Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/dfd605-10da-46a2-9677-41401008a70c/1/lJ1DOCzCoI6ijGDKlhNpUc1enHo.roa
File: lJ1DOCzCoI6ijGDKlhNpUc1enHo.roa (raw, json)
Hash identifier: 8nrVt3NAaQ6lda1Q7ngweMyyn7IVLHtj69tgkcrsNWY=
Subject key identifier: 94:9D:43:38:2C:C2:A0:8E:A2:8C:60:CA:96:13:69:51:CD:5E:9C:7A
Certificate issuer: /CN=9daa9f14f97d4dad8c004c253a5e1ce7c7dd7c4b
Certificate serial: 0185BF0B52E6E5D78909B18FA59241E088C0
Authority key identifier: 9D:AA:9F:14:F9:7D:4D:AD:8C:00:4C:25:3A:5E:1C:E7:C7:DD:7C:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/naqfFPl9Ta2MAEwlOl4c58fdfEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/dfd605-10da-46a2-9677-41401008a70c/1/lJ1DOCzCoI6ijGDKlhNpUc1enHo.roa
Signing time: Tue 17 Jan 2023 09:24:28 +0000
ROA not before: Tue 17 Jan 2023 09:24:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 176.118.161.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:bf:0b:52:e6:e5:d7:89:09:b1:8f:a5:92:41:e0:88:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9daa9f14f97d4dad8c004c253a5e1ce7c7dd7c4b
Validity
Not Before: Jan 17 09:24:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=949d43382cc2a08ea28c60ca96136951cd5e9c7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ab:8d:c7:0f:06:a8:6d:79:6f:88:31:b1:eb:
f3:32:b6:1a:2c:1a:36:1c:4a:b2:5c:32:e0:a8:83:
28:7e:cf:2a:7e:6b:13:b4:75:47:48:03:2e:e1:00:
2c:ae:1e:4c:d5:54:b0:8c:91:c7:9f:ca:e3:e7:0c:
de:f7:97:2b:c8:1c:66:1e:7b:35:93:0a:f7:03:e7:
47:61:8b:8a:de:5e:10:50:43:33:79:b3:37:15:25:
46:31:86:9a:8b:09:97:f3:51:0f:dc:df:cd:29:00:
58:47:fc:cf:ec:83:47:11:82:91:e0:d8:c1:3f:3d:
53:04:ec:3b:99:cc:f5:77:62:56:d8:04:fd:8d:09:
dc:8b:4f:0b:92:63:ba:8d:6b:64:b7:b8:85:f1:19:
37:26:34:21:e3:16:c4:49:61:9e:3e:af:b8:58:03:
ae:b7:48:cd:7f:f2:4c:02:f6:6b:85:0a:33:b5:a2:
8c:7e:73:b0:59:67:21:a1:0a:96:8c:4a:a2:11:7a:
07:4d:13:f3:71:0b:50:6a:43:af:62:51:d8:5d:ae:
f4:90:de:a3:0c:7b:70:8a:9a:56:e4:fa:af:b9:84:
17:0b:a4:ad:33:8d:fd:fa:38:14:fd:94:91:67:ed:
19:79:fd:08:9d:04:da:86:ad:8b:39:30:f7:5a:9f:
4c:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:9D:43:38:2C:C2:A0:8E:A2:8C:60:CA:96:13:69:51:CD:5E:9C:7A
X509v3 Authority Key Identifier:
keyid:9D:AA:9F:14:F9:7D:4D:AD:8C:00:4C:25:3A:5E:1C:E7:C7:DD:7C:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/naqfFPl9Ta2MAEwlOl4c58fdfEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/dfd605-10da-46a2-9677-41401008a70c/1/lJ1DOCzCoI6ijGDKlhNpUc1enHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/dfd605-10da-46a2-9677-41401008a70c/1/naqfFPl9Ta2MAEwlOl4c58fdfEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.118.161.0/24
Signature Algorithm: sha256WithRSAEncryption
58:7a:e6:25:bf:1d:7c:29:f4:fd:81:c9:ae:44:9c:3c:b0:e4:
36:42:14:9d:4e:4a:36:d7:24:cb:6d:e6:42:5c:f4:87:71:e6:
8d:5c:77:0e:c7:fc:53:d7:17:48:12:e6:59:10:42:0b:61:4b:
f9:8a:1a:f4:74:58:a7:ce:ef:58:bd:69:3e:80:84:58:17:1b:
fa:3c:88:3c:03:fa:6b:1e:02:19:eb:62:9a:79:26:1d:76:7e:
e1:df:96:96:2f:cf:5f:e4:f9:b4:da:c3:ee:33:d4:3e:77:3d:
62:ec:5e:c9:c0:8d:36:dd:6f:31:8e:71:b3:8c:e3:22:e1:5e:
8a:19:ad:47:f1:19:41:bf:ae:be:9d:b6:12:e7:c9:fb:30:1d:
68:a9:e1:d2:8e:a5:75:49:23:95:61:b5:26:80:ed:e0:5f:e4:
9d:8d:0d:0a:d3:66:1b:66:56:b2:c6:45:e2:92:df:fd:48:38:
c7:63:5b:00:6a:00:89:99:3e:c2:b2:ca:a3:7d:3b:ae:a5:40:
a9:d7:12:d5:ca:6c:c6:1c:2d:a3:1d:32:db:6a:47:ec:94:0b:
80:45:d5:89:75:87:90:7c:70:be:d0:38:e7:8d:d8:50:ec:6a:
43:57:84:be:35:a6:7e:90:f9:70:9a:d2:c6:e7:97:46:e9:d7:
5d:a4:cd:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:48 2024 by rpki-client on console-ams.rpki-client.org