Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/2587c5-3352-4f58-91d9-0c552f8071dc/1/iF8DKO_jatwLlBTKV2r8E_vqPAc.roa
File: iF8DKO_jatwLlBTKV2r8E_vqPAc.roa (raw, json)
Hash identifier: reD9rVndozXTPQ8DjV6WfoWbxAsvivgG3qzVmZtL6GI=
Subject key identifier: 88:5F:03:28:EF:E3:6A:DC:0B:94:14:CA:57:6A:FC:13:FB:EA:3C:07
Certificate issuer: /CN=db798fdae2d1894ee033b203e74663138c879b70
Certificate serial: 018572DEFF7ED3A80A2694A73F0018BBFC50
Authority key identifier: DB:79:8F:DA:E2:D1:89:4E:E0:33:B2:03:E7:46:63:13:8C:87:9B:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/23mP2uLRiU7gM7ID50ZjE4yHm3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/2587c5-3352-4f58-91d9-0c552f8071dc/1/iF8DKO_jatwLlBTKV2r8E_vqPAc.roa
Signing time: Mon 02 Jan 2023 14:24:55 +0000
ROA not before: Mon 02 Jan 2023 14:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44092
IP address blocks: 176.56.137.0/24 maxlen: 24
176.56.138.0/24 maxlen: 24
176.56.136.0/24 maxlen: 24
176.56.139.0/24 maxlen: 24
176.56.136.0/21 maxlen: 24
176.56.141.0/24 maxlen: 24
176.56.142.0/24 maxlen: 24
176.56.140.0/24 maxlen: 24
176.56.143.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:de:ff:7e:d3:a8:0a:26:94:a7:3f:00:18:bb:fc:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db798fdae2d1894ee033b203e74663138c879b70
Validity
Not Before: Jan 2 14:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=885f0328efe36adc0b9414ca576afc13fbea3c07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fd:df:e4:c1:43:93:58:a9:a7:a5:a7:8e:25:
d5:94:29:88:06:4a:6f:d0:53:71:f3:ae:ad:86:1e:
1b:c3:99:01:9e:5e:cc:5a:52:14:88:41:e6:7f:2d:
de:6d:21:d0:10:15:17:cb:62:40:d6:91:ec:e2:4d:
75:6e:33:a8:09:f8:7e:10:69:30:cd:8e:dd:e6:89:
81:64:b9:d9:3d:84:9e:57:a4:a6:ee:1b:5f:24:39:
17:5d:bc:60:6f:80:2f:08:06:de:9c:9b:eb:56:a3:
91:50:53:d7:9e:a0:b4:39:ba:38:18:1a:68:c6:cc:
c9:e4:5e:11:ad:86:17:a9:fa:98:1a:6a:56:ed:ee:
50:44:9a:3a:9b:f5:a6:8d:a2:ff:0e:a1:3f:0d:80:
2d:c8:42:b6:11:fb:16:29:8e:10:96:98:98:a0:ae:
09:42:33:db:04:c7:55:c9:69:6a:39:44:de:cc:ba:
ed:ae:f9:8e:1e:eb:f2:45:44:06:27:9e:2a:1d:d8:
e1:57:25:2c:4e:7a:09:23:d5:30:4e:87:ca:4e:24:
fb:15:29:5f:94:18:ba:6e:4b:44:a8:71:bb:1e:7c:
80:7d:3c:51:cf:ab:86:1b:0f:35:0d:17:25:ac:82:
4a:ae:3d:ee:6f:ea:c4:0b:ac:e7:cd:02:b2:3f:1a:
2d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:5F:03:28:EF:E3:6A:DC:0B:94:14:CA:57:6A:FC:13:FB:EA:3C:07
X509v3 Authority Key Identifier:
keyid:DB:79:8F:DA:E2:D1:89:4E:E0:33:B2:03:E7:46:63:13:8C:87:9B:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/23mP2uLRiU7gM7ID50ZjE4yHm3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2587c5-3352-4f58-91d9-0c552f8071dc/1/iF8DKO_jatwLlBTKV2r8E_vqPAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2587c5-3352-4f58-91d9-0c552f8071dc/1/23mP2uLRiU7gM7ID50ZjE4yHm3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.56.136.0/21
Signature Algorithm: sha256WithRSAEncryption
50:26:06:6b:27:43:7d:92:15:97:74:31:ce:3d:3e:9c:48:39:
45:3c:0b:d5:bb:6a:ce:f8:67:08:c7:a5:87:31:15:fb:74:95:
33:bb:7a:dc:82:52:e0:c4:16:f4:51:ee:6a:34:69:61:76:29:
b2:7d:8c:bb:ee:e0:77:46:a6:69:65:b6:88:63:ab:aa:4f:ce:
0f:67:6c:21:12:30:c2:31:f4:68:3c:55:5d:5a:82:b6:b6:d8:
6a:4c:92:d4:28:8d:67:6e:d2:b1:a8:a1:81:a9:15:f9:ac:95:
ef:27:87:33:84:d9:3a:8c:a7:9b:10:f2:ad:1e:10:31:b3:5b:
2c:3a:5e:20:b4:e3:84:fd:a8:4c:9c:3a:57:eb:33:21:d5:ed:
24:a7:d8:09:a8:8e:b7:f0:4a:71:71:87:dd:9b:d3:65:39:62:
b7:76:ab:88:f2:d2:9a:a8:4f:0d:20:db:3c:46:7e:2c:73:0b:
db:ac:61:38:ef:c9:1a:76:a4:be:e6:ae:d6:6e:bc:a9:df:8b:
84:87:cd:1c:eb:87:2a:73:c9:db:1d:da:96:7c:a0:b2:e2:04:
35:30:dd:ae:ac:0d:d9:66:94:ab:88:25:86:8e:b6:ec:62:fe:
d9:f4:28:1a:80:75:56:d2:09:ef:19:4c:02:3a:67:12:82:cb:
94:f3:05:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:29 2023 by rpki-client on console-ams.rpki-client.org