Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/491559-84b8-45b9-be83-35189d44df80/1/XdPJjJlvrFdhKJY0CJ7wlnaSchU.roa
File: XdPJjJlvrFdhKJY0CJ7wlnaSchU.roa (raw, json)
Hash identifier: wN3nRguA7lW/f2I2ALfQXsIM1oqk0hdNPMeEkCEeV6c=
Subject key identifier: 5D:D3:C9:8C:99:6F:AC:57:61:28:96:34:08:9E:F0:96:76:92:72:15
Certificate issuer: /CN=e76298efc950af2a461cd8dc7bee5006baa2fd8c
Certificate serial: 04FC13
Authority key identifier: E7:62:98:EF:C9:50:AF:2A:46:1C:D8:DC:7B:EE:50:06:BA:A2:FD:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/52KY78lQrypGHNjce-5QBrqi_Yw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/491559-84b8-45b9-be83-35189d44df80/1/XdPJjJlvrFdhKJY0CJ7wlnaSchU.roa
Signing time: Tue 01 Feb 2022 09:54:09 +0000
ROA not before: Tue 01 Feb 2022 09:54:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 193.84.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 326675 (0x4fc13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e76298efc950af2a461cd8dc7bee5006baa2fd8c
Validity
Not Before: Feb 1 09:54:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5dd3c98c996fac5761289634089ef09676927215
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:dd:62:0f:41:7d:3f:ee:50:b8:2c:58:8b:3a:
a0:aa:3d:86:97:8e:a3:53:cc:8f:f1:8a:cf:33:83:
38:a9:ea:db:ca:ec:44:95:3d:da:2a:76:c4:c8:5b:
79:42:76:a5:6c:3a:96:a7:cd:41:2d:21:ab:0e:13:
3d:e5:f8:02:14:05:fc:21:ea:d2:f3:b4:3f:37:ae:
a5:8e:47:86:45:ca:1b:a4:6f:a7:f3:da:92:32:90:
e3:79:e3:15:e2:eb:1d:db:eb:8b:7d:cc:f8:31:01:
e7:43:69:33:4a:64:b9:c3:cf:e1:e9:ec:b5:ba:71:
ce:0c:41:7c:33:6d:f3:ef:ea:f1:c2:31:cb:ef:e4:
bf:18:8e:62:3b:41:c1:a0:0d:a2:d8:b3:23:90:aa:
c8:65:40:0c:79:9d:e6:56:73:fc:89:4b:ad:eb:4d:
b0:5d:53:b0:e2:19:b5:d1:79:91:23:a2:e5:fe:db:
83:3f:db:50:0e:dd:4d:5f:15:08:64:46:ee:5e:63:
49:02:47:e2:6b:24:4e:6f:f6:b0:ce:84:af:f0:26:
20:d3:e8:8c:e1:e5:38:6a:64:9b:dc:52:e5:32:0c:
22:8c:78:2a:d8:5f:ef:63:d3:1c:75:2b:52:0d:2c:
6e:dd:bf:81:f3:0b:6a:8c:44:2e:c6:97:6e:f6:10:
80:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:D3:C9:8C:99:6F:AC:57:61:28:96:34:08:9E:F0:96:76:92:72:15
X509v3 Authority Key Identifier:
keyid:E7:62:98:EF:C9:50:AF:2A:46:1C:D8:DC:7B:EE:50:06:BA:A2:FD:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/52KY78lQrypGHNjce-5QBrqi_Yw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/491559-84b8-45b9-be83-35189d44df80/1/XdPJjJlvrFdhKJY0CJ7wlnaSchU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/491559-84b8-45b9-be83-35189d44df80/1/52KY78lQrypGHNjce-5QBrqi_Yw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.111.0/24
Signature Algorithm: sha256WithRSAEncryption
88:3b:24:e6:3f:14:84:9a:9a:5a:4d:0c:61:75:45:c4:a4:d8:
6e:08:fb:5f:cd:51:21:f4:d3:e9:cf:6c:19:d1:d3:34:44:1b:
5d:1b:66:06:35:09:03:38:76:f0:7b:ed:eb:77:42:1b:d2:dc:
69:88:09:75:14:e7:ac:27:93:03:74:ab:4d:f8:ed:8f:5a:e3:
8a:07:c8:e3:59:b4:6e:41:57:93:90:62:0b:12:af:98:e5:13:
db:54:a7:ed:5c:6c:1b:1b:12:ef:63:20:1b:d0:17:69:81:68:
dc:91:b2:d4:34:35:f6:af:a8:cb:65:e9:9c:90:0e:51:38:29:
6f:0d:66:1b:62:73:c1:8b:37:3a:94:a1:00:61:69:74:5b:b4:
5c:64:8b:dc:f6:03:49:a6:dd:72:30:77:ab:69:82:56:7c:88:
9b:d9:53:e5:94:f8:52:00:9d:8d:13:4a:02:f1:2c:02:4c:45:
62:b7:4f:90:78:46:af:2e:d0:04:f7:ec:1d:f1:ed:fd:37:68:
a5:31:9c:32:ce:32:d5:34:aa:f6:2a:12:e3:e6:a1:f4:58:95:
7e:3d:43:d5:7a:c6:d5:db:83:dd:b2:ae:7f:ed:2d:84:7b:13:
5c:9c:2b:fe:9b:7c:84:b8:49:3d:e1:cd:15:7d:a4:0b:ff:95:
51:da:f2:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:06 2024 by rpki-client on console-fra.rpki-client.org