Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/6c1a33-713d-464a-9716-0ee388fb4f4c/1/a2KGrwshYYn_qAQrocS8-8oRwq8.roa
File: a2KGrwshYYn_qAQrocS8-8oRwq8.roa (raw, json)
Hash identifier: X63f7BnkcK/zqOhXi2oaYeGewQieprKyDP0Ww4Pp4eo=
Subject key identifier: 6B:62:86:AF:0B:21:61:89:FF:A8:04:2B:A1:C4:BC:FB:CA:11:C2:AF
Certificate issuer: /CN=c82a8fbc246c106df56bf834eaaad9e05bc94d3a
Certificate serial: 01856BA592DFE9839F1BBBA0F4082D405F60
Authority key identifier: C8:2A:8F:BC:24:6C:10:6D:F5:6B:F8:34:EA:AA:D9:E0:5B:C9:4D:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yCqPvCRsEG31a_g06qrZ4FvJTTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/6c1a33-713d-464a-9716-0ee388fb4f4c/1/a2KGrwshYYn_qAQrocS8-8oRwq8.roa
Signing time: Sun 01 Jan 2023 04:44:51 +0000
ROA not before: Sun 01 Jan 2023 04:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197883
IP address blocks: 195.96.152.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:a5:92:df:e9:83:9f:1b:bb:a0:f4:08:2d:40:5f:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c82a8fbc246c106df56bf834eaaad9e05bc94d3a
Validity
Not Before: Jan 1 04:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6b6286af0b216189ffa8042ba1c4bcfbca11c2af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:84:ba:84:c9:f2:fe:fb:51:ee:7a:86:2e:82:
6e:4e:80:15:8b:dc:49:20:4f:4b:47:37:f6:d1:de:
1f:bd:60:66:5b:df:12:c0:f5:fb:97:ea:17:c1:9b:
bf:1a:2d:16:68:fc:07:56:30:9a:80:32:74:96:d4:
d0:40:aa:32:7e:4e:b2:b7:de:06:a3:8e:6d:19:f4:
fa:18:2f:22:f2:0e:22:f2:84:14:48:f5:6b:96:c8:
95:00:c9:88:6f:85:9d:71:52:f4:c7:97:e9:b3:c3:
0c:cc:f8:fe:fe:57:f1:64:1c:66:23:5e:57:11:39:
f9:04:61:83:48:d9:5f:d3:dd:9c:0f:60:83:d1:3b:
9f:41:8e:98:1d:4e:63:4b:91:17:7e:00:65:bb:c3:
ba:a3:7a:96:ad:01:15:18:3a:cf:20:36:bf:18:30:
2b:c4:14:da:02:d6:b4:1f:0b:28:ae:54:9f:ba:f4:
bd:48:82:5e:62:67:b8:5f:77:ee:4f:af:fd:80:86:
f8:2c:6e:45:30:1f:14:f5:fd:5d:46:fa:bf:eb:83:
20:bb:1a:b5:2e:ca:5b:f3:c7:51:73:09:1d:ca:24:
11:78:72:c2:90:5c:4c:e3:23:3b:fb:ed:1a:bc:13:
32:93:89:78:6c:cf:03:01:b8:c5:ac:64:0d:c0:ff:
a6:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:62:86:AF:0B:21:61:89:FF:A8:04:2B:A1:C4:BC:FB:CA:11:C2:AF
X509v3 Authority Key Identifier:
keyid:C8:2A:8F:BC:24:6C:10:6D:F5:6B:F8:34:EA:AA:D9:E0:5B:C9:4D:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yCqPvCRsEG31a_g06qrZ4FvJTTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/6c1a33-713d-464a-9716-0ee388fb4f4c/1/a2KGrwshYYn_qAQrocS8-8oRwq8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/6c1a33-713d-464a-9716-0ee388fb4f4c/1/yCqPvCRsEG31a_g06qrZ4FvJTTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.152.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:2c:97:eb:b2:e1:21:de:92:b9:97:6c:a8:aa:9b:bd:91:b4:
3b:24:39:86:a3:69:d2:c2:d7:87:f1:e6:94:76:9b:d1:39:38:
54:19:20:86:53:2d:ae:3f:c0:c8:88:31:29:fe:6c:2a:0c:36:
4d:83:5c:a2:91:bf:7a:ab:a6:de:0f:72:96:be:a6:6f:e0:c1:
78:f0:1a:21:1e:60:40:d3:6b:23:a9:33:fb:5f:2d:dd:5e:32:
c8:99:ba:82:71:fe:31:ba:32:35:12:01:d1:0e:ae:30:40:cd:
1b:e6:09:8f:5e:81:b5:71:18:23:fe:96:87:95:a5:94:32:ff:
aa:6c:d4:83:06:92:b5:63:32:e1:4a:81:21:f9:c1:91:01:18:
1b:f3:f4:22:5c:78:da:9b:3c:e3:bc:b4:cf:49:07:c6:b8:10:
2a:4b:a0:82:2b:10:15:0c:07:4f:9c:72:8b:9e:23:a6:d4:bc:
02:b5:f3:ee:84:92:68:37:e3:0f:42:90:39:02:27:a8:01:66:
f3:4c:fb:18:ee:c8:f7:f0:71:54:72:1f:42:c1:b8:87:d3:f7:
44:36:d0:ac:da:1a:40:92:f1:44:4f:9a:66:28:05:37:76:f2:
99:bd:31:4a:13:0f:5b:13:15:95:14:b5:42:67:40:8f:4e:c6:
86:d1:cd:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:07 2024 by rpki-client on console-fra.rpki-client.org