Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/PxZ9lpjLbJag41m4TDacRI0PrMw.roa
File: PxZ9lpjLbJag41m4TDacRI0PrMw.roa (raw, json)
Hash identifier: aeJ0Y5D7P8B62LTFzBKuaoWVyhMqAtsVekJMeGrTRMs=
Subject key identifier: 3F:16:7D:96:98:CB:6C:96:A0:E3:59:B8:4C:36:9C:44:8D:0F:AC:CC
Certificate issuer: /CN=624039399017fa093dc8d503799f6ca403f0bd05
Certificate serial: 05CD676A
Authority key identifier: 62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/PxZ9lpjLbJag41m4TDacRI0PrMw.roa
Signing time: Sun 03 Jul 2022 18:14:25 +0000
ROA not before: Sun 03 Jul 2022 18:14:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 45.95.212.0/24 maxlen: 24
194.31.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97347434 (0x5cd676a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=624039399017fa093dc8d503799f6ca403f0bd05
Validity
Not Before: Jul 3 18:14:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f167d9698cb6c96a0e359b84c369c448d0faccc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:4c:15:a0:28:e5:b7:7a:0a:94:d3:2f:3b:4e:
d4:fc:1d:e9:3a:01:08:35:92:b6:7a:14:d9:f8:67:
57:26:3c:16:88:ab:82:d2:1a:9c:93:5b:a2:4a:bb:
2d:a9:6e:df:69:6a:6d:a1:88:bb:fd:f0:15:75:a8:
5f:c1:c1:a4:d9:49:68:aa:07:ea:85:cf:bd:3d:b1:
74:8d:13:bd:ea:3d:24:16:bd:6e:bb:66:26:a9:85:
88:f4:61:cb:eb:ea:9b:35:1e:d3:07:94:ae:fb:64:
ca:ae:d4:3a:8e:5c:e1:79:fe:54:42:c2:7a:e6:0b:
65:50:68:59:88:aa:46:f1:bf:9d:f4:aa:4b:95:ca:
1a:48:ad:a2:57:e2:ec:f3:cb:09:60:09:a3:1c:54:
f8:ff:94:39:dc:ff:f8:6c:5d:b2:80:73:5a:fb:59:
bd:99:fa:b2:11:77:96:9c:bd:3a:a2:e1:37:fd:d1:
72:42:0c:77:c7:8d:64:c1:21:b3:a3:c4:1a:bc:a0:
3a:79:a2:12:3c:e2:bc:74:db:35:08:99:5e:97:b4:
c8:76:ab:83:99:c1:91:2c:dc:73:f0:a5:d2:3a:3e:
22:78:2f:1d:e6:88:2d:93:77:7c:3f:91:33:74:68:
4d:85:89:98:57:1e:c4:aa:a7:d6:1c:b8:0c:1b:3a:
bb:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:16:7D:96:98:CB:6C:96:A0:E3:59:B8:4C:36:9C:44:8D:0F:AC:CC
X509v3 Authority Key Identifier:
keyid:62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/PxZ9lpjLbJag41m4TDacRI0PrMw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/YkA5OZAX-gk9yNUDeZ9spAPwvQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.212.0/24
194.31.195.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:bf:83:3c:3d:f4:c6:80:de:cd:a9:20:25:79:95:2a:84:23:
fc:8a:53:91:d4:a0:00:76:4f:52:2b:51:10:f6:2a:24:d8:a6:
fd:ab:ed:7d:00:54:a8:18:66:92:3b:3b:3a:13:93:81:52:4b:
59:52:f9:15:b9:af:49:94:c5:9d:7e:62:3a:aa:03:4c:37:2f:
0e:b8:e0:d4:ed:3a:f2:b3:92:b6:86:32:e8:90:e9:8e:fc:ca:
4f:e6:6b:79:84:35:96:72:32:27:b5:8d:2f:29:ac:43:6a:db:
c8:e4:bc:d3:7d:5c:fa:87:d5:b4:e5:ab:82:34:48:0c:3b:5c:
04:01:e2:e6:47:76:78:f9:b4:04:17:2a:0d:6e:5c:c8:18:12:
ea:3a:7b:0f:81:45:75:67:fe:bd:5c:46:fd:1c:e2:5f:19:7c:
cf:bd:9a:73:a5:94:8b:91:de:d0:60:9b:dd:06:97:e0:de:c4:
ee:fd:5b:e4:3b:99:91:b7:1b:0a:91:36:74:a8:27:d5:d3:6c:
3a:b3:27:97:e6:ce:0b:fa:67:87:2e:70:da:de:ef:4a:9d:8c:
05:0b:d3:b3:7b:4f:98:38:d4:9a:32:f4:20:92:aa:f2:19:8f:
90:d5:13:17:a2:43:dd:6c:a4:50:6a:26:de:cd:f1:b9:3b:d1:
e2:4b:d0:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:55 2024 by rpki-client on console-ams.rpki-client.org