Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/c5be83-48dd-4c7b-8445-31a9c59fad28/1/miDNDR9L28K7hbvjZK0TTk3P13A.roa
File: miDNDR9L28K7hbvjZK0TTk3P13A.roa (raw, json)
Hash identifier: AydupsYKMIgO9fm3m2Aq6PRHJFTzpCKWBFjk7Og07Vs=
Subject key identifier: 9A:20:CD:0D:1F:4B:DB:C2:BB:85:BB:E3:64:AD:13:4E:4D:CF:D7:70
Certificate issuer: /CN=ac691b5b3bdd11f2d99889fa903fb92da922d3b2
Certificate serial: 018964C0525B9F97EBF455EABED067334A25
Authority key identifier: AC:69:1B:5B:3B:DD:11:F2:D9:98:89:FA:90:3F:B9:2D:A9:22:D3:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rGkbWzvdEfLZmIn6kD-5Laki07I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/c5be83-48dd-4c7b-8445-31a9c59fad28/1/miDNDR9L28K7hbvjZK0TTk3P13A.roa
Signing time: Mon 17 Jul 2023 16:47:52 +0000
ROA not before: Mon 17 Jul 2023 16:47:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59729
IP address blocks: 195.96.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:c0:52:5b:9f:97:eb:f4:55:ea:be:d0:67:33:4a:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac691b5b3bdd11f2d99889fa903fb92da922d3b2
Validity
Not Before: Jul 17 16:47:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9a20cd0d1f4bdbc2bb85bbe364ad134e4dcfd770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:28:63:8c:ce:13:fb:9f:e9:08:1c:20:f6:17:
85:84:81:fa:88:8a:cf:2d:fe:df:04:21:ba:ac:ac:
a4:90:cd:6b:c8:53:48:b5:ab:89:ab:0e:c8:6b:71:
94:4e:4f:0c:0f:51:d7:c7:36:ff:52:fa:79:7a:5c:
98:a4:8c:ee:5d:ea:4e:b6:2d:27:db:93:2a:1f:17:
b3:29:fb:e7:4a:00:1c:8f:2d:02:c6:13:6e:55:28:
0f:f2:e8:49:83:19:ab:ab:7f:a3:2f:0b:ff:78:6e:
46:54:d9:40:ae:52:61:bf:0e:2a:a1:56:88:70:11:
a9:b8:d8:1b:66:ee:b1:e8:2b:94:94:d7:c8:42:6d:
68:cf:1f:3a:f8:fa:01:16:37:91:cd:2e:c4:ff:35:
d2:5b:ae:ee:e1:dc:ab:25:ca:33:b8:a5:8a:4e:76:
01:93:8b:91:f0:db:fa:cd:30:e0:8b:00:b6:8d:af:
af:4d:b1:a0:f3:ed:3f:ab:63:a5:4b:37:7f:41:44:
c9:19:68:eb:61:db:b2:36:6d:8c:31:2f:88:9d:b9:
b6:83:e4:12:c6:75:1a:73:71:ea:6e:50:b1:34:2b:
37:99:c5:ee:ce:42:b4:05:0c:86:1b:28:73:9b:53:
75:c5:02:2f:40:74:76:d0:6d:0a:9d:c8:3b:2d:60:
76:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:20:CD:0D:1F:4B:DB:C2:BB:85:BB:E3:64:AD:13:4E:4D:CF:D7:70
X509v3 Authority Key Identifier:
keyid:AC:69:1B:5B:3B:DD:11:F2:D9:98:89:FA:90:3F:B9:2D:A9:22:D3:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rGkbWzvdEfLZmIn6kD-5Laki07I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/c5be83-48dd-4c7b-8445-31a9c59fad28/1/miDNDR9L28K7hbvjZK0TTk3P13A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/c5be83-48dd-4c7b-8445-31a9c59fad28/1/rGkbWzvdEfLZmIn6kD-5Laki07I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.144.0/24
Signature Algorithm: sha256WithRSAEncryption
03:c5:ce:3c:2b:f7:8b:fb:e2:79:de:06:ac:8e:1b:ab:bc:52:
6d:ce:e9:c9:63:0e:c8:df:6c:83:de:6e:9b:a7:ef:bf:fa:7a:
dd:0c:c4:b0:14:f3:fc:5b:71:41:20:bb:d6:d5:3d:da:68:d3:
2b:9d:4f:e8:f5:7b:f0:54:ac:df:47:43:fe:9b:e1:3f:ae:6b:
af:99:47:45:ba:8b:61:b9:84:6b:e9:ac:5e:b1:3b:a2:49:f2:
92:cb:71:71:34:ce:5f:63:fc:77:f2:e5:7b:60:e0:bd:9d:44:
cb:7f:bb:e4:fd:7d:70:31:77:fc:e5:7a:36:c6:0b:13:e6:b4:
3d:0a:65:19:79:17:2d:b4:b3:52:5f:d7:05:9d:86:b4:46:c2:
cc:d4:e3:6f:dc:08:22:8e:6b:66:b4:a7:b0:2a:b4:55:0a:5c:
4e:12:f3:b3:e5:54:d1:d6:15:e5:61:31:8b:72:1f:59:aa:69:
b7:30:cf:27:22:62:7d:1c:1e:e2:48:cb:3e:82:b2:87:09:03:
95:bc:d3:45:ef:db:2d:09:9a:b7:e7:24:66:e1:d3:f2:9e:88:
64:22:21:e4:4e:99:23:50:da:0b:b5:ed:26:6c:ed:e7:d2:dd:
b0:60:b4:8b:9d:f1:a2:bf:b5:f8:28:9e:7a:bc:86:a6:10:1f:
05:f9:27:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:59 2023 by rpki-client on console.sobornost.net