Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/af94f6-b440-4cbe-80c6-52bbdfb65e19/1/hgp3vgc9RkFvjtiTyYSgTXSqfao.roa
File: hgp3vgc9RkFvjtiTyYSgTXSqfao.roa (raw, json)
Hash identifier: UHbXrHaSmOHxJeFB7qGnySMamTFhJw+JouXRXoSWp34=
Subject key identifier: 86:0A:77:BE:07:3D:46:41:6F:8E:D8:93:C9:84:A0:4D:74:AA:7D:AA
Certificate issuer: /CN=a647395afe26d6f0d0072c4708497d4b74284639
Certificate serial: D10981
Authority key identifier: A6:47:39:5A:FE:26:D6:F0:D0:07:2C:47:08:49:7D:4B:74:28:46:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkc5Wv4m1vDQByxHCEl9S3QoRjk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/af94f6-b440-4cbe-80c6-52bbdfb65e19/1/hgp3vgc9RkFvjtiTyYSgTXSqfao.roa
Signing time: Sat 01 Jan 2022 05:52:14 +0000
ROA not before: Sat 01 Jan 2022 05:52:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39305
IP address blocks: 109.234.73.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13699457 (0xd10981)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a647395afe26d6f0d0072c4708497d4b74284639
Validity
Not Before: Jan 1 05:52:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=860a77be073d46416f8ed893c984a04d74aa7daa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ef:13:c7:a4:55:af:39:cf:be:3f:0a:7a:fe:
4f:5c:aa:a3:4c:8e:d1:ad:d9:cc:72:7a:8a:f0:bb:
5d:a8:a3:64:e1:f5:05:4f:0d:78:ef:06:3c:12:4d:
0e:d7:28:09:0c:51:e7:80:9b:cc:23:58:68:91:d4:
42:24:a6:97:91:ff:bf:93:0c:39:6a:d0:1c:31:a2:
d9:71:47:2a:42:56:e0:e4:a1:2d:ee:a1:54:8e:05:
42:0e:d3:05:3d:30:32:d8:e3:41:e0:92:d8:02:e4:
1c:2f:94:4b:03:a2:11:c3:be:c6:38:9f:f7:4e:d3:
fb:0d:1b:cf:97:4b:07:dc:9f:f5:bb:6e:76:06:fc:
6e:0e:24:c2:25:21:bc:f0:a2:16:4f:c9:a8:84:7c:
0c:3e:c2:e2:a4:1b:90:b4:14:ab:13:3b:5f:07:53:
66:af:d7:2e:15:b4:5c:7b:dd:c0:f3:b7:f8:ed:19:
35:58:99:f8:81:2d:cf:5c:dd:6c:c8:e0:f8:9b:71:
9d:8e:7f:08:8b:8f:4b:3a:ed:4f:40:8b:c4:8f:ed:
12:21:81:a8:1b:7e:54:4a:d6:63:43:3a:c8:28:43:
fc:5a:61:ef:2a:05:a6:94:5f:b1:f1:2a:00:ef:30:
03:9e:57:9e:cc:ae:7e:ef:4d:a4:9d:b8:1e:bf:3d:
07:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:0A:77:BE:07:3D:46:41:6F:8E:D8:93:C9:84:A0:4D:74:AA:7D:AA
X509v3 Authority Key Identifier:
keyid:A6:47:39:5A:FE:26:D6:F0:D0:07:2C:47:08:49:7D:4B:74:28:46:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkc5Wv4m1vDQByxHCEl9S3QoRjk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/af94f6-b440-4cbe-80c6-52bbdfb65e19/1/hgp3vgc9RkFvjtiTyYSgTXSqfao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/af94f6-b440-4cbe-80c6-52bbdfb65e19/1/pkc5Wv4m1vDQByxHCEl9S3QoRjk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.234.73.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:f6:aa:59:dd:d4:f2:3b:61:c7:6d:a9:dc:93:6b:b4:35:d4:
88:5d:48:5e:bd:88:1e:d8:e0:e7:1a:63:19:df:4a:b9:38:4c:
c2:62:34:b4:be:70:62:98:42:19:07:d4:a5:cf:fb:8d:a0:a2:
dc:e1:db:45:d0:b9:33:55:9a:94:df:1b:de:d8:93:8f:c2:b6:
8a:63:08:33:c9:53:5c:ee:df:6a:12:ba:6e:49:47:32:34:16:
f1:e9:bf:f7:0f:79:1a:bd:e4:ed:ab:d4:b9:23:17:fe:0d:e0:
0c:f7:af:4b:fc:dc:61:f8:0f:43:f7:af:af:66:f4:01:96:8a:
5b:55:d2:2c:86:0c:c1:bc:a7:66:ff:eb:19:e9:20:b9:d6:5e:
29:6b:e2:f8:8b:cb:27:61:f1:1a:aa:d7:88:3d:35:9c:77:09:
6b:3f:2c:3c:2e:68:b7:07:d5:a8:5b:3a:7f:70:5f:54:70:ea:
9c:7a:0c:39:e9:09:39:08:06:00:13:98:db:32:93:e7:e8:a0:
b4:0b:ee:c2:af:04:04:f3:59:b0:31:b3:dc:8f:ab:9a:24:d1:
96:04:4e:e2:ab:ea:0a:4a:4c:7b:7b:53:ad:78:90:d6:8e:bb:
30:20:22:b4:62:e5:d2:3d:8c:47:52:bb:6d:55:ba:3d:64:4d:
bc:18:67:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:23 2024 by rpki-client on console-fra.rpki-client.org