Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/168a06-6560-4a59-b84c-eb1561cd8bfe/1/3DSntrdRlI6Qsym43DYibbUCh3E.roa
File: 3DSntrdRlI6Qsym43DYibbUCh3E.roa (raw, json)
Hash identifier: klm958qLj4wRuLurw3O7wjFxdzNa3lxhurUgf+mtz6g=
Subject key identifier: DC:34:A7:B6:B7:51:94:8E:90:B3:29:B8:DC:36:22:6D:B5:02:87:71
Certificate issuer: /CN=fc9c0a37eeee18884743eafbde51c3e36a5edf43
Certificate serial: 01856DDD29C6411EB31CCB80019A20560402
Authority key identifier: FC:9C:0A:37:EE:EE:18:88:47:43:EA:FB:DE:51:C3:E3:6A:5E:DF:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_JwKN-7uGIhHQ-r73lHD42pe30M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/168a06-6560-4a59-b84c-eb1561cd8bfe/1/3DSntrdRlI6Qsym43DYibbUCh3E.roa
Signing time: Sun 01 Jan 2023 15:04:48 +0000
ROA not before: Sun 01 Jan 2023 15:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57523
IP address blocks: 195.226.194.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:dd:29:c6:41:1e:b3:1c:cb:80:01:9a:20:56:04:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc9c0a37eeee18884743eafbde51c3e36a5edf43
Validity
Not Before: Jan 1 15:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dc34a7b6b751948e90b329b8dc36226db5028771
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:47:c9:01:f4:be:96:bb:5a:60:1f:fb:0f:06:
74:52:14:00:1d:01:4e:a0:14:91:34:b6:64:22:9f:
1a:a7:82:f6:9c:e9:a3:ab:4e:4d:9e:72:70:42:46:
28:1b:9e:5b:cd:90:1d:0d:27:18:4d:a8:d9:64:9d:
01:c2:3a:ef:53:73:a4:5e:a2:b1:25:3b:27:ba:d7:
d8:53:40:fd:1e:fa:3a:8f:28:73:76:f6:f4:19:b5:
48:f8:e3:85:f6:bf:6d:f6:04:6d:d7:1b:e1:44:c2:
38:bb:1a:a3:fd:78:cc:f8:00:87:b8:a5:fd:da:60:
8b:c6:f2:7b:7d:dd:f9:2a:66:13:cb:cd:fc:01:41:
bf:a4:b1:db:23:5c:5d:a8:31:e3:01:56:e9:83:f3:
5f:7a:df:d3:30:96:3e:99:79:ce:55:4f:66:bb:4f:
34:0a:83:58:ad:41:fb:e2:7b:9a:f2:bc:3a:a8:42:
b2:88:63:3e:d8:24:52:0c:03:49:a6:bf:c3:a4:0d:
e6:6c:c0:4f:fd:3f:87:dc:a6:67:8b:8e:87:fe:86:
c4:39:aa:0d:6a:2b:c4:2c:72:c8:b7:e4:b5:1d:d5:
ff:4a:84:75:60:4b:6a:2f:df:24:e0:a3:6e:24:3b:
ac:81:da:5b:9d:7d:51:9e:6c:91:08:89:76:55:5a:
f7:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:34:A7:B6:B7:51:94:8E:90:B3:29:B8:DC:36:22:6D:B5:02:87:71
X509v3 Authority Key Identifier:
keyid:FC:9C:0A:37:EE:EE:18:88:47:43:EA:FB:DE:51:C3:E3:6A:5E:DF:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_JwKN-7uGIhHQ-r73lHD42pe30M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/168a06-6560-4a59-b84c-eb1561cd8bfe/1/3DSntrdRlI6Qsym43DYibbUCh3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/168a06-6560-4a59-b84c-eb1561cd8bfe/1/_JwKN-7uGIhHQ-r73lHD42pe30M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.226.194.0/24
Signature Algorithm: sha256WithRSAEncryption
66:d1:29:5f:35:49:e8:29:fa:42:fc:7b:68:5b:b4:4d:a7:78:
1f:b3:a4:d5:cc:71:45:05:fe:f3:bb:25:5e:d9:70:cb:df:3e:
46:f9:e5:85:62:a1:25:7b:0f:e4:ba:c8:07:11:15:01:5d:e4:
46:1f:9c:e8:2c:e1:2d:ac:23:1d:ab:88:83:76:aa:b1:28:21:
58:86:d8:3c:3c:5a:51:0a:65:c3:d0:81:42:03:46:0c:d2:52:
98:46:b3:ee:ab:a6:0c:70:48:b1:26:67:8a:f6:a4:13:ef:35:
82:9a:43:1b:94:67:16:b0:05:a4:8f:3a:73:a9:83:3a:cb:5f:
7f:04:67:69:3d:dc:c2:f9:f8:2a:1f:0d:07:92:81:11:1b:b0:
2d:d7:4d:3c:23:31:b7:12:79:f7:1f:e5:d8:d7:58:db:d3:ba:
c8:8f:0f:a4:ae:e6:e6:27:84:0f:35:52:4e:6a:52:3c:9b:16:
c5:f9:70:1d:b4:13:66:23:4f:01:90:20:35:02:db:c2:5b:09:
c2:7e:a7:34:ce:ce:d2:60:3d:c7:98:3f:40:eb:5d:83:8a:bf:
9a:19:24:98:9c:98:95:52:a7:ed:f6:1f:82:70:ac:9e:ea:b0:
60:d2:30:1f:b4:a3:6f:44:c3:fd:2f:fd:10:5d:cd:2a:a4:44:
76:2c:93:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:50 2024 by rpki-client on console-fra.rpki-client.org