Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/d87d78-9154-4fe8-b20d-3e243ebeca34/1/NhMDaZxK8uTb1SMLMF5qX8scasM.roa
File: NhMDaZxK8uTb1SMLMF5qX8scasM.roa (raw, json)
Hash identifier: HZUy82Ye2w9V+oEzNy/MIRYmH1o+tz4TdWYEFBU04k4=
Subject key identifier: 36:13:03:69:9C:4A:F2:E4:DB:D5:23:0B:30:5E:6A:5F:CB:1C:6A:C3
Certificate issuer: /CN=b6d89a799f6ce5edd6ecadc901eaae510214f343
Certificate serial: 02A45A3F
Authority key identifier: B6:D8:9A:79:9F:6C:E5:ED:D6:EC:AD:C9:01:EA:AE:51:02:14:F3:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ttiaeZ9s5e3W7K3JAequUQIU80M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/d87d78-9154-4fe8-b20d-3e243ebeca34/1/NhMDaZxK8uTb1SMLMF5qX8scasM.roa
Signing time: Sat 01 Jan 2022 12:03:56 +0000
ROA not before: Sat 01 Jan 2022 12:03:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207304
IP address blocks: 167.160.5.0/24 maxlen: 24
185.98.157.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44325439 (0x2a45a3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6d89a799f6ce5edd6ecadc901eaae510214f343
Validity
Not Before: Jan 1 12:03:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=361303699c4af2e4dbd5230b305e6a5fcb1c6ac3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:25:18:c4:ff:c4:10:99:ad:b8:64:3b:61:26:
82:16:5e:c0:af:64:c6:28:cf:a4:f4:49:d5:b6:05:
c9:5d:db:f4:fa:67:b2:92:98:53:ec:41:ae:a3:3e:
3d:9f:f0:92:8b:b8:41:1b:3d:b8:ea:25:bc:47:ec:
ff:e5:89:41:c1:7d:02:80:69:da:05:61:42:5a:ae:
e3:32:90:8a:e5:c2:33:28:ee:95:a1:7f:d1:b9:9b:
88:0d:64:da:e5:b9:e8:c2:70:c8:10:8e:8d:13:87:
3b:dd:2a:be:8a:3c:60:34:c2:7e:61:99:72:a5:79:
fa:89:b3:59:a5:92:91:ca:a7:12:41:92:f1:ab:c6:
73:1b:2a:53:31:22:e0:78:8f:39:38:aa:45:45:df:
99:fc:06:bc:3e:18:02:a9:20:18:af:a0:0a:3a:70:
67:a7:77:d8:a4:dc:89:48:3b:e0:5d:ed:a3:f0:ce:
b8:b4:3a:aa:71:61:03:f9:e4:b6:e5:96:d3:82:b4:
0a:ee:c3:21:16:fd:28:54:dd:cd:ca:98:2e:9d:b5:
20:7d:bc:09:f4:b1:07:bd:17:21:42:bf:40:d2:5c:
06:98:92:9c:3b:0f:d4:3d:8e:89:ab:95:08:85:29:
9c:38:23:d0:4b:11:5d:47:0c:ec:7c:56:e2:4b:c5:
d1:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:13:03:69:9C:4A:F2:E4:DB:D5:23:0B:30:5E:6A:5F:CB:1C:6A:C3
X509v3 Authority Key Identifier:
keyid:B6:D8:9A:79:9F:6C:E5:ED:D6:EC:AD:C9:01:EA:AE:51:02:14:F3:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ttiaeZ9s5e3W7K3JAequUQIU80M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d87d78-9154-4fe8-b20d-3e243ebeca34/1/NhMDaZxK8uTb1SMLMF5qX8scasM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d87d78-9154-4fe8-b20d-3e243ebeca34/1/ttiaeZ9s5e3W7K3JAequUQIU80M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.160.5.0/24
185.98.157.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:e8:ce:6f:e7:43:f1:25:9a:bb:c1:82:cd:96:32:6f:f7:66:
cd:69:2f:35:0c:61:b7:f2:a1:08:c4:47:3a:43:61:b3:a9:fb:
c2:a2:5e:67:a5:08:c1:80:e1:0b:6a:de:19:f2:dd:22:73:46:
f9:e7:1e:85:7f:e3:fe:87:cf:cf:3d:c4:17:72:69:5d:0d:46:
70:39:7c:39:13:d2:f2:53:2f:4b:62:c8:62:94:72:f5:c3:d6:
73:3a:5a:f7:62:60:4b:1c:6b:29:73:f4:b5:93:4e:29:7a:c9:
b3:f8:8c:1d:96:a7:05:4d:56:6e:df:04:34:a6:38:73:b9:48:
01:d7:a8:e3:67:ef:c1:8a:e8:24:5a:3f:1f:b4:0e:09:7d:86:
b8:b4:f7:c5:f7:ac:df:e8:a3:9d:2b:62:4f:e0:0e:4b:a9:b4:
f4:a5:f5:2c:7b:89:9f:d0:17:ad:b1:cf:2a:2a:fc:13:ab:76:
38:b0:d0:8b:e9:e1:9a:af:bd:3e:60:9b:53:37:f0:41:83:a1:
90:a8:14:2f:a3:79:96:fb:60:0b:e7:ba:29:d8:22:9e:6a:39:
ec:bf:8f:e1:85:19:f2:80:2d:ca:ca:a1:8b:38:40:9a:71:9d:
3e:d3:32:b9:3e:e9:a5:85:72:86:39:de:c6:d4:ad:60:69:e5:
57:b2:16:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:48 2024 by rpki-client on console-ams.rpki-client.org