Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/97913c-748e-4fd1-9194-208fcfdfb201/1/40NzJAcOZGG8URl2JTCFzWdjXSs.roa
File: 40NzJAcOZGG8URl2JTCFzWdjXSs.roa (raw, json)
Hash identifier: dJ5WdmOkDyAIKfsYOxqZroi4bM0OnGTVBrIvNumWTQ0=
Subject key identifier: E3:43:73:24:07:0E:64:61:BC:51:19:76:25:30:85:CD:67:63:5D:2B
Certificate issuer: /CN=7cac8d7f4b75170607bfcf8439c2e1d03a21410d
Certificate serial: 1B50E6B3
Authority key identifier: 7C:AC:8D:7F:4B:75:17:06:07:BF:CF:84:39:C2:E1:D0:3A:21:41:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKyNf0t1FwYHv8-EOcLh0DohQQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/97913c-748e-4fd1-9194-208fcfdfb201/1/40NzJAcOZGG8URl2JTCFzWdjXSs.roa
Signing time: Sat 01 Jan 2022 13:55:14 +0000
ROA not before: Sat 01 Jan 2022 13:55:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205402
IP address blocks: 31.25.56.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 458286771 (0x1b50e6b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7cac8d7f4b75170607bfcf8439c2e1d03a21410d
Validity
Not Before: Jan 1 13:55:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e3437324070e6461bc511976253085cd67635d2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e1:98:17:ae:90:08:0f:85:40:49:46:3a:15:
b7:d4:13:de:7c:6c:2e:0d:1f:d0:2f:5f:97:a4:a7:
a7:16:14:98:ab:2e:94:af:a0:39:20:a5:65:78:b5:
28:13:1f:ae:3e:26:6c:65:23:33:0b:c8:42:92:a3:
f4:9f:20:0d:4b:56:4c:a5:88:2d:de:8f:95:c2:12:
56:e7:44:aa:4a:b7:ee:f5:c7:48:87:07:59:1d:36:
0d:59:a5:df:84:5e:e4:49:50:66:e9:5e:5a:e3:30:
67:a9:57:33:56:e9:e9:d0:65:9c:66:2b:30:e3:28:
bf:8e:1a:24:ca:bf:5b:71:3d:8a:be:5e:99:4a:7c:
00:a3:f4:17:b1:d1:9a:41:14:d2:58:e3:e3:7d:a2:
26:b7:51:2f:ce:72:c0:2c:68:65:bc:17:6b:d4:c4:
0c:77:96:cb:23:47:c0:22:4e:b8:b7:29:6d:56:d9:
6a:1e:46:e4:7b:df:41:f5:35:b5:8d:ff:cc:c0:9f:
58:6b:d7:81:fe:13:9c:0b:50:cf:df:f9:b5:8a:c1:
c1:b4:1e:5a:53:11:dc:c6:7b:fa:b9:36:54:48:a9:
b6:bd:6c:5e:a7:1f:1d:16:f1:18:7f:d7:a2:e2:1f:
bd:1c:bb:18:8b:3c:42:1e:a9:f1:94:3a:fd:21:fb:
6b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:43:73:24:07:0E:64:61:BC:51:19:76:25:30:85:CD:67:63:5D:2B
X509v3 Authority Key Identifier:
keyid:7C:AC:8D:7F:4B:75:17:06:07:BF:CF:84:39:C2:E1:D0:3A:21:41:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKyNf0t1FwYHv8-EOcLh0DohQQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/97913c-748e-4fd1-9194-208fcfdfb201/1/40NzJAcOZGG8URl2JTCFzWdjXSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/97913c-748e-4fd1-9194-208fcfdfb201/1/fKyNf0t1FwYHv8-EOcLh0DohQQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.56.0/21
Signature Algorithm: sha256WithRSAEncryption
c4:6e:cd:f4:61:8e:10:63:65:af:63:64:48:c7:1f:a0:47:d3:
ea:1f:ec:5f:70:d8:a3:fa:d3:6f:9b:f2:18:6e:7c:ba:4d:30:
2b:b8:15:37:bb:09:98:1a:38:e8:40:19:61:79:5e:4a:e0:78:
eb:0c:23:21:b6:2a:d5:c2:b2:c3:43:b6:14:c2:86:0f:3d:97:
68:51:d3:40:0b:f2:2b:3a:56:8b:c7:10:5b:12:e8:62:0c:13:
bb:5b:d1:41:51:af:ea:23:0f:52:13:73:1d:67:bc:ad:d6:86:
08:16:ef:84:bc:80:6d:0d:6e:33:7f:91:ea:9e:ef:4b:51:24:
46:67:a1:f1:7e:83:3c:e3:47:9d:b6:ba:53:05:06:89:4e:00:
c8:94:34:b8:9c:13:fd:34:d0:1d:b4:6a:68:98:5b:09:75:68:
66:9d:50:04:3e:5a:b7:09:90:89:85:4f:99:77:f1:ad:be:09:
ad:50:e8:9f:ca:80:9b:ce:c4:ec:1a:50:48:2c:cd:2b:8d:64:
38:20:4a:08:4d:32:e6:ef:bf:c2:d6:77:38:b1:30:77:b5:27:
e2:24:73:25:dc:1b:fc:e5:16:8a:99:3f:a2:bf:1c:67:de:27:
cc:1b:33:f1:0f:a2:c0:80:91:6f:23:9c:96:4f:3e:7c:09:4c:
66:ff:d1:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:23 2024 by rpki-client on console-fra.rpki-client.org