:
bc:91:3c:ab:23:48:46:c9:6b:d5:3b:b5:d0:a4:77:6d:8c:07:
1d:0f:cb:a5:a4:b5:7d:44:df:48:3d:cb:82:e8:c2:79:49:fe:
6b:a9:01:64:e9:c4:f9:61:a3:03:39:e7:a6:b1:dd:6b:f1:56:
01:f8:1d:20:80:fc:a3:a7:84:6d:b6:f7:be:73:b7:49:41:9c:
d6:fc:6e:df:0b:ec:b0:71:04:fa:60:c8:2f:58:7e:79:87:2f:
30:d1:70:a0:db:3a:d0:a8:cd:0f:4b:15:3b:54:30:31:f0:32:
13:e5:19:5f:92:ed:2c:50:a8:1f:d1:fa:e9:d5:77:b4:65:dd:
8b:01:c9:f2:9c:ec:81:42:3c:9a:3b:42:5b:80:45:6b:60:f9:
8c:23:a7:00:49:93:c2:e2:3f:c6:4e:91:4e:ae:b3:c8:4e:0f:
21:8e:a5:ee:ab:10:d9:5e:d0:c1:1b:5e:2a:ee:d0:a8:fa:e2:
5d:70:7e:c2:d5:6d:94:28:9e:36:69:cd:b2:71:5f:27:4d:2a:
00:d5:aa:44:a7:cd:63:e9:45:47:d1:5f:33:ff:5c:86:38:5f:
b7:b0:8d:0d:1d:c4:1b:c0:68:6b:82:30:85:95:56:ae:3d:90:
01:9a:f7:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:34 2024 by rpki-client on console-fra.rpki-client.org