Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/2587c5-3352-4f58-91d9-0c552f8071dc/1/WzD6Q6LgC4WQS52S1Nzn3fXZptI.roa
File: WzD6Q6LgC4WQS52S1Nzn3fXZptI.roa (raw, json)
Hash identifier: 6WRH3jkMWJsButhBuFuWxItgghYUafviassDVkHfSq4=
Subject key identifier: 5B:30:FA:43:A2:E0:0B:85:90:4B:9D:92:D4:DC:E7:DD:F5:D9:A6:D2
Certificate issuer: /CN=db798fdae2d1894ee033b203e74663138c879b70
Certificate serial: 018572DEFECB117F21AB4C4C6A90FA9573A9
Authority key identifier: DB:79:8F:DA:E2:D1:89:4E:E0:33:B2:03:E7:46:63:13:8C:87:9B:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/23mP2uLRiU7gM7ID50ZjE4yHm3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/2587c5-3352-4f58-91d9-0c552f8071dc/1/WzD6Q6LgC4WQS52S1Nzn3fXZptI.roa
Signing time: Mon 02 Jan 2023 14:24:54 +0000
ROA not before: Mon 02 Jan 2023 14:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12637
IP address blocks: 176.56.128.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:de:fe:cb:11:7f:21:ab:4c:4c:6a:90:fa:95:73:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db798fdae2d1894ee033b203e74663138c879b70
Validity
Not Before: Jan 2 14:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5b30fa43a2e00b85904b9d92d4dce7ddf5d9a6d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:c5:69:7b:3a:81:85:fe:ca:88:fb:bd:7b:b7:
20:1e:e7:3a:a4:e2:d9:2b:9b:98:f9:17:7e:35:7c:
16:9c:07:94:b8:73:96:7a:72:a2:d4:50:01:04:c6:
fd:fa:67:0e:a5:e1:e2:ff:34:4a:77:94:48:4c:c9:
65:76:34:33:39:19:b4:1e:8c:a1:e1:36:ed:f4:69:
69:32:56:5b:b5:64:99:fe:0d:14:56:ed:1d:64:84:
86:7c:50:c5:82:25:56:dd:18:e4:3f:77:d4:50:00:
50:b7:5d:1b:6d:16:82:fe:7e:aa:07:ec:d5:21:42:
12:fd:7a:3f:3c:87:1f:fb:9c:5a:5f:d0:d9:dc:99:
a0:60:87:ae:37:6f:52:da:57:21:14:54:0f:e6:1c:
57:60:40:4a:3f:a9:f8:ec:46:36:5b:86:22:c2:e4:
2e:37:fe:1f:83:c3:b9:46:50:f1:a3:25:db:a5:3c:
ed:f6:6c:97:ae:48:66:a5:ef:98:9e:cb:8b:76:f9:
88:46:fd:1e:f4:aa:06:92:7f:2c:9a:c4:d7:06:85:
64:fd:04:95:04:61:05:b8:f2:ee:4b:e3:fd:76:a2:
0e:81:01:25:25:c8:62:71:7f:09:b0:e7:59:20:3b:
cd:9b:d7:1c:eb:f9:c5:3d:f4:26:66:ef:0e:02:25:
d0:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:30:FA:43:A2:E0:0B:85:90:4B:9D:92:D4:DC:E7:DD:F5:D9:A6:D2
X509v3 Authority Key Identifier:
keyid:DB:79:8F:DA:E2:D1:89:4E:E0:33:B2:03:E7:46:63:13:8C:87:9B:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/23mP2uLRiU7gM7ID50ZjE4yHm3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2587c5-3352-4f58-91d9-0c552f8071dc/1/WzD6Q6LgC4WQS52S1Nzn3fXZptI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2587c5-3352-4f58-91d9-0c552f8071dc/1/23mP2uLRiU7gM7ID50ZjE4yHm3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.56.128.0/21
Signature Algorithm: sha256WithRSAEncryption
10:ff:76:b2:36:4f:46:22:27:6f:3b:e0:7d:ee:98:83:79:3e:
90:c6:df:33:d0:cc:d3:08:95:39:9e:f6:0f:0c:06:75:34:c5:
8e:bc:97:47:6a:ae:bf:83:97:ca:d2:41:9b:57:79:d0:d0:1f:
37:c7:25:a9:0a:09:5a:9b:ab:6e:11:28:02:94:ac:5d:c9:10:
8e:99:14:4e:bf:19:43:56:fd:9f:78:23:d2:4f:f9:4b:c1:34:
59:a4:30:4b:92:0f:54:25:ed:63:a0:58:10:71:c0:49:22:b1:
55:c9:17:1e:ac:79:ea:1e:b9:69:4f:a7:08:77:02:0a:28:e6:
9a:7d:90:00:69:e0:7d:e6:b7:69:1e:07:e0:96:0b:c6:2d:57:
e1:2b:18:82:3f:75:b4:5a:f7:69:22:67:d9:01:d5:16:6a:50:
15:b3:3b:79:31:46:6a:8a:1f:4d:03:8e:b2:f1:44:7a:a0:84:
ff:ab:7e:1d:6b:59:00:c6:73:70:67:e6:e4:dd:db:ca:8d:9c:
0d:3b:a0:18:9b:fc:fc:55:e6:d8:40:20:35:b2:48:a5:52:c5:
fa:ec:44:36:f8:d6:44:4f:1b:37:6c:a0:33:ab:6e:8d:5b:6c:
b0:58:17:38:6d:01:02:1c:65:c8:4b:29:45:68:53:b7:6e:77:
e7:1f:c4:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:29 2023 by rpki-client on console-ams.rpki-client.org