Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/a5ddfb-db21-4aa0-9202-f12d27b6ee78/1/nCgs5HAIl2Q5akR6fJXiuVNvg5Q.roa
File: nCgs5HAIl2Q5akR6fJXiuVNvg5Q.roa (raw, json)
Hash identifier: FBGl+GZZR5ecYdN0fM9ryI/vU0+ggdooZCvhrk/7wgk=
Subject key identifier: 9C:28:2C:E4:70:08:97:64:39:6A:44:7A:7C:95:E2:B9:53:6F:83:94
Certificate issuer: /CN=9989ddf489ba45c98e28917018b565dac1b2ec2c
Certificate serial: 018571D7A404EBF4578305272684F8573865
Authority key identifier: 99:89:DD:F4:89:BA:45:C9:8E:28:91:70:18:B5:65:DA:C1:B2:EC:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mYnd9Im6RcmOKJFwGLVl2sGy7Cw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/a5ddfb-db21-4aa0-9202-f12d27b6ee78/1/nCgs5HAIl2Q5akR6fJXiuVNvg5Q.roa
Signing time: Mon 02 Jan 2023 09:37:15 +0000
ROA not before: Mon 02 Jan 2023 09:37:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52000
IP address blocks: 46.253.131.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:a4:04:eb:f4:57:83:05:27:26:84:f8:57:38:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9989ddf489ba45c98e28917018b565dac1b2ec2c
Validity
Not Before: Jan 2 09:37:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c282ce470089764396a447a7c95e2b9536f8394
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8d:6a:a7:95:94:83:74:2f:28:bf:e8:71:f6:
0e:5a:97:c0:2c:45:01:91:c0:85:0b:b7:d5:77:06:
17:eb:6f:80:4a:7e:83:d6:ee:5d:8c:ee:56:91:39:
79:bc:44:75:25:a9:52:e0:c3:21:b9:ee:f0:3f:a1:
f8:87:0d:15:80:f5:8d:50:52:06:8d:52:77:b7:e8:
90:cf:02:82:62:68:a5:c2:a3:ad:c6:78:d1:47:fe:
02:ad:27:38:8f:aa:25:b5:86:07:b1:0d:e4:91:0d:
8a:45:52:94:50:cc:f9:6c:26:ef:d2:6a:03:18:b0:
5a:b4:bd:49:77:40:b7:38:ea:65:45:5d:99:1b:bf:
59:31:4b:63:4f:50:ea:5b:97:e3:10:ed:77:5a:e4:
57:83:a4:ed:c2:15:18:96:1f:d1:3f:40:48:ed:08:
44:2a:7d:c8:24:f3:4f:38:bd:86:b7:e6:16:9e:65:
92:4b:a6:91:ff:cb:eb:21:a0:1d:40:a3:32:34:0a:
23:6c:c0:2d:53:67:c6:34:83:3b:4b:a0:c0:d5:a5:
27:01:68:99:46:40:ca:8c:8b:eb:7b:6d:1a:a1:47:
e3:b1:41:b8:02:ce:40:9d:5d:b4:a7:28:04:ba:68:
59:e5:b0:a9:ba:e1:9a:b6:a5:c6:33:ff:a0:fc:0a:
6e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:28:2C:E4:70:08:97:64:39:6A:44:7A:7C:95:E2:B9:53:6F:83:94
X509v3 Authority Key Identifier:
keyid:99:89:DD:F4:89:BA:45:C9:8E:28:91:70:18:B5:65:DA:C1:B2:EC:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mYnd9Im6RcmOKJFwGLVl2sGy7Cw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/a5ddfb-db21-4aa0-9202-f12d27b6ee78/1/nCgs5HAIl2Q5akR6fJXiuVNvg5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/a5ddfb-db21-4aa0-9202-f12d27b6ee78/1/mYnd9Im6RcmOKJFwGLVl2sGy7Cw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.253.131.0/24
Signature Algorithm: sha256WithRSAEncryption
44:01:c1:cf:bf:d9:6d:16:a7:94:27:5a:34:ed:e7:e8:51:70:
6e:c9:f8:44:a1:25:ca:48:20:60:5f:29:0e:a2:70:22:41:8c:
f7:5e:38:8a:83:be:d8:c1:e0:73:f2:9e:3d:b0:e0:04:1a:6e:
23:5d:13:10:1f:c4:eb:16:30:d2:b5:9f:d3:9d:bf:0f:04:12:
02:38:a4:50:b6:4d:5a:99:4b:a6:23:e8:89:98:ae:2b:cd:58:
03:8b:36:d5:0e:46:41:4c:24:b0:5d:4f:17:b7:db:2c:38:fe:
52:08:8e:93:8e:eb:47:5d:13:2f:62:8a:5a:4f:a0:25:f3:22:
9c:91:ae:a8:8c:eb:08:b8:09:14:a8:d7:8e:18:8d:9e:ca:42:
e1:35:3e:81:fe:6a:0d:e4:2c:4d:53:ef:ef:51:98:80:0a:99:
0b:db:ae:1b:12:53:dc:d7:04:56:59:c8:de:0e:8e:25:81:1e:
3a:69:ea:76:64:25:d0:56:0f:07:da:7f:2b:02:da:25:5c:64:
8b:d8:4d:ff:0b:09:4d:d6:97:d1:10:fc:9b:67:a5:76:f1:6e:
0a:98:2e:00:fd:3e:bf:e5:f1:3b:00:fe:42:0b:1a:a2:bf:3d:
e4:be:1a:a9:91:44:fd:f5:23:c0:f7:36:32:84:c7:07:db:e1:
d9:0b:b9:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:14 2024 by rpki-client on console-fra.rpki-client.org