Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/AhzwTxFuPNRwXt6bHaYLqKWlHBw.roa
File: AhzwTxFuPNRwXt6bHaYLqKWlHBw.roa (raw, json)
Hash identifier: kuBoG/p8Of9ggtpUUGvoc9gIB0rcP+IMXVW9XVZ9Plg=
Subject key identifier: 02:1C:F0:4F:11:6E:3C:D4:70:5E:DE:9B:1D:A6:0B:A8:A5:A5:1C:1C
Certificate issuer: /CN=45dab507c08976cc29d177373de627a1ce86efae
Certificate serial: 01856F02297AA0C528A231EA1982871E4EB7
Authority key identifier: 45:DA:B5:07:C0:89:76:CC:29:D1:77:37:3D:E6:27:A1:CE:86:EF:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rdq1B8CJdswp0Xc3PeYnoc6G764.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/AhzwTxFuPNRwXt6bHaYLqKWlHBw.roa
Signing time: Sun 01 Jan 2023 20:24:50 +0000
ROA not before: Sun 01 Jan 2023 20:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201867
IP address blocks: 213.198.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:29:7a:a0:c5:28:a2:31:ea:19:82:87:1e:4e:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45dab507c08976cc29d177373de627a1ce86efae
Validity
Not Before: Jan 1 20:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=021cf04f116e3cd4705ede9b1da60ba8a5a51c1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:50:75:c1:a9:56:f3:c4:28:3a:8d:b3:b2:ad:
d7:0e:b0:cc:89:79:94:f2:5f:4c:96:17:3c:b3:e4:
5f:66:7a:3e:b6:af:87:76:09:1c:12:b3:8c:10:56:
18:d3:fe:f6:d2:8a:62:a4:79:05:52:d6:c9:e3:ec:
84:21:30:6a:be:50:81:1e:09:ec:f5:8b:85:40:87:
03:8a:26:f7:08:6d:71:23:ac:c1:f9:2c:75:18:49:
c2:3d:46:ac:4a:80:13:8d:dd:53:7f:fc:83:18:55:
b2:d2:64:3d:84:7c:74:a6:1c:2a:92:8f:83:9e:85:
80:4b:d8:39:61:59:28:ef:b0:91:e5:7c:ae:23:bf:
58:72:9a:00:4b:43:0a:98:f5:38:08:7a:1c:83:62:
3d:35:d9:21:26:c9:da:4e:b8:c8:35:c8:84:d6:12:
36:85:dd:f1:05:ab:c1:e3:c9:f7:68:23:09:eb:5e:
60:f0:60:4b:41:be:47:4f:ad:fe:c1:f3:b9:8a:dc:
6b:fc:b4:84:7f:54:f2:91:98:32:4b:07:4b:4a:c5:
00:e9:28:85:9b:76:e8:31:16:80:f5:93:a2:3e:6d:
67:86:b1:b3:17:8c:fc:f2:53:06:52:d1:3c:a7:c7:
e0:fa:53:58:9c:f5:48:52:86:d5:64:c4:ef:01:9e:
c5:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:1C:F0:4F:11:6E:3C:D4:70:5E:DE:9B:1D:A6:0B:A8:A5:A5:1C:1C
X509v3 Authority Key Identifier:
keyid:45:DA:B5:07:C0:89:76:CC:29:D1:77:37:3D:E6:27:A1:CE:86:EF:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rdq1B8CJdswp0Xc3PeYnoc6G764.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/AhzwTxFuPNRwXt6bHaYLqKWlHBw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/Rdq1B8CJdswp0Xc3PeYnoc6G764.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.198.29.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:1b:d7:a3:a4:92:3b:7c:a0:62:f3:75:7a:c5:53:d0:2c:35:
06:4c:91:2e:e5:4e:be:aa:74:33:b9:7e:25:b1:31:a9:29:ab:
99:b0:b2:50:b4:56:f7:77:36:2c:c6:63:8d:85:51:c1:08:73:
e8:a1:f8:c1:ed:8a:b5:6f:c4:dd:3c:34:07:f9:d5:23:fc:f9:
75:8f:de:6d:6a:d1:d3:c9:25:cc:2b:93:5a:c1:69:dc:a8:cf:
25:f2:f0:9a:55:cb:f5:84:ae:81:5b:3d:34:99:b5:ca:60:81:
3f:c1:c4:6c:4c:36:0f:e7:91:ec:70:da:fe:5e:5a:16:e3:65:
3d:fb:71:85:64:e4:83:cc:e8:84:f8:05:cd:4e:fd:d3:89:4c:
77:db:2b:89:cf:1e:4b:ad:2c:4b:9b:33:6b:60:18:ad:3c:fc:
86:00:02:70:96:24:29:a3:04:2f:81:74:6a:95:e0:6a:c8:e3:
0b:be:74:09:4d:90:6e:03:be:15:bf:12:5f:51:88:90:f7:33:
8d:08:5c:5f:6f:08:26:83:ec:66:0a:a4:f6:79:f4:be:66:5e:
15:66:8f:d6:95:71:44:47:f1:23:cb:04:d5:da:3a:c5:46:68:
a2:fb:13:bf:f6:99:ee:d5:7f:e3:c7:45:50:04:7f:51:84:2b:
91:28:96:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:13 2023 by rpki-client on console-fra.rpki-client.org