Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/ff4d36-6885-44ff-a052-2fb03f67bc44/1/cfvAaLGoPqn85B5Q800V8-MdzTQ.roa
File: cfvAaLGoPqn85B5Q800V8-MdzTQ.roa (raw, json)
Hash identifier: tBI4twtm7HxiqMbSIs3PA4QoRv0snSkOx84/oIVcOS4=
Subject key identifier: 71:FB:C0:68:B1:A8:3E:A9:FC:E4:1E:50:F3:4D:15:F3:E3:1D:CD:34
Certificate issuer: /CN=e9fd155b08ee1a0df3ca418575ea3af901a82853
Certificate serial: 018998B3CB03E729DACCD98DBAD308DE76AE
Authority key identifier: E9:FD:15:5B:08:EE:1A:0D:F3:CA:41:85:75:EA:3A:F9:01:A8:28:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6f0VWwjuGg3zykGFdeo6-QGoKFM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/ff4d36-6885-44ff-a052-2fb03f67bc44/1/cfvAaLGoPqn85B5Q800V8-MdzTQ.roa
Signing time: Thu 27 Jul 2023 18:54:26 +0000
ROA not before: Thu 27 Jul 2023 18:54:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42708
IP address blocks: 195.191.145.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:98:b3:cb:03:e7:29:da:cc:d9:8d:ba:d3:08:de:76:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9fd155b08ee1a0df3ca418575ea3af901a82853
Validity
Not Before: Jul 27 18:54:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=71fbc068b1a83ea9fce41e50f34d15f3e31dcd34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d1:9f:62:1e:51:8b:08:04:3e:86:25:de:29:
fc:db:db:e6:61:2a:19:aa:d8:44:dc:9e:8e:37:0e:
c0:ca:29:68:ee:ac:89:61:cd:ef:2a:39:1d:56:c5:
42:d5:c3:e2:37:03:12:f0:75:81:15:4b:45:3b:fb:
b2:58:0f:4d:44:34:8e:64:c0:6a:58:33:e6:2f:36:
f9:51:af:72:7e:8b:be:1c:27:56:fb:3f:92:b1:cf:
95:32:38:0b:f0:a0:2c:4f:ca:57:4c:02:2d:93:6e:
14:f9:af:9a:cf:71:66:47:5a:ce:ba:28:24:c3:c9:
0a:d5:9d:b4:80:e7:43:51:aa:68:fd:92:2e:78:f2:
49:d0:70:05:c3:55:f3:a5:5f:1b:5d:28:70:7c:c8:
be:f5:a9:d8:72:05:22:10:89:2f:16:3b:4f:57:0a:
e7:16:b4:7f:68:37:d5:ee:ca:ab:03:f8:d9:a7:dd:
13:a1:c1:e3:16:84:59:92:c0:03:42:fd:db:0e:d1:
2d:dd:bb:28:2a:a3:56:11:2e:26:eb:c0:67:36:0b:
76:37:4c:8d:8c:cd:25:a4:bc:9d:9f:6b:5b:66:56:
0d:83:5e:f3:71:1b:d8:51:ce:5b:a3:c3:dc:bd:7b:
c4:fe:0d:86:35:ff:da:a9:4b:69:49:aa:d5:a4:37:
58:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:FB:C0:68:B1:A8:3E:A9:FC:E4:1E:50:F3:4D:15:F3:E3:1D:CD:34
X509v3 Authority Key Identifier:
keyid:E9:FD:15:5B:08:EE:1A:0D:F3:CA:41:85:75:EA:3A:F9:01:A8:28:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f0VWwjuGg3zykGFdeo6-QGoKFM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/ff4d36-6885-44ff-a052-2fb03f67bc44/1/cfvAaLGoPqn85B5Q800V8-MdzTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/ff4d36-6885-44ff-a052-2fb03f67bc44/1/6f0VWwjuGg3zykGFdeo6-QGoKFM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.191.145.0/24
Signature Algorithm: sha256WithRSAEncryption
56:da:b4:6d:61:e2:4f:d3:d6:33:4a:ec:bf:a8:5b:8e:33:e2:
39:12:83:01:60:74:29:b1:30:11:f1:e7:de:81:ae:7b:ce:c2:
ed:91:9f:e2:24:0c:17:a6:1d:dc:70:a7:08:3b:af:84:1d:77:
a9:14:24:a0:fd:e6:59:07:98:23:26:ad:51:12:3e:82:cf:76:
08:c6:c2:4f:bd:92:96:bb:53:5c:17:2d:ae:a4:98:72:63:dc:
ea:60:62:e4:83:f6:e8:da:32:4a:15:34:c9:04:a9:b7:64:2a:
39:44:2c:1a:60:c1:29:5e:8d:c3:72:53:60:c8:4f:8d:64:d0:
a4:e8:f4:c6:2e:ab:1f:1f:60:2d:fe:75:da:c1:7e:df:6f:8a:
60:89:bc:d8:8c:9c:40:b2:f4:67:07:71:e3:f1:ac:03:a1:94:
20:ce:a2:40:10:39:b8:28:d4:41:21:5b:7e:34:26:00:6e:9a:
35:a8:17:4b:9e:ba:01:13:cd:ca:95:42:fb:0a:93:2a:53:e0:
cb:e5:d1:1b:3a:61:b0:63:27:6c:a6:b3:6c:14:7f:c0:6d:ad:
86:2e:89:d3:4f:c8:70:16:61:74:68:a7:83:f7:be:75:fa:2e:
44:7d:33:bc:b5:94:6d:31:5a:b0:04:b4:56:0e:07:4f:bf:dd:
db:6b:e2:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 20 09:36:40 2023 by rpki-client on console-ams.rpki-client.org