Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/6c1a33-713d-464a-9716-0ee388fb4f4c/1/NRBYVp5sxQHcgTISKCmW-t8XL6U.roa
File: NRBYVp5sxQHcgTISKCmW-t8XL6U.roa (raw, json)
Hash identifier: D4+kVIU6evlWYv61Nss31JEF+1mYBF3s30VunQKSk50=
Subject key identifier: 35:10:58:56:9E:6C:C5:01:DC:81:32:12:28:29:96:FA:DF:17:2F:A5
Certificate issuer: /CN=c82a8fbc246c106df56bf834eaaad9e05bc94d3a
Certificate serial: 0181F299FD038DE8CDCD2E754E2649999287
Authority key identifier: C8:2A:8F:BC:24:6C:10:6D:F5:6B:F8:34:EA:AA:D9:E0:5B:C9:4D:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yCqPvCRsEG31a_g06qrZ4FvJTTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/6c1a33-713d-464a-9716-0ee388fb4f4c/1/NRBYVp5sxQHcgTISKCmW-t8XL6U.roa
Signing time: Tue 12 Jul 2022 13:29:46 +0000
ROA not before: Tue 12 Jul 2022 13:29:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197883
IP address blocks: 195.96.152.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f2:99:fd:03:8d:e8:cd:cd:2e:75:4e:26:49:99:92:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c82a8fbc246c106df56bf834eaaad9e05bc94d3a
Validity
Not Before: Jul 12 13:29:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=351058569e6cc501dc813212282996fadf172fa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:9c:aa:23:38:e7:b1:20:1e:1f:85:5e:b7:f8:
86:49:48:7e:1f:7f:d0:58:e3:cd:fc:45:82:d0:10:
20:3a:63:6a:af:31:43:2d:55:f7:c9:ea:c1:c5:c8:
ee:42:61:ba:12:ce:e4:d5:b5:b1:fc:e1:ec:67:23:
86:cd:5b:af:f7:08:1d:43:2e:80:fb:c9:77:88:05:
13:43:ae:c9:86:44:de:b1:7a:e3:9a:4a:b0:e4:2a:
9c:44:75:50:1c:df:34:58:44:d0:e1:ae:11:a9:95:
9a:a2:34:3e:41:86:5d:75:59:c3:1f:58:1d:8a:28:
1f:9a:dd:ab:ac:67:10:64:e8:03:53:e8:84:f2:42:
05:15:78:a0:02:c8:b5:31:c0:4b:f6:1b:0d:c3:13:
e1:d6:d7:68:11:40:86:64:2e:08:16:e7:b7:2a:d5:
93:1d:39:65:b6:bb:18:ce:dd:89:8b:eb:55:62:83:
80:0f:63:4c:e9:a5:b2:4e:57:a6:bb:eb:37:c2:1a:
71:d2:fc:16:c0:f1:84:6d:09:00:e6:74:b5:e3:3a:
7a:14:6f:20:10:97:00:9c:8b:d8:a2:18:11:5b:64:
36:31:b6:f6:99:6c:56:59:2f:8f:c8:20:71:fd:24:
bd:61:b2:04:2f:d4:ab:a6:bb:ef:f6:68:14:2e:e7:
d7:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:10:58:56:9E:6C:C5:01:DC:81:32:12:28:29:96:FA:DF:17:2F:A5
X509v3 Authority Key Identifier:
keyid:C8:2A:8F:BC:24:6C:10:6D:F5:6B:F8:34:EA:AA:D9:E0:5B:C9:4D:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yCqPvCRsEG31a_g06qrZ4FvJTTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/6c1a33-713d-464a-9716-0ee388fb4f4c/1/NRBYVp5sxQHcgTISKCmW-t8XL6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/6c1a33-713d-464a-9716-0ee388fb4f4c/1/yCqPvCRsEG31a_g06qrZ4FvJTTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.152.0/24
Signature Algorithm: sha256WithRSAEncryption
67:ec:78:29:a8:0b:ae:a1:29:6d:a1:d8:b8:4d:92:22:3c:12:
fa:7c:c6:ba:8c:13:97:86:d7:b6:e3:e4:3c:db:da:4a:05:30:
9d:58:bf:b9:eb:a3:72:fe:5f:5a:2c:4a:43:b9:99:d6:28:62:
1a:4b:01:10:ac:f3:05:77:a0:18:78:79:75:ac:b3:8e:a7:de:
af:e7:dc:e9:9f:f5:a2:89:2b:aa:f1:e2:bc:77:77:d8:33:ec:
46:ea:1b:18:5d:88:96:77:81:4d:40:06:8b:fe:83:7d:19:96:
90:29:4c:9c:f9:30:6c:60:41:d3:6e:ce:ff:43:31:bb:a7:f7:
85:08:69:b6:6c:5e:91:d1:a2:3f:f1:f3:36:16:7b:0c:a2:3d:
f3:a1:d0:02:a9:57:6a:eb:29:6d:1a:03:93:71:f1:05:e8:af:
c2:67:b2:f5:a7:1a:17:81:0a:80:7a:53:7f:90:cf:6a:e7:b6:
18:6b:48:c1:67:69:1b:2b:b7:32:be:19:aa:a5:a0:58:4f:65:
be:48:e4:44:f0:f1:5a:d0:b4:02:23:95:79:de:ba:db:5d:9b:
2b:21:0e:a9:83:2b:41:96:5a:48:6f:d1:7f:5c:04:16:42:dc:
b4:a2:12:05:86:90:cf:fc:fb:c6:3a:5b:14:e7:2f:91:45:27:
1f:8d:df:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:00 2024 by rpki-client on console-ams.rpki-client.org