Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/038d1b-840b-4772-ae7e-def03d51fea4/1/4B0dt4mdV5hOlv1jexHMv2RVJeE.roa
File: 4B0dt4mdV5hOlv1jexHMv2RVJeE.roa (raw, json)
Hash identifier: IzxskaLd3fLU7GCfoIClVAQ7m1PGn7JOo835ZI3ujx8=
Subject key identifier: E0:1D:1D:B7:89:9D:57:98:4E:96:FD:63:7B:11:CC:BF:64:55:25:E1
Certificate issuer: /CN=f2f0a391aaa6d790aae280ca589b28f444f71f57
Certificate serial: 8EF88E
Authority key identifier: F2:F0:A3:91:AA:A6:D7:90:AA:E2:80:CA:58:9B:28:F4:44:F7:1F:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8vCjkaqm15Cq4oDKWJso9ET3H1c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/038d1b-840b-4772-ae7e-def03d51fea4/1/4B0dt4mdV5hOlv1jexHMv2RVJeE.roa
Signing time: Sat 01 Jan 2022 01:55:24 +0000
ROA not before: Sat 01 Jan 2022 01:55:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 195.96.130.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9369742 (0x8ef88e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2f0a391aaa6d790aae280ca589b28f444f71f57
Validity
Not Before: Jan 1 01:55:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e01d1db7899d57984e96fd637b11ccbf645525e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:a7:3a:7c:59:7c:59:35:e3:8e:c6:64:dc:15:
2b:4d:2b:30:c1:a9:f7:26:40:66:5b:5c:90:9d:b5:
8b:bc:a6:aa:3c:e1:cf:c2:38:47:0e:44:ec:0e:82:
63:10:06:c0:b5:e2:8a:02:c3:1f:56:a0:25:21:c9:
c1:9f:83:b4:ef:1f:9e:66:86:3e:33:fa:68:b6:19:
50:ca:96:a5:64:79:a1:03:aa:b5:f5:b8:d2:7a:38:
e6:47:8d:c1:3f:41:b6:3e:70:a6:10:3b:74:ff:44:
ec:c8:73:ab:eb:60:55:6e:8a:7a:e7:68:eb:0d:ac:
04:ec:fd:d1:27:f9:97:33:2e:ea:b4:62:8e:99:ab:
9c:de:95:79:94:7a:09:95:42:3b:58:10:10:f3:cf:
d6:bc:3c:a8:d2:bf:7a:aa:09:89:f4:71:46:3f:ac:
07:e3:f3:5f:3f:62:9d:45:3e:da:ba:f0:7c:83:21:
29:0d:7b:7f:a8:f3:c0:fa:b2:8c:bf:77:40:1c:f3:
55:d9:28:bd:36:d5:c9:7b:79:89:9d:76:9c:36:fb:
a1:c6:e5:25:cb:fc:13:3c:9d:f8:2b:e7:5f:94:01:
d9:ef:34:9c:12:b2:f1:38:9c:d1:dc:a0:9c:5d:c2:
71:00:49:24:8c:a4:6b:e3:3e:2f:09:fd:68:3f:46:
5b:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:1D:1D:B7:89:9D:57:98:4E:96:FD:63:7B:11:CC:BF:64:55:25:E1
X509v3 Authority Key Identifier:
keyid:F2:F0:A3:91:AA:A6:D7:90:AA:E2:80:CA:58:9B:28:F4:44:F7:1F:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8vCjkaqm15Cq4oDKWJso9ET3H1c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/038d1b-840b-4772-ae7e-def03d51fea4/1/4B0dt4mdV5hOlv1jexHMv2RVJeE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/038d1b-840b-4772-ae7e-def03d51fea4/1/8vCjkaqm15Cq4oDKWJso9ET3H1c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.130.0/24
Signature Algorithm: sha256WithRSAEncryption
37:57:7d:dd:be:ea:b8:97:d4:4c:05:d8:09:c5:4a:68:78:62:
07:69:8b:6c:b8:35:1e:c5:b9:da:7d:73:54:1a:c5:25:85:c1:
c3:d7:83:97:f0:da:22:e2:b5:b4:53:45:f0:53:1a:79:95:30:
3e:de:48:4b:5d:88:95:5c:2d:29:b4:46:fc:67:98:44:7e:9f:
5c:a1:8a:c8:b6:56:e2:35:ce:9a:a7:38:22:97:6b:5b:7f:15:
6c:c4:48:a1:6e:83:82:79:0d:0f:89:f8:6b:15:3c:0b:af:b6:
64:ad:d0:73:c4:1b:65:64:5a:85:57:aa:b4:e3:53:67:82:f6:
02:c7:06:f5:2c:63:b1:e7:42:dc:96:8a:c2:d4:b9:69:1f:39:
6b:f4:ab:fc:4f:b6:29:a4:80:b3:d3:dc:2d:fb:0e:9b:0c:8e:
83:bf:2a:e5:9c:b7:d6:89:8d:8e:92:aa:d4:98:6b:84:20:f9:
1d:5f:13:2d:58:6c:bf:53:83:53:90:f9:1d:42:74:4c:fc:78:
82:14:6a:97:ca:4f:bf:f3:b8:c1:5a:df:aa:3c:bb:d4:bf:6c:
a5:ec:b6:48:2f:1f:9a:00:ca:40:2f:13:5f:ef:5f:36:78:f5:
95:63:9a:49:c0:70:6e:f5:96:2e:e4:1b:20:35:36:96:f2:8a:
b2:2d:9a:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:56 2024 by rpki-client on console-ams.rpki-client.org