Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/b8932a-0879-4751-988c-6ee3f5007eab/1/BnUbjyRBmpT3--YyQmNewH-Nt8g.roa
File: BnUbjyRBmpT3--YyQmNewH-Nt8g.roa (raw, json)
Hash identifier: KoKK8XZPjKnlCchwWgiXke5YcWxR3GgcSMvaNVFy/JI=
Subject key identifier: 06:75:1B:8F:24:41:9A:94:F7:FB:E6:32:42:63:5E:C0:7F:8D:B7:C8
Certificate issuer: /CN=9eb5e717cef9f6644cd8849b8a18d41dc74f408a
Certificate serial: 35219AE3
Authority key identifier: 9E:B5:E7:17:CE:F9:F6:64:4C:D8:84:9B:8A:18:D4:1D:C7:4F:40:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nrXnF8759mRM2ISbihjUHcdPQIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/b8932a-0879-4751-988c-6ee3f5007eab/1/BnUbjyRBmpT3--YyQmNewH-Nt8g.roa
Signing time: Sat 01 Jan 2022 01:57:08 +0000
ROA not before: Sat 01 Jan 2022 01:57:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199485
IP address blocks: 82.196.27.0/24 maxlen: 24
88.212.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 891394787 (0x35219ae3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9eb5e717cef9f6644cd8849b8a18d41dc74f408a
Validity
Not Before: Jan 1 01:57:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06751b8f24419a94f7fbe63242635ec07f8db7c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:9c:38:fa:4f:26:92:59:9e:74:74:5f:61:70:
7a:f4:5c:1d:39:fa:ed:eb:33:f9:1e:d2:67:c7:87:
df:8f:df:1a:63:2c:53:74:dc:57:7f:ce:ec:96:34:
b8:b9:08:4c:e6:7c:91:df:eb:cc:20:a4:41:d7:5d:
56:1b:bb:b0:1d:2b:7b:f9:5f:9c:26:dd:3f:b2:79:
46:a1:05:93:9a:13:4a:52:f0:ca:a7:ce:f9:64:8f:
70:0e:da:51:8d:f8:13:4a:ea:4d:58:fb:0d:98:02:
5c:c3:6a:65:07:2a:0f:c1:8f:0e:03:cc:0c:4a:82:
e7:0f:3b:ec:76:60:3c:d1:fb:d1:4b:34:73:fe:a1:
cf:f3:2f:36:85:ef:84:56:f3:48:f3:2c:40:21:45:
24:0f:7c:66:db:77:7b:76:e6:23:e6:ba:0e:93:c4:
00:4f:f4:11:e4:0c:50:41:f7:e5:41:9b:fc:02:5a:
c0:42:82:2c:5e:9f:9e:4f:28:84:0e:42:ca:45:ee:
e4:1f:8e:01:0b:01:c4:9e:f8:be:3d:19:b2:39:8d:
ee:44:8c:a2:4d:2c:39:e9:41:b3:1e:86:85:7d:3b:
3e:52:ab:b0:8f:d7:34:3b:b4:51:58:b8:1d:86:2c:
bc:71:ce:f2:cf:f9:b2:fa:67:26:02:a4:e4:38:a7:
3f:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:75:1B:8F:24:41:9A:94:F7:FB:E6:32:42:63:5E:C0:7F:8D:B7:C8
X509v3 Authority Key Identifier:
keyid:9E:B5:E7:17:CE:F9:F6:64:4C:D8:84:9B:8A:18:D4:1D:C7:4F:40:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nrXnF8759mRM2ISbihjUHcdPQIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b8932a-0879-4751-988c-6ee3f5007eab/1/BnUbjyRBmpT3--YyQmNewH-Nt8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b8932a-0879-4751-988c-6ee3f5007eab/1/nrXnF8759mRM2ISbihjUHcdPQIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.196.27.0/24
88.212.144.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:7e:6e:99:b1:2d:b3:2b:c1:1d:2b:2b:b7:f7:df:95:f1:35:
f9:95:02:ca:09:d6:97:0c:2b:98:e9:83:7e:4b:db:a7:50:6c:
d0:e1:ab:0f:72:fd:e0:8d:62:00:a2:de:7a:28:18:be:3f:a8:
ae:3a:73:e4:14:80:81:a9:99:f0:a5:75:14:c5:87:17:ac:2b:
19:71:2a:e1:0f:bf:84:68:ab:2d:65:90:e7:08:50:26:9d:a1:
f8:3d:36:b6:9c:d1:90:09:6d:ac:2a:25:d4:f8:c7:c8:97:bb:
03:fa:a7:39:0b:fc:4f:7d:91:e8:00:d5:f9:0f:06:e1:25:3e:
2d:a1:cc:48:3e:75:6d:aa:36:f3:31:0d:ab:d3:52:a7:8c:8f:
66:57:62:a1:c6:fe:1c:37:a1:da:b6:93:da:5e:8b:0d:dc:bb:
5e:36:0a:95:f9:60:7b:82:6f:31:e7:2e:5d:5e:2c:23:de:f1:
16:32:75:4e:2a:54:21:e1:b2:5b:d0:2f:cd:4b:2e:b3:08:6a:
e7:d1:11:8a:4e:97:76:27:9e:b4:aa:79:1e:72:c0:d8:72:ff:
79:c7:76:63:ff:0f:a3:e4:b1:26:db:67:bd:47:7c:04:b3:40:
78:69:20:d7:18:ec:a6:a3:f9:42:2f:f5:80:a3:b9:fa:e2:d8:
c8:e6:df:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:38 2024 by rpki-client on console-ams.rpki-client.org