Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/b8aef7-5be9-4db0-bffc-f467d5a0bafa/1/8UIMUGXxpzqJPbBlDSi5O07hpUk.roa
File: 8UIMUGXxpzqJPbBlDSi5O07hpUk.roa (raw, json)
Hash identifier: CjK7IFrJNcgjlx6o5AVhgdtAU8chao8d8hAn6oSz3p4=
Subject key identifier: F1:42:0C:50:65:F1:A7:3A:89:3D:B0:65:0D:28:B9:3B:4E:E1:A5:49
Certificate issuer: /CN=986b772dc18934e51f27b52cbe65b3241261bf65
Certificate serial: 83706E
Authority key identifier: 98:6B:77:2D:C1:89:34:E5:1F:27:B5:2C:BE:65:B3:24:12:61:BF:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mGt3LcGJNOUfJ7UsvmWzJBJhv2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/b8aef7-5be9-4db0-bffc-f467d5a0bafa/1/8UIMUGXxpzqJPbBlDSi5O07hpUk.roa
Signing time: Sat 01 Jan 2022 03:54:47 +0000
ROA not before: Sat 01 Jan 2022 03:54:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 195.96.131.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8613998 (0x83706e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=986b772dc18934e51f27b52cbe65b3241261bf65
Validity
Not Before: Jan 1 03:54:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f1420c5065f1a73a893db0650d28b93b4ee1a549
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:49:1e:06:96:c9:8f:5e:e5:2a:b8:8e:18:64:
a6:b8:89:a4:f9:95:ef:8c:ff:d2:22:60:a9:82:f1:
32:29:dd:96:79:b8:42:5e:4b:a6:62:cd:36:ba:48:
13:99:9d:27:d8:52:0a:4a:be:db:9d:7d:6f:a3:bb:
45:ea:0e:95:85:67:84:30:e4:12:79:18:8e:5e:a6:
b7:37:6e:7a:90:8c:64:d9:aa:63:c6:0d:c1:ba:9f:
3b:44:17:c1:e3:b7:4e:29:f6:27:4f:35:d0:f8:22:
b3:92:3d:f9:8d:ff:94:9a:8d:95:5f:da:38:f5:22:
b5:b3:a5:38:1b:bb:fd:4f:03:26:db:e2:c2:21:1e:
2d:25:af:18:75:b4:97:b4:24:2d:a2:9e:ed:20:4c:
d8:86:9a:4b:48:dc:2a:e6:c9:4d:6c:71:8e:03:0f:
1a:da:f8:1d:d9:67:24:ec:c0:98:fd:68:05:40:a7:
fe:8d:89:5b:7b:8a:da:01:de:1d:a0:7c:a7:a1:fd:
fd:97:65:81:6f:3e:12:1b:d4:14:19:73:10:75:50:
98:ed:7c:70:30:c5:3d:89:cf:a0:59:c5:13:64:12:
9a:fe:44:7d:b4:aa:56:93:94:51:10:88:67:de:9f:
b6:7e:52:29:16:4b:4d:5b:29:4b:93:22:f5:56:cb:
32:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:42:0C:50:65:F1:A7:3A:89:3D:B0:65:0D:28:B9:3B:4E:E1:A5:49
X509v3 Authority Key Identifier:
keyid:98:6B:77:2D:C1:89:34:E5:1F:27:B5:2C:BE:65:B3:24:12:61:BF:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mGt3LcGJNOUfJ7UsvmWzJBJhv2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/b8aef7-5be9-4db0-bffc-f467d5a0bafa/1/8UIMUGXxpzqJPbBlDSi5O07hpUk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/b8aef7-5be9-4db0-bffc-f467d5a0bafa/1/mGt3LcGJNOUfJ7UsvmWzJBJhv2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.131.0/24
Signature Algorithm: sha256WithRSAEncryption
58:6b:c0:2f:7c:a4:6e:80:d9:c9:d2:f1:93:2b:7f:f7:05:e1:
4c:21:48:65:e8:30:e6:4f:42:bf:77:25:30:b3:d1:54:33:14:
b9:c7:73:62:e4:4d:b8:bd:9b:e0:65:46:04:0a:93:1c:d5:d1:
ab:4f:fa:69:51:51:c3:66:bc:c2:8d:1a:58:4f:65:a6:05:7c:
16:d1:a0:fa:c6:cf:53:85:db:5c:fb:bb:75:6e:70:84:8c:06:
b8:05:6a:cb:d3:b1:61:cc:e0:70:36:9e:0e:48:a6:75:ea:15:
cb:6e:87:a1:ba:b5:04:80:59:5c:07:50:28:3d:88:fa:5e:97:
90:af:48:5d:e6:d4:13:e2:4a:b4:25:5a:49:6f:7c:81:17:68:
36:6b:5e:a1:24:3f:11:3f:e1:24:74:88:c7:c3:7a:14:a8:a8:
fb:47:f5:bf:ae:dd:d3:0c:ce:46:56:6d:f4:df:9c:fb:67:40:
18:6c:f9:0e:4e:b4:2b:81:ee:07:00:f1:d9:d4:e6:a9:6f:2f:
08:74:25:9f:98:b8:94:7f:e8:51:fe:d7:09:84:db:03:bf:be:
d0:b7:5b:4a:05:d8:3d:54:a8:3a:c1:70:cf:dd:c5:f6:ff:1e:
d1:9b:5a:fd:34:d2:e5:e6:b5:89:a0:05:e9:50:79:0c:ef:1c:
26:df:16:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:48 2024 by rpki-client on console-fra.rpki-client.org