Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/ed3544-61a9-4998-b164-01eb6f656126/1/nupgmMASWnGkXTQYCimZgdvjD5k.roa
File: nupgmMASWnGkXTQYCimZgdvjD5k.roa (raw, json)
Hash identifier: C9cN4wwQW95xvC2ZZwIqPBI00i8jACOf/cFLeJ7IbYs=
Subject key identifier: 9E:EA:60:98:C0:12:5A:71:A4:5D:34:18:0A:29:99:81:DB:E3:0F:99
Certificate issuer: /CN=77358867f21914e152fbf46c8bcc06109abfe0f5
Certificate serial: 018C7C3178A19320D740778A1F17EABAB5F0
Authority key identifier: 77:35:88:67:F2:19:14:E1:52:FB:F4:6C:8B:CC:06:10:9A:BF:E0:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dzWIZ_IZFOFS-_Rsi8wGEJq_4PU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/ed3544-61a9-4998-b164-01eb6f656126/1/nupgmMASWnGkXTQYCimZgdvjD5k.roa
Signing time: Mon 18 Dec 2023 09:11:06 +0000
ROA not before: Mon 18 Dec 2023 09:11:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206654
IP address blocks: 195.211.48.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:7c:31:78:a1:93:20:d7:40:77:8a:1f:17:ea:ba:b5:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77358867f21914e152fbf46c8bcc06109abfe0f5
Validity
Not Before: Dec 18 09:11:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9eea6098c0125a71a45d34180a299981dbe30f99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:12:aa:6f:90:8e:0f:02:1e:fc:fe:d7:1a:f4:
8d:f7:47:3a:d3:0a:a0:45:3e:12:f2:ec:7e:98:38:
ee:23:16:04:ff:e7:4c:17:65:3e:4a:32:e3:f4:62:
c1:a5:58:91:8b:c9:b3:a2:26:9d:d1:70:d0:45:e1:
0d:45:c1:99:68:5a:26:e0:23:51:49:23:d2:22:f0:
d3:6e:bf:ac:d5:66:6f:67:45:b1:a4:af:b1:f8:2f:
23:b1:50:57:95:6f:8b:1a:9b:29:2a:52:86:7f:ee:
e6:ab:d3:64:db:b5:f5:8c:17:07:51:08:31:73:ba:
69:ab:24:25:74:6a:54:a5:3e:ed:9b:57:e3:9a:0c:
5d:80:69:be:59:16:93:63:fd:5b:00:30:ee:e4:c1:
ca:55:6f:90:73:6c:fa:55:37:7d:97:f4:81:8a:05:
87:a7:95:ea:b9:66:a5:5c:4d:c9:9d:09:83:43:97:
c8:e7:64:2d:d3:9d:98:0b:aa:a5:fc:99:c6:c2:9c:
df:d6:82:9d:f2:c9:94:10:16:c8:fc:ac:7c:4c:6b:
1e:d1:54:ef:dc:29:3f:a1:33:a4:63:a0:ea:e1:38:
fc:4e:b0:8f:8e:73:07:7c:6e:29:a0:e7:b8:25:d2:
72:a3:b0:ec:8f:b2:3b:4a:32:ca:6b:d7:d8:de:4b:
27:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:EA:60:98:C0:12:5A:71:A4:5D:34:18:0A:29:99:81:DB:E3:0F:99
X509v3 Authority Key Identifier:
keyid:77:35:88:67:F2:19:14:E1:52:FB:F4:6C:8B:CC:06:10:9A:BF:E0:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dzWIZ_IZFOFS-_Rsi8wGEJq_4PU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/ed3544-61a9-4998-b164-01eb6f656126/1/nupgmMASWnGkXTQYCimZgdvjD5k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/ed3544-61a9-4998-b164-01eb6f656126/1/dzWIZ_IZFOFS-_Rsi8wGEJq_4PU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.211.48.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:a3:1b:08:91:92:99:ce:c9:5e:d7:2a:58:a5:6f:70:0e:e1:
99:56:89:e3:21:a0:cc:51:0a:88:9c:d0:ca:e1:f9:74:e6:37:
63:89:eb:8f:08:0f:d6:8d:75:79:90:ee:87:8e:34:c3:40:59:
94:10:47:1d:44:02:53:81:92:f4:3b:54:ef:27:e5:c7:74:d0:
0d:09:58:cf:92:d8:d4:ad:14:0a:59:98:c7:2c:16:5f:ba:59:
9d:28:43:64:c4:b6:8c:6d:cd:18:06:0c:91:08:b0:67:d8:26:
aa:35:2b:01:b4:45:d2:ac:1f:5b:5d:16:87:2e:1a:23:a9:bc:
4f:8c:f5:97:9c:e4:57:dc:04:6a:6f:f5:11:cc:5c:b1:1a:aa:
67:5c:5b:83:13:47:53:e8:0f:0f:16:11:00:ee:77:f6:53:25:
92:39:c8:db:5f:16:de:06:ff:bc:c8:24:30:11:9f:7c:65:fa:
48:40:c7:52:76:d5:3a:c9:e4:07:bf:bf:b4:e0:fc:35:97:af:
97:75:90:70:31:e4:a7:c2:9f:86:88:70:d2:1d:f1:57:cb:6e:
71:fc:82:34:7d:41:f0:9d:94:6e:f7:ae:66:10:c2:f6:dc:09:
27:14:f3:02:8c:72:a3:b4:d6:62:6c:1e:58:88:95:c5:f5:05:
d2:5f:9b:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:45 2024 by rpki-client on console-ams.rpki-client.org