Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/cd63ea-faa9-404e-9f57-0dae0d653e38/1/1rytnLqOcqosEEGjcqvu2Mm9jfs.roa
File: 1rytnLqOcqosEEGjcqvu2Mm9jfs.roa (raw, json)
Hash identifier: cWMN0BlI2P9QDA91YrxKs3Yrsh3ft1w9aIjDGH6tZlA=
Subject key identifier: D6:BC:AD:9C:BA:8E:72:AA:2C:10:41:A3:72:AB:EE:D8:C9:BD:8D:FB
Certificate issuer: /CN=07f5ccf6abd7582cc51940a76f99505633982bb4
Certificate serial: 018967D2BC4528CE4FA493E3F775B57D91CB
Authority key identifier: 07:F5:CC:F6:AB:D7:58:2C:C5:19:40:A7:6F:99:50:56:33:98:2B:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_XM9qvXWCzFGUCnb5lQVjOYK7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/cd63ea-faa9-404e-9f57-0dae0d653e38/1/1rytnLqOcqosEEGjcqvu2Mm9jfs.roa
Signing time: Tue 18 Jul 2023 07:06:51 +0000
ROA not before: Tue 18 Jul 2023 07:06:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206150
IP address blocks: 217.114.39.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:67:d2:bc:45:28:ce:4f:a4:93:e3:f7:75:b5:7d:91:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07f5ccf6abd7582cc51940a76f99505633982bb4
Validity
Not Before: Jul 18 07:06:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d6bcad9cba8e72aa2c1041a372abeed8c9bd8dfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:95:c2:43:3f:6d:23:0f:2d:a4:e3:66:61:89:
35:f7:1d:50:9c:c8:0b:95:24:24:df:dc:c8:f9:89:
d4:c5:36:77:92:61:12:5a:37:3f:57:70:bd:ac:05:
3c:d3:63:90:c7:a6:f6:96:a3:53:50:fb:8e:46:33:
15:a8:4c:28:f0:f1:c0:02:37:ec:12:2f:3c:bb:1c:
b8:45:20:76:b0:59:c6:6d:b3:bb:2f:a7:6d:1c:25:
9c:ce:e8:65:53:59:84:60:10:ab:c0:34:c6:35:ea:
70:d2:bd:aa:1d:1d:c0:a4:5f:8a:0a:58:12:58:5c:
61:51:ac:9b:d7:3a:70:85:24:56:d9:a4:91:24:dd:
69:be:7c:4c:d9:8e:8c:62:d2:18:db:41:b8:38:86:
13:96:52:28:d5:a1:ce:24:d4:36:9b:43:0d:74:7b:
2b:86:9f:9e:57:3c:b1:3f:98:8a:bc:ec:fd:46:98:
a5:b2:8b:99:93:db:19:c6:a1:56:1f:02:38:b7:78:
16:bd:c4:81:08:30:b1:da:4b:1e:38:38:47:36:54:
8d:37:44:b7:ca:22:ce:2e:3f:25:3c:1a:67:7f:40:
ab:25:13:db:ee:41:3c:76:1f:b6:f7:bd:be:f9:f6:
1a:38:fe:bb:22:9f:3e:aa:cb:cf:d0:c9:ff:3f:d2:
90:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:BC:AD:9C:BA:8E:72:AA:2C:10:41:A3:72:AB:EE:D8:C9:BD:8D:FB
X509v3 Authority Key Identifier:
keyid:07:F5:CC:F6:AB:D7:58:2C:C5:19:40:A7:6F:99:50:56:33:98:2B:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_XM9qvXWCzFGUCnb5lQVjOYK7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/cd63ea-faa9-404e-9f57-0dae0d653e38/1/1rytnLqOcqosEEGjcqvu2Mm9jfs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/cd63ea-faa9-404e-9f57-0dae0d653e38/1/B_XM9qvXWCzFGUCnb5lQVjOYK7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.114.39.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:9c:35:9c:06:80:33:0e:d8:44:bd:1f:ca:c2:0f:8f:45:da:
9b:f5:b5:43:7e:c1:49:4e:6f:64:7c:ed:7c:75:1a:e2:e3:e4:
b4:60:bb:97:d3:2b:e2:84:f2:0f:22:ce:54:99:88:e8:86:a0:
9c:32:3f:d4:b9:69:4c:7b:06:f9:47:c5:45:32:ff:98:2e:6e:
51:04:b0:9a:96:f7:ac:e0:e3:91:da:30:8b:2d:c3:ac:b5:c0:
ce:9f:0f:f7:00:0a:a3:75:29:f8:ce:78:27:85:21:56:c0:e4:
44:81:c8:15:dd:77:69:7a:65:a0:6f:b6:5b:89:3c:2a:28:bf:
d1:b9:75:59:e4:ea:ee:2d:46:c6:4f:a8:0e:9b:25:e6:37:c6:
44:83:42:93:01:26:aa:52:4d:97:e3:2c:39:0a:7f:35:bf:96:
3b:9e:1c:1d:04:64:fd:96:c8:93:9b:72:bc:1e:9c:fe:10:1f:
3b:88:53:9d:0a:99:f4:9f:fb:00:11:c5:c7:49:e9:64:39:aa:
d6:50:cd:07:4c:04:c6:7c:0e:52:e6:d5:fb:ee:0f:bb:13:b9:
ff:c9:10:ea:4e:a2:0f:eb:3b:85:59:05:c9:b2:32:13:28:80:
73:f0:1c:08:1f:87:3d:56:d7:65:0c:06:45:45:7f:26:53:2b:
77:b9:84:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 30 14:14:24 2023 by rpki-client on console-ams.rpki-client.org