Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/91f225-85c7-432f-b5ea-2920afa77fef/1/EZOj43tySnBhlY_MtxFpseJER0g.roa
File: EZOj43tySnBhlY_MtxFpseJER0g.roa (raw, json)
Hash identifier: lu8kPu8CvhNTyt4IxXXwTCGS+TI5FGeD8xCuo1nq4UE=
Subject key identifier: 11:93:A3:E3:7B:72:4A:70:61:95:8F:CC:B7:11:69:B1:E2:44:47:48
Certificate issuer: /CN=3f46d07da8fb32650eac238c06398e42c785e79e
Certificate serial: 02F946D1
Authority key identifier: 3F:46:D0:7D:A8:FB:32:65:0E:AC:23:8C:06:39:8E:42:C7:85:E7:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P0bQfaj7MmUOrCOMBjmOQseF554.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/91f225-85c7-432f-b5ea-2920afa77fef/1/EZOj43tySnBhlY_MtxFpseJER0g.roa
Signing time: Sat 01 Jan 2022 12:55:54 +0000
ROA not before: Sat 01 Jan 2022 12:55:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35278
IP address blocks: 193.168.131.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49891025 (0x2f946d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f46d07da8fb32650eac238c06398e42c785e79e
Validity
Not Before: Jan 1 12:55:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1193a3e37b724a7061958fccb71169b1e2444748
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:2e:c1:21:0a:8c:3a:23:a6:e7:74:b3:9e:fc:
ce:57:78:89:ac:2a:54:4d:0c:9f:4b:e7:b4:03:bb:
d4:9a:e7:39:5d:b1:9c:3f:b1:97:81:54:b0:63:f8:
67:c8:93:1b:18:ec:c1:d8:ba:3b:72:05:3e:d8:e5:
3f:a5:9f:f1:4b:9d:5f:10:a4:5d:09:e1:c9:c2:43:
8d:69:f4:47:ea:84:63:d8:8b:89:06:3c:24:14:c4:
38:44:ce:eb:e9:14:4c:62:b3:a5:77:65:52:39:9b:
40:cd:23:8d:2f:b2:2e:7f:f9:2a:cc:db:a5:e1:70:
84:bb:26:11:12:5c:b3:25:43:6f:36:01:2a:3b:c7:
6c:c1:f2:47:9e:b5:0d:72:d1:05:2f:5d:21:ea:cd:
d4:09:d2:17:bd:c2:c6:94:b5:fc:d4:35:dc:59:eb:
e7:37:e1:e9:14:19:1e:da:3e:9d:5a:7a:be:df:29:
55:2d:46:21:9c:bf:90:3e:99:da:ad:06:de:6a:66:
6e:ef:37:a8:43:9c:9b:9b:78:c6:7a:a2:c1:50:76:
29:d5:a1:90:60:13:6b:b2:09:25:e3:40:0f:64:c2:
ac:56:eb:fb:e5:3b:28:f1:50:8f:a8:a1:a6:4f:8b:
49:fa:a2:24:25:17:f8:d9:3d:a9:82:c7:c6:3b:3e:
58:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:93:A3:E3:7B:72:4A:70:61:95:8F:CC:B7:11:69:B1:E2:44:47:48
X509v3 Authority Key Identifier:
keyid:3F:46:D0:7D:A8:FB:32:65:0E:AC:23:8C:06:39:8E:42:C7:85:E7:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P0bQfaj7MmUOrCOMBjmOQseF554.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/91f225-85c7-432f-b5ea-2920afa77fef/1/EZOj43tySnBhlY_MtxFpseJER0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/91f225-85c7-432f-b5ea-2920afa77fef/1/P0bQfaj7MmUOrCOMBjmOQseF554.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.168.131.0/24
Signature Algorithm: sha256WithRSAEncryption
14:aa:79:43:ab:59:2d:18:c1:da:4d:d6:a2:ee:6c:0a:bd:c7:
8e:67:ce:b2:f2:23:38:50:1f:90:fa:5b:7f:7d:16:05:df:5e:
29:4c:e9:89:36:f9:a0:dd:3f:e0:08:e9:01:b1:0e:cf:d2:76:
b3:73:76:10:eb:69:24:53:cd:2c:55:6a:b2:21:b3:79:8e:22:
87:c4:5e:8c:57:46:b7:95:b3:3d:d6:f8:ba:6e:a8:9b:f3:80:
1a:10:49:e0:4e:fc:fa:9e:2e:ef:1c:b1:01:e0:94:9e:ae:15:
86:00:4e:0a:da:f9:35:1a:ea:f1:2c:a8:ef:15:fc:43:4c:26:
a6:24:b7:8a:75:5a:d0:fc:e1:5d:23:17:f9:8d:b4:12:4f:87:
f4:5b:73:a1:6c:0e:00:da:09:a3:a4:b7:0b:d5:6e:a5:ca:6b:
8b:11:5d:f4:68:9c:dc:1a:c7:69:e2:4f:c3:51:49:7b:25:de:
fd:68:22:43:bc:15:0d:ff:d3:17:3a:ba:3b:1e:58:39:4c:63:
0d:76:19:ac:5f:53:c3:82:4c:ad:4e:29:14:ba:fb:55:cf:f8:
e9:89:6d:fc:e2:ef:79:11:62:b9:66:83:88:ea:df:f2:42:80:
18:a6:b6:f8:b1:20:16:23:a2:8d:c9:cd:ba:ae:4f:09:2c:a7:
4b:c3:b2:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:18 2024 by rpki-client on console-fra.rpki-client.org