Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/62343d-d924-4378-a121-2b68ab2ad2e9/1/lmtDJRoj21l-e6ycupvPEgXZnXQ.roa
File: lmtDJRoj21l-e6ycupvPEgXZnXQ.roa (raw, json)
Hash identifier: FzcPSh9NcSS3L03VXpkbn+WyNTCAYJOeIHmCxN2NGjI=
Subject key identifier: 96:6B:43:25:1A:23:DB:59:7E:7B:AC:9C:BA:9B:CF:12:05:D9:9D:74
Certificate issuer: /CN=67cfd7fae20d1d34b779dab669b8f0f07c9c34f8
Certificate serial: 018A292D28F36CFC21FF22018A2BD239B04D
Authority key identifier: 67:CF:D7:FA:E2:0D:1D:34:B7:79:DA:B6:69:B8:F0:F0:7C:9C:34:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z8_X-uINHTS3edq2abjw8HycNPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/62343d-d924-4378-a121-2b68ab2ad2e9/1/lmtDJRoj21l-e6ycupvPEgXZnXQ.roa
Signing time: Thu 24 Aug 2023 20:12:20 +0000
ROA not before: Thu 24 Aug 2023 20:12:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212219
IP address blocks: 195.85.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:29:2d:28:f3:6c:fc:21:ff:22:01:8a:2b:d2:39:b0:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67cfd7fae20d1d34b779dab669b8f0f07c9c34f8
Validity
Not Before: Aug 24 20:12:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=966b43251a23db597e7bac9cba9bcf1205d99d74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:f3:f0:61:9e:86:a1:8c:b0:09:61:4e:1a:30:
4e:6e:ff:ba:ec:14:e2:f9:a1:7d:3a:0a:f1:a7:89:
a2:8f:ba:08:31:57:b6:0f:07:e7:a5:ef:d4:e6:05:
81:08:6f:51:fa:f7:45:5d:11:75:0b:4e:d6:48:49:
82:f5:a4:d6:a3:9f:05:f2:f5:22:8f:fd:47:94:18:
20:75:cb:60:c5:2e:5d:1b:87:4f:08:44:09:6c:1d:
78:e0:c6:b1:56:e1:97:ef:9c:14:a5:26:d2:be:d0:
9a:49:36:2e:5d:ca:84:72:d9:b0:d2:b1:4a:61:0f:
63:1d:61:ba:a4:62:69:00:53:7d:9f:0c:3e:29:60:
c7:3b:8e:39:52:04:ed:66:39:f6:6a:2c:5b:9a:c6:
10:f5:c1:d4:e4:d3:79:56:0c:04:8f:ce:c1:8a:f6:
01:09:08:10:9e:41:9c:ae:09:1f:d1:27:5a:2b:82:
ee:06:e3:b0:f4:5e:8c:0a:2c:c0:fc:a9:b8:d1:9c:
84:1e:e3:52:13:77:0c:8b:1d:41:04:9f:16:c3:2b:
97:b0:45:22:4d:26:a5:e5:8f:35:83:80:27:c3:d3:
b8:3e:75:a4:da:ab:62:1f:46:2c:43:58:f0:ac:2b:
f6:df:5f:4a:e8:a8:fb:6e:d1:5f:80:67:eb:16:9f:
7a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:6B:43:25:1A:23:DB:59:7E:7B:AC:9C:BA:9B:CF:12:05:D9:9D:74
X509v3 Authority Key Identifier:
keyid:67:CF:D7:FA:E2:0D:1D:34:B7:79:DA:B6:69:B8:F0:F0:7C:9C:34:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z8_X-uINHTS3edq2abjw8HycNPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/62343d-d924-4378-a121-2b68ab2ad2e9/1/lmtDJRoj21l-e6ycupvPEgXZnXQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/62343d-d924-4378-a121-2b68ab2ad2e9/1/Z8_X-uINHTS3edq2abjw8HycNPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.85.207.0/24
Signature Algorithm: sha256WithRSAEncryption
71:33:50:f8:72:9b:f7:9f:e3:af:3d:c7:9a:97:e3:9b:8c:07:
9c:87:24:fe:33:b0:66:41:41:df:34:85:33:45:2e:0d:80:9d:
27:63:35:65:80:06:12:37:a7:1f:26:82:35:cb:82:36:73:fc:
dc:c7:6b:15:34:b6:7d:23:6e:1d:f5:49:88:84:7e:cd:6a:62:
74:35:e4:ce:04:d6:d3:c4:9a:fa:d7:52:5c:ac:90:a7:41:74:
ad:e6:4c:65:3d:11:0b:64:22:98:f4:55:1b:95:a3:1d:3e:76:
10:0c:3e:12:e5:8d:9c:1e:bf:ef:c1:7a:78:ec:2a:84:01:cc:
90:c8:ef:64:e1:a8:2c:47:13:bd:2a:9f:36:05:47:45:51:3d:
80:31:7e:7e:00:88:37:bb:a6:7e:6d:45:e8:82:7d:0f:47:73:
fd:6c:57:87:29:6f:87:f7:9a:21:80:84:2d:44:78:4d:11:67:
4c:9e:72:34:2b:df:23:17:d4:60:41:fb:52:1f:51:81:0c:33:
27:16:83:0f:c7:d3:db:d6:e7:04:09:5d:63:18:3a:42:e3:5a:
6e:da:be:fd:7e:a9:d1:29:a9:f3:43:25:08:ea:9a:7a:33:f8:
6e:59:c0:c0:80:48:dc:c2:8c:cc:6f:91:54:fb:be:56:7f:c7:
5a:88:de:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:19 2024 by rpki-client on console-fra.rpki-client.org