Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/b8070d-b598-4440-b424-1162f027218f/1/gJ4vYFVxoUpemXvpPFZQ4FIpp7U.roa
File: gJ4vYFVxoUpemXvpPFZQ4FIpp7U.roa (raw, json)
Hash identifier: ppC9Q4hCaI/dyCgl344HVJvVdGnzhlwVb7rXe8/Zwpo=
Subject key identifier: 80:9E:2F:60:55:71:A1:4A:5E:99:7B:E9:3C:56:50:E0:52:29:A7:B5
Certificate issuer: /CN=23accae620e9e49f1ab69a1e6979c288bc0136ba
Certificate serial: 01857094E9938EF3C66A2633731774455971
Authority key identifier: 23:AC:CA:E6:20:E9:E4:9F:1A:B6:9A:1E:69:79:C2:88:BC:01:36:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I6zK5iDp5J8atpoeaXnCiLwBNro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/b8070d-b598-4440-b424-1162f027218f/1/gJ4vYFVxoUpemXvpPFZQ4FIpp7U.roa
Signing time: Mon 02 Jan 2023 03:44:45 +0000
ROA not before: Mon 02 Jan 2023 03:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41626
IP address blocks: 86.111.230.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:94:e9:93:8e:f3:c6:6a:26:33:73:17:74:45:59:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23accae620e9e49f1ab69a1e6979c288bc0136ba
Validity
Not Before: Jan 2 03:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=809e2f605571a14a5e997be93c5650e05229a7b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:5d:90:e0:47:a9:07:14:41:33:bf:41:1f:5e:
23:66:ee:19:a4:a5:1c:8c:f7:40:48:5b:a7:73:c3:
b4:fd:a2:6e:c9:f2:ed:0d:d8:12:1e:a7:6f:fe:7f:
16:3e:01:da:7a:1b:6a:d4:c9:f8:ed:79:67:5a:7d:
98:d1:08:ef:79:d8:de:2e:2c:c2:55:e5:02:6e:d2:
e8:5c:5e:5f:82:0f:23:3b:e5:88:ad:6e:a9:13:9d:
66:3d:e9:36:dc:f9:4f:55:71:d9:2b:7c:d0:8c:19:
08:d8:c4:01:b5:bb:fb:ea:5d:41:2f:3a:e1:a4:05:
a4:21:67:d1:ef:3a:5f:cf:87:66:a3:cd:e3:8d:e2:
28:54:28:e4:03:5d:d7:12:05:c3:39:f7:45:28:b4:
9b:52:40:40:cf:09:a0:57:4c:88:28:44:e0:c3:15:
21:61:93:c5:7a:f3:45:8e:91:f0:c5:61:2d:04:6d:
9e:42:a9:02:66:83:33:32:71:4d:e2:81:3d:18:fc:
ec:3f:b2:be:b2:3f:01:27:9c:70:35:20:08:e4:87:
4d:dd:e1:44:1b:90:01:49:05:ac:71:e1:b5:8d:11:
f6:ec:03:62:54:2e:b4:6b:fa:8b:d0:1e:39:db:7b:
c4:19:95:02:93:13:4c:13:4b:67:b5:45:a9:44:d9:
04:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:9E:2F:60:55:71:A1:4A:5E:99:7B:E9:3C:56:50:E0:52:29:A7:B5
X509v3 Authority Key Identifier:
keyid:23:AC:CA:E6:20:E9:E4:9F:1A:B6:9A:1E:69:79:C2:88:BC:01:36:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I6zK5iDp5J8atpoeaXnCiLwBNro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/b8070d-b598-4440-b424-1162f027218f/1/gJ4vYFVxoUpemXvpPFZQ4FIpp7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/b8070d-b598-4440-b424-1162f027218f/1/I6zK5iDp5J8atpoeaXnCiLwBNro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.111.230.0/23
Signature Algorithm: sha256WithRSAEncryption
a4:0d:b6:1e:ae:f0:7d:59:2d:2d:fc:31:47:18:45:da:bd:12:
26:b8:87:41:8c:99:cf:71:19:65:a4:ff:3b:bd:ba:d2:d9:f3:
be:fa:43:af:97:2c:52:fe:b3:a5:f6:3a:63:b1:60:fd:77:bd:
b3:43:63:5a:07:23:88:81:58:f3:b3:b1:d1:8f:ad:8f:fb:c9:
6a:ee:06:7e:a3:cf:cd:a3:d9:1a:2c:b4:8e:6d:ff:fe:6d:69:
42:79:c2:79:10:b9:b7:7a:d7:08:7c:2f:77:5f:2d:13:d2:d7:
11:52:ba:f2:52:dc:47:bb:b1:a1:23:78:14:c3:83:00:20:db:
a6:6e:5b:10:3f:d7:57:28:24:86:90:74:d6:d5:93:26:2d:1f:
2d:52:8c:fc:f2:23:b8:54:66:93:fe:a7:ba:90:ff:51:0e:ca:
3f:25:fe:b4:26:a5:87:6b:4e:6a:e3:eb:ff:fb:23:58:13:9a:
35:88:80:f6:14:8b:1c:46:e2:09:00:4f:2a:20:4d:34:09:1d:
91:ea:2d:4d:1c:8f:6f:c6:fc:4f:af:a5:97:e0:35:25:f5:24:
ca:42:1c:e2:5f:13:10:17:0c:b1:49:1d:b6:32:07:94:8d:ee:
50:74:40:24:e7:4f:d1:f8:c8:6e:99:b3:56:40:f6:55:32:97:
4b:57:54:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:28 2024 by rpki-client on console-ams.rpki-client.org