Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/2587c5-3352-4f58-91d9-0c552f8071dc/1/HGKEI6vlXNiapTTaVfNR4L1FhF0.roa
File: HGKEI6vlXNiapTTaVfNR4L1FhF0.roa (raw, json)
Hash identifier: AXPK3Vf37Xyt1zMI6Iz/1gYY9Rsk7boBheH5s2stLpo=
Subject key identifier: 1C:62:84:23:AB:E5:5C:D8:9A:A5:34:DA:55:F3:51:E0:BD:45:84:5D
Certificate issuer: /CN=db798fdae2d1894ee033b203e74663138c879b70
Certificate serial: 06BFDD6D
Authority key identifier: DB:79:8F:DA:E2:D1:89:4E:E0:33:B2:03:E7:46:63:13:8C:87:9B:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/23mP2uLRiU7gM7ID50ZjE4yHm3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/2587c5-3352-4f58-91d9-0c552f8071dc/1/HGKEI6vlXNiapTTaVfNR4L1FhF0.roa
Signing time: Sat 01 Jan 2022 10:54:34 +0000
ROA not before: Sat 01 Jan 2022 10:54:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12637
IP address blocks: 176.56.128.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113237357 (0x6bfdd6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db798fdae2d1894ee033b203e74663138c879b70
Validity
Not Before: Jan 1 10:54:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c628423abe55cd89aa534da55f351e0bd45845d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:20:8a:83:8e:4b:2e:2b:d9:eb:d4:f5:ba:6b:
22:3d:61:93:58:9c:0c:b2:ab:55:9c:df:fd:39:9b:
d9:f9:65:f5:d4:d5:ff:3d:e2:5a:90:90:c5:14:a6:
3c:fc:09:00:27:84:bd:32:58:0b:28:7b:3f:da:a9:
17:c2:9e:bf:81:3f:83:28:5b:ff:94:55:8c:6b:7c:
b4:a0:67:04:02:dd:26:47:a2:10:5c:cd:5b:65:bf:
e1:cc:aa:f6:52:a5:68:4e:5b:9f:03:c4:d5:5c:1e:
ce:f0:3c:c3:7d:87:d3:8c:1f:ad:2c:2c:0d:b7:2d:
62:a1:de:84:b8:2b:d3:c8:b2:1e:14:49:5a:31:ba:
2e:04:26:62:af:b6:ed:5d:28:e9:3b:f9:60:6a:76:
75:88:63:ee:bc:06:09:22:64:2b:3b:29:c8:d6:2f:
9c:b9:0e:8a:47:ba:4f:7e:d7:06:41:c7:ac:0b:e3:
15:bc:6c:41:34:8c:02:71:fa:50:b2:f9:4a:27:47:
0d:90:1f:6b:9d:f3:ff:79:48:91:d9:c4:e1:9b:b5:
a8:80:0d:83:65:a8:81:b2:d9:4c:ef:9b:8e:3c:59:
2a:83:d3:18:31:be:3f:24:1d:34:2a:d9:2a:05:d1:
ab:53:d0:9f:7d:cb:91:b7:75:44:d0:49:41:13:b9:
38:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:62:84:23:AB:E5:5C:D8:9A:A5:34:DA:55:F3:51:E0:BD:45:84:5D
X509v3 Authority Key Identifier:
keyid:DB:79:8F:DA:E2:D1:89:4E:E0:33:B2:03:E7:46:63:13:8C:87:9B:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/23mP2uLRiU7gM7ID50ZjE4yHm3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2587c5-3352-4f58-91d9-0c552f8071dc/1/HGKEI6vlXNiapTTaVfNR4L1FhF0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2587c5-3352-4f58-91d9-0c552f8071dc/1/23mP2uLRiU7gM7ID50ZjE4yHm3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.56.128.0/21
Signature Algorithm: sha256WithRSAEncryption
8e:00:b5:c3:49:16:0a:27:37:af:04:08:6c:cc:be:8a:e6:72:
0d:8e:7a:a1:6f:8d:f7:57:c3:fd:26:fb:93:2e:67:fb:52:55:
c1:ac:31:9f:53:ca:b9:58:7b:ab:d5:7e:5e:d5:68:4b:4c:e7:
3e:c4:4c:df:54:d9:9e:e0:d9:df:71:34:86:38:04:a6:11:19:
d8:92:92:45:38:0a:20:45:06:78:16:ab:c8:6d:3d:0d:bc:31:
ee:6a:30:1f:f9:fb:99:3c:52:bc:07:6b:d3:a0:ad:cb:c0:c3:
0d:a9:2c:56:f9:a2:a0:c7:c1:99:06:f6:d1:df:49:c8:53:c4:
cc:23:ed:5c:18:5f:a5:d2:1a:d7:c3:4b:b8:23:1d:f6:8a:4a:
aa:84:82:fb:d0:d2:93:da:92:ed:20:f2:e2:65:ea:2a:29:08:
cd:ec:76:cc:3e:83:66:0c:bd:f0:2a:b0:4b:a7:5a:f9:64:3b:
39:d1:ea:9c:3a:1b:84:89:fa:d5:c4:7f:44:9a:77:ef:92:2c:
90:62:7d:05:d1:21:65:fe:e9:02:60:8f:4a:6a:2c:79:6b:af:
90:8e:4b:59:db:02:d1:3e:98:14:39:c2:b9:9d:17:84:25:ba:
83:86:d1:26:53:11:da:eb:1f:73:0c:ca:e7:ae:46:67:7d:2b:
d6:d1:99:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:29 2023 by rpki-client on console-ams.rpki-client.org