Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/8e516a-f205-4869-ad74-abc76df32d29/1/39BehM3h_voLt7p1bhwvnYaXdXc.roa
File: 39BehM3h_voLt7p1bhwvnYaXdXc.roa (raw, json)
Hash identifier: y0+Uc0/SWDoXsNn8U8tAqP29tweW6CALsqKejKHFrao=
Subject key identifier: DF:D0:5E:84:CD:E1:FE:FA:0B:B7:BA:75:6E:1C:2F:9D:86:97:75:77
Certificate issuer: /CN=9ed40182815a34979fbc68e30c4008bf99b421bf
Certificate serial: 01882086742716192865D47EE2CC37F53FD3
Authority key identifier: 9E:D4:01:82:81:5A:34:97:9F:BC:68:E3:0C:40:08:BF:99:B4:21:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ntQBgoFaNJefvGjjDEAIv5m0Ib8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/8e516a-f205-4869-ad74-abc76df32d29/1/39BehM3h_voLt7p1bhwvnYaXdXc.roa
Signing time: Mon 15 May 2023 17:47:42 +0000
ROA not before: Mon 15 May 2023 17:47:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7393
IP address blocks: 109.205.186.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:20:86:74:27:16:19:28:65:d4:7e:e2:cc:37:f5:3f:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ed40182815a34979fbc68e30c4008bf99b421bf
Validity
Not Before: May 15 17:47:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dfd05e84cde1fefa0bb7ba756e1c2f9d86977577
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:51:8e:18:9e:ca:fc:35:a0:df:e4:7d:8a:e9:
5f:7c:12:ab:ec:12:95:d6:9d:b1:ae:df:7b:06:c2:
f0:31:b5:e3:8e:e2:0e:49:61:8c:f2:25:20:f5:0d:
4d:51:be:da:1d:b4:f4:44:b9:cd:68:26:ea:92:f5:
2b:28:f3:41:65:bb:61:91:8e:bd:46:22:cb:7a:3c:
2c:a4:60:64:31:ab:2e:f3:da:0a:7c:35:40:7d:29:
45:3b:e2:e8:19:c0:26:f7:74:ab:99:d8:63:c4:94:
c7:ad:8d:62:1b:cb:76:0e:30:16:ed:82:91:af:98:
b9:f4:85:68:17:31:5b:92:2e:89:d2:fd:34:ff:63:
0d:7d:57:b8:20:8a:0b:bb:a3:73:44:96:80:e8:24:
5c:a3:f9:e2:67:17:17:3c:c6:22:5c:80:0d:3d:20:
30:7b:a2:4c:5b:a1:fa:62:f7:43:fc:e9:1a:b9:47:
e6:0b:13:cc:eb:b0:f1:51:79:47:6a:7a:80:2d:72:
25:1d:ea:0a:7b:ca:be:78:c4:82:2c:61:6b:8c:ce:
ec:bd:e7:81:95:ab:76:a8:93:4e:d8:1d:43:78:44:
97:5a:cc:b6:63:fc:6a:1c:ee:ed:9b:6e:04:08:40:
e4:01:1b:a0:b0:9b:e6:b1:ae:1c:27:6e:cc:ec:b2:
83:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:D0:5E:84:CD:E1:FE:FA:0B:B7:BA:75:6E:1C:2F:9D:86:97:75:77
X509v3 Authority Key Identifier:
keyid:9E:D4:01:82:81:5A:34:97:9F:BC:68:E3:0C:40:08:BF:99:B4:21:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ntQBgoFaNJefvGjjDEAIv5m0Ib8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/8e516a-f205-4869-ad74-abc76df32d29/1/39BehM3h_voLt7p1bhwvnYaXdXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/8e516a-f205-4869-ad74-abc76df32d29/1/ntQBgoFaNJefvGjjDEAIv5m0Ib8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.186.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:33:66:49:41:94:1f:ac:0b:4b:0d:97:a2:e8:2d:07:0c:da:
06:28:ea:38:da:da:9f:bb:25:dd:3d:51:20:8e:83:fb:6e:4a:
29:d8:1b:55:30:2e:2c:8d:b9:a7:be:33:50:d6:e4:9c:99:aa:
22:db:25:8b:a2:83:90:11:52:9a:50:c5:b4:dd:f5:0d:09:63:
e5:5b:d1:9d:5c:a3:62:fe:09:28:6b:24:c3:8e:13:22:cb:d0:
11:9e:d3:74:fb:7d:34:e9:31:4a:18:eb:02:be:a4:b1:61:c4:
02:14:24:d7:30:7c:3c:e5:6b:49:54:16:81:ed:d0:a1:0a:ff:
ab:15:10:47:58:2b:0c:25:0d:c5:05:f2:9f:06:aa:29:5b:79:
d5:50:1a:67:cf:52:80:06:6d:93:b3:16:8b:33:9b:a5:b0:29:
49:5f:fc:a7:e8:c9:b7:ed:6f:2a:23:a3:aa:8f:59:02:17:57:
b5:d2:76:0c:c5:3d:3a:92:b9:c4:e9:44:12:40:bb:e6:09:d5:
18:49:b9:f2:a4:2d:45:c7:79:25:f4:f0:29:30:82:49:e4:30:
87:21:cd:a8:ef:98:a0:c6:0c:66:ec:52:cb:86:1a:f2:71:c4:
6b:da:13:62:fe:92:1f:49:e8:59:29:51:78:28:19:5a:47:af:
fb:da:35:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:12 2024 by rpki-client on console-ams.rpki-client.org