Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/41f4c7-9668-4cf4-9e9d-e0e0468e69d7/1/AG5hv6hwxjxngBmYesnlZ6a8Vvg.roa
File: AG5hv6hwxjxngBmYesnlZ6a8Vvg.roa (raw, json)
Hash identifier: WjFJnaWH+tl+TL5BZ9VHWw3rFVAyOYBsiaedU7trLzw=
Subject key identifier: 00:6E:61:BF:A8:70:C6:3C:67:80:19:98:7A:C9:E5:67:A6:BC:56:F8
Certificate issuer: /CN=82b3dcdf31af6ef0c934eaf24884ad99516edd76
Certificate serial: 01856CE61118C72E2E90E75505F6572E0C5A
Authority key identifier: 82:B3:DC:DF:31:AF:6E:F0:C9:34:EA:F2:48:84:AD:99:51:6E:DD:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/grPc3zGvbvDJNOrySIStmVFu3XY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/41f4c7-9668-4cf4-9e9d-e0e0468e69d7/1/AG5hv6hwxjxngBmYesnlZ6a8Vvg.roa
Signing time: Sun 01 Jan 2023 10:34:54 +0000
ROA not before: Sun 01 Jan 2023 10:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398577
IP address blocks: 144.57.40.0/24 maxlen: 24
144.57.41.0/24 maxlen: 24
144.57.40.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:11:18:c7:2e:2e:90:e7:55:05:f6:57:2e:0c:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82b3dcdf31af6ef0c934eaf24884ad99516edd76
Validity
Not Before: Jan 1 10:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=006e61bfa870c63c678019987ac9e567a6bc56f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:20:79:46:37:ee:ae:e6:bc:7e:1a:0b:12:9c:
88:7f:f7:a4:66:4a:c8:cc:a1:b3:6b:08:7f:27:21:
d7:64:2d:00:2f:d9:14:bf:ae:71:ec:7e:ac:fc:0b:
62:e2:bf:08:42:ef:91:b3:d1:69:ed:f6:f4:e4:af:
23:e1:c1:4a:7b:fe:09:00:af:60:2b:ac:30:e9:7d:
71:34:91:44:18:61:d6:1d:79:34:ea:29:ed:3e:3f:
d9:21:32:0c:f7:2d:bf:7e:5e:d8:69:f9:34:6c:74:
7e:4f:b9:b1:e4:ec:75:31:08:a1:4d:5b:30:eb:ec:
39:b7:e7:8d:22:5f:34:cf:b3:ce:ed:5e:1a:d4:f0:
82:fd:6d:91:0d:d9:08:90:f5:13:70:f2:ae:55:30:
f2:1a:3d:9a:19:91:b8:26:c9:93:ee:75:9c:8a:c0:
59:fd:c0:69:9c:0b:cd:b5:5a:ec:8a:dc:0a:72:3b:
da:fa:d3:a4:7e:bd:33:e7:e3:e3:9c:01:88:c3:50:
2b:fe:55:bf:21:52:de:b0:25:90:9c:8a:e1:8f:d2:
bd:c2:34:e8:cd:8b:8b:c3:42:c3:e5:97:49:de:f1:
33:0d:7b:e3:fe:ba:05:55:70:b2:58:32:8a:a4:49:
e0:9d:74:75:96:73:60:49:4a:41:17:14:de:d8:1c:
d4:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:6E:61:BF:A8:70:C6:3C:67:80:19:98:7A:C9:E5:67:A6:BC:56:F8
X509v3 Authority Key Identifier:
keyid:82:B3:DC:DF:31:AF:6E:F0:C9:34:EA:F2:48:84:AD:99:51:6E:DD:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/grPc3zGvbvDJNOrySIStmVFu3XY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/41f4c7-9668-4cf4-9e9d-e0e0468e69d7/1/AG5hv6hwxjxngBmYesnlZ6a8Vvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/41f4c7-9668-4cf4-9e9d-e0e0468e69d7/1/grPc3zGvbvDJNOrySIStmVFu3XY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.57.40.0/21
Signature Algorithm: sha256WithRSAEncryption
1f:69:7d:90:f6:d9:c0:03:5e:e3:6b:81:52:c6:6e:46:c1:48:
f3:31:fc:f4:bd:6c:c7:03:41:ff:b4:2e:4c:9f:7d:30:25:16:
ff:85:a3:ef:6f:15:06:17:c7:68:e8:a8:66:0e:cb:40:d8:d9:
68:e2:45:d3:ba:f6:e4:5d:05:31:a9:fc:7e:15:d9:7b:93:5c:
44:03:fb:a7:19:20:fe:64:de:6d:81:f0:45:2b:35:47:58:89:
2b:26:3e:9b:49:90:f3:78:c8:e8:e3:9f:a7:38:e0:73:50:64:
20:d8:16:40:a5:04:58:44:98:cc:02:36:1b:87:2d:20:7b:a4:
17:f0:1e:8e:05:2c:90:2a:e0:af:86:87:05:15:5a:3d:c0:f0:
a1:84:87:ec:db:82:d1:1f:d9:8e:b3:26:60:28:1b:cc:fa:f0:
89:a0:75:ee:97:07:e0:61:83:89:52:73:3b:27:c4:08:b9:3f:
cf:3b:c1:44:49:fd:52:34:f5:05:5a:43:18:ee:c2:0d:4c:93:
f4:10:4a:42:d6:3d:47:f6:c8:d3:09:37:41:83:a8:80:7f:b9:
be:02:87:a5:2b:7a:b2:6d:25:f8:e4:ae:47:7d:94:5e:7b:f7:
5a:70:bf:e8:cc:a4:64:e8:07:a8:5b:f1:db:26:56:8e:8e:e8:
23:46:0b:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:25 2024 by rpki-client on console-ams.rpki-client.org