Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/71c5fd-e36f-42f6-926b-58a2457c6fd5/1/fTlI52IOKCOYh0DN0GJrSn_Rd8I.roa
File: fTlI52IOKCOYh0DN0GJrSn_Rd8I.roa (raw, json)
Hash identifier: Oc2J4+sZxv5AzyJYOyTiA3CpbkZAwgCEq01kyZpo00k=
Subject key identifier: 7D:39:48:E7:62:0E:28:23:98:87:40:CD:D0:62:6B:4A:7F:D1:77:C2
Certificate issuer: /CN=4e259d806139f953e47c350904aaceec6cc39a1f
Certificate serial: 01856DB881F820AEBF1138894DBA4E252E1C
Authority key identifier: 4E:25:9D:80:61:39:F9:53:E4:7C:35:09:04:AA:CE:EC:6C:C3:9A:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TiWdgGE5-VPkfDUJBKrO7GzDmh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/71c5fd-e36f-42f6-926b-58a2457c6fd5/1/fTlI52IOKCOYh0DN0GJrSn_Rd8I.roa
Signing time: Sun 01 Jan 2023 14:24:46 +0000
ROA not before: Sun 01 Jan 2023 14:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211432
IP address blocks: 178.255.221.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:b8:81:f8:20:ae:bf:11:38:89:4d:ba:4e:25:2e:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e259d806139f953e47c350904aaceec6cc39a1f
Validity
Not Before: Jan 1 14:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d3948e7620e2823988740cdd0626b4a7fd177c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:44:df:40:2a:dd:10:10:82:92:e9:38:fb:ea:
1d:40:72:ed:3d:ed:35:12:a3:24:2c:36:ca:1a:66:
6c:c3:27:ce:a2:20:81:d4:fd:0d:f1:aa:12:7f:5f:
74:f3:d2:bc:94:28:27:58:e5:7e:86:01:32:04:9c:
c0:47:ab:f4:2c:ef:8a:fc:fc:38:a7:f3:67:2a:22:
ed:72:f4:70:f3:a0:b4:22:7b:35:4c:63:8f:4b:53:
f6:58:25:c5:e2:4a:e0:b4:89:1f:f7:be:59:3a:78:
4f:2c:11:72:b1:fa:02:1f:7e:0e:d0:ca:95:9c:d4:
60:04:c6:59:74:e5:36:7b:da:fa:94:7e:79:71:7f:
57:77:e4:f7:06:04:96:6d:15:fe:9d:be:3a:30:05:
b4:7f:72:3c:01:f6:29:d2:41:8d:56:26:ad:c4:da:
b9:8d:cc:48:f7:ca:fd:31:4d:de:d0:67:53:ad:cb:
f2:a2:91:13:69:bf:7c:d1:ef:f9:90:a5:12:17:6f:
e2:c5:e2:0b:45:26:cd:f0:0c:fa:92:62:bd:9f:b3:
1e:dc:e3:90:ac:f1:67:74:03:fb:09:20:af:2c:bd:
66:a0:68:e0:60:44:4b:94:25:cc:0a:ea:78:bd:b8:
a5:67:65:ab:0d:8d:09:c4:04:0a:f9:6e:40:1b:26:
9a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:39:48:E7:62:0E:28:23:98:87:40:CD:D0:62:6B:4A:7F:D1:77:C2
X509v3 Authority Key Identifier:
keyid:4E:25:9D:80:61:39:F9:53:E4:7C:35:09:04:AA:CE:EC:6C:C3:9A:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TiWdgGE5-VPkfDUJBKrO7GzDmh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/71c5fd-e36f-42f6-926b-58a2457c6fd5/1/fTlI52IOKCOYh0DN0GJrSn_Rd8I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/71c5fd-e36f-42f6-926b-58a2457c6fd5/1/TiWdgGE5-VPkfDUJBKrO7GzDmh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.255.221.0/24
Signature Algorithm: sha256WithRSAEncryption
03:49:fd:e2:e3:88:ca:c1:b1:88:c0:34:42:0a:a4:72:49:dc:
79:3a:2d:b3:35:41:63:d8:4c:95:8c:e2:3d:19:f6:b5:ef:f3:
57:42:93:66:7c:ce:7d:a7:bc:6f:7e:e9:f1:3b:bf:99:0a:5e:
89:6e:0c:5b:32:cd:30:01:3c:d9:a9:06:ee:a9:1a:79:0d:51:
a5:cc:62:da:50:ba:66:01:0d:34:45:45:1c:ca:79:b9:03:3d:
9e:7d:5c:02:88:e2:3b:e0:17:fb:db:c5:d7:6b:61:d7:e9:33:
0d:ce:c2:51:1e:75:71:38:2e:0e:6c:4d:b0:97:58:b8:a8:25:
c9:ef:c0:29:4e:45:ba:84:1d:b1:87:6a:15:f8:be:7c:bf:47:
0c:6d:07:fc:0d:29:82:7b:08:8b:80:00:63:d5:8e:02:f6:de:
dc:e0:ef:60:7d:ea:be:80:1f:56:76:3f:8f:22:5d:4f:6f:82:
44:e1:af:53:db:c3:6c:45:33:51:20:ae:f8:51:fb:81:60:6b:
69:6a:c2:a0:d6:5b:2d:d7:63:94:45:2c:dc:80:a9:d6:2e:78:
ab:ae:1c:71:fc:22:16:fa:64:56:be:c5:f6:21:53:6a:70:f5:
b0:c9:d2:3d:4e:70:fb:af:80:b4:e8:98:4d:ff:3e:a6:3c:35:
5c:89:32:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:29 2024 by rpki-client on console-ams.rpki-client.org