Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/7f631d-d0a1-4e23-96f8-1b2b2faf1cac/1/b9tQ_7cVhYIKy6n6MimTbqeWV4M.roa
File: b9tQ_7cVhYIKy6n6MimTbqeWV4M.roa (raw, json)
Hash identifier: j3KWrBaDFCEx9erYWSfLq+VZqG6KDq2MCiN79Y3KwaM=
Subject key identifier: 6F:DB:50:FF:B7:15:85:82:0A:CB:A9:FA:32:29:93:6E:A7:96:57:83
Certificate issuer: /CN=68a839cc8159fc5d3d75dedf62aadb81c40eabed
Certificate serial: 04B042
Authority key identifier: 68:A8:39:CC:81:59:FC:5D:3D:75:DE:DF:62:AA:DB:81:C4:0E:AB:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKg5zIFZ_F09dd7fYqrbgcQOq-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/7f631d-d0a1-4e23-96f8-1b2b2faf1cac/1/b9tQ_7cVhYIKy6n6MimTbqeWV4M.roa
Signing time: Thu 14 Apr 2022 11:20:06 +0000
ROA not before: Thu 14 Apr 2022 11:20:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 217.28.129.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 307266 (0x4b042)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a839cc8159fc5d3d75dedf62aadb81c40eabed
Validity
Not Before: Apr 14 11:20:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6fdb50ffb71585820acba9fa3229936ea7965783
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:1c:23:45:99:85:25:d2:2d:d6:c2:ec:ae:aa:
03:13:4b:b7:84:02:a6:4e:ba:a7:e1:b4:eb:36:07:
45:5b:f0:53:83:fe:b5:31:af:b1:c5:6a:0c:7f:cb:
57:e1:ca:e2:aa:68:f9:a2:af:c0:7f:bc:47:de:fa:
ec:dc:fa:04:ff:95:7e:30:b8:51:64:71:90:3a:c1:
ff:3b:e3:87:98:87:c9:2c:e2:ec:df:71:8e:e4:8c:
df:ed:99:fd:f5:18:5a:61:82:d5:dd:75:41:13:80:
0f:d6:75:2c:97:74:2d:87:4f:ad:f2:0a:ae:29:d2:
03:c8:50:8a:30:ec:73:be:a2:de:e4:ad:80:87:69:
69:41:af:2f:d5:6d:50:e7:44:69:de:57:d1:2b:23:
79:be:df:dc:16:c5:40:ee:23:48:fd:9f:40:0f:7f:
3f:db:44:21:17:da:81:13:f0:65:42:74:2e:4e:06:
74:81:59:33:45:c2:70:90:2d:bc:ca:a4:49:31:58:
d9:58:fb:0e:74:b6:2b:60:f4:55:e9:61:21:32:ae:
f6:2b:3f:90:1e:37:15:0a:09:c2:93:d4:05:d9:09:
52:41:09:36:b3:d2:3d:31:61:58:14:e2:38:a8:f8:
d5:54:b8:cf:b6:ef:f9:4d:2e:ec:5d:09:56:9c:94:
2e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:DB:50:FF:B7:15:85:82:0A:CB:A9:FA:32:29:93:6E:A7:96:57:83
X509v3 Authority Key Identifier:
keyid:68:A8:39:CC:81:59:FC:5D:3D:75:DE:DF:62:AA:DB:81:C4:0E:AB:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKg5zIFZ_F09dd7fYqrbgcQOq-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/7f631d-d0a1-4e23-96f8-1b2b2faf1cac/1/b9tQ_7cVhYIKy6n6MimTbqeWV4M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/7f631d-d0a1-4e23-96f8-1b2b2faf1cac/1/aKg5zIFZ_F09dd7fYqrbgcQOq-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.28.129.0/24
Signature Algorithm: sha256WithRSAEncryption
46:74:0e:36:b8:d2:e6:29:0b:29:74:3d:69:a5:f5:36:51:6c:
ff:3e:75:51:1a:c3:c5:51:7f:5a:3a:61:af:09:1a:1f:0f:95:
cb:23:7d:7a:2f:30:3a:e1:fb:90:08:ba:42:2c:a8:aa:bd:98:
96:9b:90:48:fe:fb:58:2e:6b:9a:b9:fa:7f:db:f9:bc:6a:81:
51:1b:d2:bc:be:7b:73:0d:fb:7d:aa:84:3e:42:d0:42:0c:d6:
ee:b2:4a:bd:f6:de:d8:5e:b9:5b:6f:ab:cb:03:6c:13:d0:de:
fc:c4:72:53:27:f5:3f:3d:5d:b5:39:7b:36:d0:b9:82:bc:f3:
fb:c9:59:b4:8d:0a:9c:b9:e2:2a:ef:bb:7a:a7:20:e7:b6:9b:
ef:11:6c:14:26:ea:7c:1e:7e:4d:0a:0b:de:67:e9:f3:86:f7:
61:ec:97:00:6a:06:f6:c9:74:75:0c:85:e5:a5:d8:0d:25:d9:
96:19:32:e4:5e:20:05:a6:ff:b8:26:55:6d:71:cd:64:2d:ef:
fb:9f:1f:85:41:40:1d:3b:84:99:a0:0d:5b:51:ea:40:49:f4:
9f:04:c8:f0:81:26:06:be:19:72:85:50:ce:b9:d0:08:7c:a3:
20:48:05:2d:eb:02:d2:f7:ce:36:09:d7:18:23:ff:96:b1:ab:
0a:40:e7:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:18 2024 by rpki-client on console-fra.rpki-client.org