Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/b8932a-0879-4751-988c-6ee3f5007eab/1/rAqBc_uFr8-5S_sXATy_RuNg9RQ.roa
File: rAqBc_uFr8-5S_sXATy_RuNg9RQ.roa (raw, json)
Hash identifier: dDdThfl9R3pV/w6hAi6xQ9dBh/V1viD/WPvvbDk1SXI=
Subject key identifier: AC:0A:81:73:FB:85:AF:CF:B9:4B:FB:17:01:3C:BF:46:E3:60:F5:14
Certificate issuer: /CN=9eb5e717cef9f6644cd8849b8a18d41dc74f408a
Certificate serial: 35213F6F
Authority key identifier: 9E:B5:E7:17:CE:F9:F6:64:4C:D8:84:9B:8A:18:D4:1D:C7:4F:40:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nrXnF8759mRM2ISbihjUHcdPQIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/b8932a-0879-4751-988c-6ee3f5007eab/1/rAqBc_uFr8-5S_sXATy_RuNg9RQ.roa
Signing time: Sat 01 Jan 2022 01:57:07 +0000
ROA not before: Sat 01 Jan 2022 01:57:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41765
IP address blocks: 31.172.164.0/22 maxlen: 22
185.4.63.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 891371375 (0x35213f6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9eb5e717cef9f6644cd8849b8a18d41dc74f408a
Validity
Not Before: Jan 1 01:57:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac0a8173fb85afcfb94bfb17013cbf46e360f514
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:dd:33:7e:19:9d:19:6c:8c:da:bb:64:ca:61:
b0:23:f4:0b:5e:c9:29:09:9f:fe:87:bd:8c:2f:e7:
b2:d6:fc:05:47:a0:85:e5:3d:ad:5b:54:78:41:62:
d8:d6:d6:f8:80:61:68:d0:48:bb:ef:e8:db:fc:d6:
2b:13:30:18:62:19:55:ad:41:23:8e:d7:a2:e3:a2:
85:40:19:b7:37:50:32:84:d3:3f:d7:5e:dc:14:7f:
f8:95:ac:6a:7c:a2:f7:bf:75:b1:aa:ef:06:b1:94:
6d:13:ca:3f:e0:10:bc:ac:ad:2a:b4:67:7d:3d:cf:
43:77:dd:e8:6c:a8:91:54:b6:31:ce:ec:67:8b:93:
86:cb:d4:27:eb:75:b3:2d:8b:90:4a:a4:67:be:f1:
68:bd:e5:17:16:31:88:e4:49:9c:1c:0e:e9:33:48:
87:76:f1:53:6c:91:90:eb:01:3d:40:01:c2:d1:61:
dd:89:c5:84:c0:1f:8d:cb:f8:71:a1:82:fd:1a:a7:
bb:d6:9b:b3:cb:91:d8:b0:fc:18:bc:42:e0:4b:f4:
0a:22:4a:8b:7e:ea:92:a7:2e:06:4a:bb:f0:8e:ea:
b1:45:d5:8e:18:4d:bd:2f:93:1f:ee:ee:ea:b8:90:
b1:e2:6e:11:e2:d2:f3:62:aa:84:8e:fa:ab:62:05:
00:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:0A:81:73:FB:85:AF:CF:B9:4B:FB:17:01:3C:BF:46:E3:60:F5:14
X509v3 Authority Key Identifier:
keyid:9E:B5:E7:17:CE:F9:F6:64:4C:D8:84:9B:8A:18:D4:1D:C7:4F:40:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nrXnF8759mRM2ISbihjUHcdPQIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b8932a-0879-4751-988c-6ee3f5007eab/1/rAqBc_uFr8-5S_sXATy_RuNg9RQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b8932a-0879-4751-988c-6ee3f5007eab/1/nrXnF8759mRM2ISbihjUHcdPQIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.172.164.0/22
185.4.63.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:8f:13:ae:c0:ca:6e:a2:73:63:ca:84:e1:1f:9c:9b:19:43:
98:0a:00:b4:81:30:6f:43:a9:43:5a:01:a0:5a:c1:76:6e:3f:
aa:f2:5e:d9:93:0f:fc:67:d7:69:fb:1b:9e:47:bf:e8:67:a4:
82:2a:0f:1f:e6:e0:20:3c:c8:fd:f2:5c:46:94:70:6e:1f:09:
9e:35:34:02:7d:ca:17:fc:8d:db:e2:35:12:59:21:55:b9:30:
a4:86:59:52:d6:a4:bb:8c:99:36:79:31:7f:7a:77:40:6d:ce:
83:b0:48:ae:65:b3:09:9a:9b:a9:d8:b3:43:6c:d8:72:cf:2f:
d1:87:08:1d:fd:a3:75:b1:46:a6:1c:0a:c2:70:3b:bc:51:58:
87:99:27:37:71:b0:d3:4d:7c:e1:14:3f:32:f4:e0:15:7d:17:
38:86:3a:43:4a:be:bd:a9:8a:18:45:77:f6:7f:f3:ab:d2:9e:
b2:62:4d:a5:94:be:36:76:d0:f1:6d:df:df:1d:ad:62:26:bb:
1f:03:5a:55:c7:90:a4:a9:af:e4:60:a5:56:17:5d:d4:2f:5e:
d7:77:48:33:ab:4a:e5:29:be:8f:2c:a9:55:f5:c7:34:24:e0:
1e:f4:7f:cf:40:a5:b2:ed:c6:ec:db:bf:c2:0f:17:08:83:ef:
6e:e2:3a:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:38 2024 by rpki-client on console-ams.rpki-client.org