Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/5z9G96Wfk3vNIciUuIY1Q4qQIC4.roa
File: 5z9G96Wfk3vNIciUuIY1Q4qQIC4.roa (raw, json)
Hash identifier: KUGUJ0gjBEwSd50tDK7alhtgSNPHPSOEJt5AiUXzHlc=
Subject key identifier: E7:3F:46:F7:A5:9F:93:7B:CD:21:C8:94:B8:86:35:43:8A:90:20:2E
Certificate issuer: /CN=45dab507c08976cc29d177373de627a1ce86efae
Certificate serial: 0DAFE38F
Authority key identifier: 45:DA:B5:07:C0:89:76:CC:29:D1:77:37:3D:E6:27:A1:CE:86:EF:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rdq1B8CJdswp0Xc3PeYnoc6G764.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/5z9G96Wfk3vNIciUuIY1Q4qQIC4.roa
Signing time: Sat 01 Jan 2022 08:59:37 +0000
ROA not before: Sat 01 Jan 2022 08:59:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201867
IP address blocks: 213.198.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 229630863 (0xdafe38f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45dab507c08976cc29d177373de627a1ce86efae
Validity
Not Before: Jan 1 08:59:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e73f46f7a59f937bcd21c894b88635438a90202e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:8e:20:32:de:66:75:93:c9:e3:47:3a:c8:18:
94:01:57:26:ab:14:48:7c:9e:75:c7:a2:00:db:de:
9c:3d:46:c5:79:ef:dc:33:13:d4:58:25:23:d7:0a:
4e:7f:74:0f:41:21:4f:d8:75:9e:54:fc:b0:2b:bf:
17:da:60:1f:d6:18:90:dc:26:1c:bd:2c:c0:1d:3a:
7a:be:d3:97:74:9c:78:77:0a:4a:89:fe:1f:ed:7e:
49:08:a3:73:08:b3:1a:13:f3:1f:1a:80:43:a3:3b:
6c:53:1c:ce:4a:17:09:48:ad:89:84:3a:85:d9:4e:
29:28:9a:cc:37:49:9a:9a:92:bf:62:2e:18:22:37:
66:6e:b0:d7:83:32:22:ce:bd:fc:90:3f:82:58:b7:
31:7c:bd:dd:a0:1c:0c:86:b4:a2:20:9b:3c:a8:b8:
75:8b:b1:64:1f:a2:47:d3:6e:e6:67:59:30:2a:10:
9e:b1:df:38:ef:7a:09:58:3a:a3:a8:90:20:30:23:
45:d7:54:e5:eb:52:c4:aa:c6:7f:ba:2f:c8:58:df:
6a:ed:b1:f8:04:51:72:46:07:32:99:72:7c:de:82:
32:95:c4:1d:e4:30:03:2c:e6:31:46:27:c1:2c:99:
0b:4b:e6:86:52:72:79:21:01:b3:fe:6e:3f:e3:b5:
6f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:3F:46:F7:A5:9F:93:7B:CD:21:C8:94:B8:86:35:43:8A:90:20:2E
X509v3 Authority Key Identifier:
keyid:45:DA:B5:07:C0:89:76:CC:29:D1:77:37:3D:E6:27:A1:CE:86:EF:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rdq1B8CJdswp0Xc3PeYnoc6G764.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/5z9G96Wfk3vNIciUuIY1Q4qQIC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/Rdq1B8CJdswp0Xc3PeYnoc6G764.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.198.29.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:cf:2d:08:a7:20:49:28:9c:3f:be:0b:70:db:bb:60:85:6d:
b9:4c:63:a9:45:fc:44:c5:18:dd:8b:1b:76:f2:8a:65:cc:9c:
57:00:14:96:b3:01:6c:9a:f7:24:d9:46:95:de:9d:02:43:32:
10:d1:7f:df:9c:f7:4b:6e:97:df:37:5a:34:49:aa:23:3a:80:
41:ef:f8:a3:75:b7:7b:f7:7b:a9:7b:c1:c7:d8:fe:bd:df:31:
73:14:46:67:60:4a:a0:2a:85:e0:cd:38:ad:77:7d:7b:ab:38:
4d:19:77:12:ed:83:f9:f8:07:43:f3:a3:3a:8b:dd:7a:a8:d3:
9d:09:89:11:53:a0:35:1b:1b:66:bb:ec:94:6a:ce:fb:38:3d:
bc:67:19:30:e4:09:1a:b1:85:6d:fd:67:76:c5:43:4c:be:59:
45:74:ca:f0:5a:1c:ab:63:6e:b7:16:6f:d4:f9:bc:77:35:93:
4c:8e:bf:3c:66:0c:78:cd:8e:e7:12:3e:7d:0b:a2:be:75:05:
5d:86:c2:69:b9:35:91:c7:9d:b2:6e:13:08:65:9b:bd:01:34:
00:e1:49:cf:ec:bf:c5:9e:95:ef:e5:f0:61:81:c1:c0:eb:2a:
4e:1d:d5:11:a8:67:1c:ba:20:13:54:e1:be:2a:6c:12:80:d4:
da:88:49:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:05 2023 by rpki-client on console-ams.rpki-client.org