Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/4e20f1-5689-411c-9379-c159165de0c7/1/96N11WGp8uymv_DUOR7NytPqLtU.roa
File: 96N11WGp8uymv_DUOR7NytPqLtU.roa (raw, json)
Hash identifier: GhlTGOTV6KPRQuSqqq+tW9U7dlLC4gVYG0qV7kPExsM=
Subject key identifier: F7:A3:75:D5:61:A9:F2:EC:A6:BF:F0:D4:39:1E:CD:CA:D3:EA:2E:D5
Certificate issuer: /CN=edc7cb00b3d414afa97c482eab5fdc76a1634b3d
Certificate serial: 018AC06100E10D2CEF4C22319BF126F5DFF5
Authority key identifier: ED:C7:CB:00:B3:D4:14:AF:A9:7C:48:2E:AB:5F:DC:76:A1:63:4B:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7cfLALPUFK-pfEguq1_cdqFjSz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/4e20f1-5689-411c-9379-c159165de0c7/1/96N11WGp8uymv_DUOR7NytPqLtU.roa
Signing time: Sat 23 Sep 2023 04:51:37 +0000
ROA not before: Sat 23 Sep 2023 04:51:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 212.23.206.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:c0:61:00:e1:0d:2c:ef:4c:22:31:9b:f1:26:f5:df:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edc7cb00b3d414afa97c482eab5fdc76a1634b3d
Validity
Not Before: Sep 23 04:51:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7a375d561a9f2eca6bff0d4391ecdcad3ea2ed5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:be:f5:23:71:4c:2b:1b:df:18:e7:5f:e3:0a:
9a:da:d6:47:a9:7b:b4:e5:40:1c:26:5c:78:8f:6a:
17:8e:0d:0b:21:99:3d:c5:91:6e:da:eb:c4:4a:16:
98:5d:d3:fd:03:94:fb:41:3f:15:47:67:99:62:be:
e5:ff:42:0a:b7:1d:f4:47:f9:a0:19:2d:e1:41:be:
d4:98:41:01:a3:6c:f5:15:b8:64:5f:04:cf:dd:7a:
2b:97:e4:0a:49:be:89:60:79:11:b7:38:8c:1c:52:
c2:d5:9e:d7:74:2b:04:a0:06:ee:c5:33:26:1c:95:
77:4f:44:fc:d6:fa:d9:63:a1:b6:0e:24:dc:c3:11:
bf:59:fa:25:d5:9e:58:7b:28:39:1d:69:26:4b:58:
ac:ad:84:c7:0f:c4:d7:8e:7a:85:49:5b:19:dc:1a:
5d:b5:73:8f:6a:e0:7f:29:20:e1:2b:89:7e:1d:ce:
7d:2a:a8:e7:e4:74:14:ba:17:6d:97:03:f5:79:07:
96:0c:8f:6f:5c:02:4f:3d:9e:1e:e2:42:cb:7b:c4:
56:ed:fb:8d:4b:56:0a:ef:71:1b:13:cb:7d:c7:78:
d8:35:29:a6:39:2e:c4:7c:46:b0:bc:68:3a:6e:42:
cd:80:99:b9:40:07:19:94:9f:c2:23:c8:bd:d0:fc:
05:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:A3:75:D5:61:A9:F2:EC:A6:BF:F0:D4:39:1E:CD:CA:D3:EA:2E:D5
X509v3 Authority Key Identifier:
keyid:ED:C7:CB:00:B3:D4:14:AF:A9:7C:48:2E:AB:5F:DC:76:A1:63:4B:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7cfLALPUFK-pfEguq1_cdqFjSz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/4e20f1-5689-411c-9379-c159165de0c7/1/96N11WGp8uymv_DUOR7NytPqLtU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/4e20f1-5689-411c-9379-c159165de0c7/1/7cfLALPUFK-pfEguq1_cdqFjSz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.206.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:e5:15:c7:8d:46:5f:c5:f7:ec:28:18:ea:69:98:82:02:ef:
bc:aa:31:98:0f:7e:b5:6c:ba:9c:73:41:40:af:9a:5c:bc:00:
58:19:14:b4:75:83:cb:8d:f5:0c:ea:50:6d:d5:f7:bc:e6:bb:
7f:4b:43:79:e8:76:0a:1b:3a:67:9e:6c:b1:0a:13:d7:74:aa:
a2:17:c1:6b:d3:c3:c4:65:b0:eb:29:fc:c5:4d:68:04:24:d0:
a5:99:69:5e:36:9c:8e:9d:31:f6:b0:82:b7:f1:bc:05:8c:e2:
f2:6b:30:ef:57:ef:48:93:43:d2:4e:89:9f:9f:ff:f1:46:ba:
b8:b4:f9:98:e5:78:af:ac:63:3c:98:b2:43:24:5b:4c:9e:1a:
72:e3:fb:ed:df:17:c8:b8:12:b6:40:6c:08:d2:c0:69:10:b7:
64:58:ba:f5:03:e5:27:9b:b7:be:c6:72:80:78:a0:b4:e7:84:
6c:29:77:4b:06:54:47:bf:93:78:b2:f8:46:3e:05:93:1b:a2:
1e:b3:30:c8:93:1f:de:3d:ca:58:1d:10:22:57:b3:aa:51:ea:
7f:04:4e:99:77:4f:fe:28:b0:5e:f4:ff:a7:02:6a:12:1a:a4:
5c:cb:67:6d:79:62:c0:d1:4e:cd:4b:84:d8:1b:05:64:7b:0a:
19:e5:b6:d1
-----BEGIN CERTIFICATE-----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Generated at Tue Nov 7 10:46:56 2023 by rpki-client on console-fra.rpki-client.org