Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/fa17f3-2d73-4584-afac-1e2273f5eb19/1/6Pn9GmfPtS5f9hNRsBBG0nADBy4.roa
File: 6Pn9GmfPtS5f9hNRsBBG0nADBy4.roa (raw, json)
Hash identifier: a5tOep/m9mHhtIRbDa7m2gBnBJSikcrCOiSeLA9ULd0=
Subject key identifier: E8:F9:FD:1A:67:CF:B5:2E:5F:F6:13:51:B0:10:46:D2:70:03:07:2E
Certificate issuer: /CN=4dd5017171cb486228461ca078591bacac24b6cd
Certificate serial: 89B1F5
Authority key identifier: 4D:D5:01:71:71:CB:48:62:28:46:1C:A0:78:59:1B:AC:AC:24:B6:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdUBcXHLSGIoRhygeFkbrKwkts0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/fa17f3-2d73-4584-afac-1e2273f5eb19/1/6Pn9GmfPtS5f9hNRsBBG0nADBy4.roa
Signing time: Sat 01 Jan 2022 02:01:38 +0000
ROA not before: Sat 01 Jan 2022 02:01:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 195.96.150.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9023989 (0x89b1f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd5017171cb486228461ca078591bacac24b6cd
Validity
Not Before: Jan 1 02:01:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e8f9fd1a67cfb52e5ff61351b01046d27003072e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:58:e7:eb:0d:f2:e1:9e:38:21:eb:f5:b0:10:
cf:fa:6d:3b:32:70:28:89:38:4c:69:ea:6c:bb:7b:
da:fb:18:6c:d6:84:83:fd:e4:bb:70:47:7a:16:65:
75:a5:ab:b1:e8:51:1d:eb:78:24:2c:7f:f0:d3:cd:
59:dd:4c:c3:2a:22:d6:a0:67:f4:78:7e:ac:93:52:
79:38:0f:2c:1c:03:11:f6:7b:b5:c8:9b:22:cb:f7:
30:1c:dd:7f:4e:15:e3:0f:35:ec:21:6f:89:29:97:
0b:63:ed:8c:3b:c0:50:ac:0e:37:fc:55:6a:be:0c:
9d:1b:52:23:1b:18:7e:d1:cf:e6:dc:09:12:d3:72:
7d:55:b2:00:e3:71:f7:49:e3:00:c8:6a:c5:05:b0:
80:c0:aa:79:11:1e:5e:f4:77:a0:3a:9b:74:8f:0e:
e0:f1:e0:7c:0e:74:d3:b3:4f:16:17:60:50:f4:89:
58:43:4e:d4:ba:cc:e2:d9:0a:ee:71:c7:16:4a:c0:
a6:f5:c5:f4:a9:c7:8b:0b:e9:f0:88:ba:31:16:06:
e9:b1:b0:bf:74:5b:0f:2a:33:17:a0:a8:40:b2:1e:
ef:cd:da:8d:9a:8a:7e:8d:3b:3f:00:ae:5c:c7:b5:
cb:60:d9:89:bb:50:b3:08:a4:43:49:84:f8:da:b6:
2b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:F9:FD:1A:67:CF:B5:2E:5F:F6:13:51:B0:10:46:D2:70:03:07:2E
X509v3 Authority Key Identifier:
keyid:4D:D5:01:71:71:CB:48:62:28:46:1C:A0:78:59:1B:AC:AC:24:B6:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdUBcXHLSGIoRhygeFkbrKwkts0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/fa17f3-2d73-4584-afac-1e2273f5eb19/1/6Pn9GmfPtS5f9hNRsBBG0nADBy4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/fa17f3-2d73-4584-afac-1e2273f5eb19/1/TdUBcXHLSGIoRhygeFkbrKwkts0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.150.0/24
Signature Algorithm: sha256WithRSAEncryption
55:98:78:99:c1:e9:26:5d:eb:25:0d:df:64:52:f2:ba:15:9e:
f9:31:29:6e:09:3b:79:98:e6:1a:df:9b:96:b0:6c:83:08:4b:
2c:00:ac:fc:f7:3b:b4:6c:ea:21:c4:e2:b7:dc:8b:d1:e0:da:
e9:e6:64:f7:32:eb:24:a0:51:9f:13:e9:97:02:6f:cd:c0:01:
88:0c:9d:c6:23:b4:52:c0:a4:fa:07:b9:02:a5:a0:3f:06:b4:
37:92:79:26:7f:05:44:6b:03:e7:fe:33:9f:ea:9e:c3:17:79:
aa:63:32:b0:d8:a5:c8:5c:1c:0b:44:70:58:1b:53:9a:ff:c7:
61:0a:95:f9:07:54:2e:a4:8d:17:64:f1:19:44:88:b2:de:7c:
99:b7:88:f6:15:ba:34:f4:fa:93:33:f0:60:d0:3a:d5:6f:d2:
f2:fb:26:9b:46:98:02:f2:51:5e:5a:cb:cc:db:53:c9:16:55:
c4:0c:aa:4b:c7:58:5f:67:58:b1:58:66:45:8b:c3:9f:57:17:
cf:2e:54:68:2c:45:9c:07:8b:32:d1:9c:59:ff:b8:9e:fa:d3:
36:d1:2e:1b:44:bb:38:5d:85:87:cf:7b:69:49:68:03:bd:9b:
39:db:77:90:24:4a:85:f9:de:80:78:ee:4a:31:74:e6:ea:5a:
01:31:d0:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:54 2024 by rpki-client on console-ams.rpki-client.org