Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/fb012b-a231-4475-bf64-fe1d605f2f05/1/tdsX-nOdnQAbzakjCYE1wlhMQxg.roa
File: tdsX-nOdnQAbzakjCYE1wlhMQxg.roa (raw, json)
Hash identifier: iYsKWQu9okyHmF2cRynwpcBxo8d3TJxYGEX1l4vZTZQ=
Subject key identifier: B5:DB:17:FA:73:9D:9D:00:1B:CD:A9:23:09:81:35:C2:58:4C:43:18
Certificate issuer: /CN=d464fcbe7e193d272130756634f6474307480151
Certificate serial: 018B525184838E4C46886B4A11F3CD559CF0
Authority key identifier: D4:64:FC:BE:7E:19:3D:27:21:30:75:66:34:F6:47:43:07:48:01:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GT8vn4ZPSchMHVmNPZHQwdIAVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/fb012b-a231-4475-bf64-fe1d605f2f05/1/tdsX-nOdnQAbzakjCYE1wlhMQxg.roa
Signing time: Sat 21 Oct 2023 12:59:15 +0000
ROA not before: Sat 21 Oct 2023 12:59:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59853
IP address blocks: 178.216.246.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:52:51:84:83:8e:4c:46:88:6b:4a:11:f3:cd:55:9c:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d464fcbe7e193d272130756634f6474307480151
Validity
Not Before: Oct 21 12:59:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b5db17fa739d9d001bcda923098135c2584c4318
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:53:27:19:1d:03:7f:07:a7:ca:86:2d:cf:20:
ae:51:f7:4c:b0:7e:bc:b9:a1:cf:4f:6c:aa:ff:ca:
83:5d:24:b5:67:e9:d6:3a:8a:b9:72:68:a8:37:72:
2e:ca:cc:15:60:89:92:ab:7c:b1:a3:25:30:f8:28:
95:94:03:ad:1e:b2:4a:26:bb:f3:5e:8e:df:cd:d3:
47:89:67:28:42:b3:59:a7:eb:4a:d7:5e:2a:3f:91:
e5:ad:05:15:ed:98:f9:42:19:5e:7a:19:36:f8:e4:
ea:ea:8a:6b:8d:1a:38:99:d9:90:ba:ee:24:e3:5c:
c1:03:35:3e:1e:c3:d5:c1:de:69:69:85:3c:f1:86:
12:96:0a:d2:ce:48:a5:fe:10:de:6b:e6:13:46:c8:
8c:7a:d1:a2:84:44:6d:2d:d7:de:ea:13:4b:2c:d8:
87:02:97:24:42:42:6f:63:72:df:9f:73:c8:bc:b6:
1b:c8:b9:12:58:5f:40:24:75:0c:52:31:61:38:28:
8b:5a:d9:83:71:b0:fa:d7:5d:57:8f:d2:68:90:53:
ad:40:3b:7f:22:2c:9c:d5:27:3d:fe:46:89:e1:51:
aa:6b:6a:64:2b:11:35:66:c6:2c:b7:da:e7:a2:36:
3e:65:e4:71:1c:a0:60:8b:84:24:76:07:f8:fc:c8:
37:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:DB:17:FA:73:9D:9D:00:1B:CD:A9:23:09:81:35:C2:58:4C:43:18
X509v3 Authority Key Identifier:
keyid:D4:64:FC:BE:7E:19:3D:27:21:30:75:66:34:F6:47:43:07:48:01:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GT8vn4ZPSchMHVmNPZHQwdIAVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/fb012b-a231-4475-bf64-fe1d605f2f05/1/tdsX-nOdnQAbzakjCYE1wlhMQxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/fb012b-a231-4475-bf64-fe1d605f2f05/1/1GT8vn4ZPSchMHVmNPZHQwdIAVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.216.246.0/24
Signature Algorithm: sha256WithRSAEncryption
49:4c:69:59:c5:3f:ff:0a:06:f3:f0:72:f1:05:61:c3:46:e4:
48:4d:55:0c:12:96:ca:3c:a0:48:88:d9:ae:49:54:22:02:41:
df:63:5d:53:59:6f:87:96:0c:ae:36:33:f5:d1:af:c3:c6:21:
b7:c6:c7:29:ab:dd:d7:37:bc:ce:f2:53:1c:2c:c2:21:16:d8:
a9:82:7d:62:27:8e:3d:d9:52:c0:1b:9e:1b:2c:99:02:5a:c7:
42:3e:da:bf:9b:22:8c:c2:64:05:b6:32:0f:85:c4:1a:91:b5:
f4:cd:f5:42:ba:ad:e4:9e:5b:e6:fe:ea:f2:be:63:0e:23:1f:
c7:68:fe:b2:31:c6:f4:d1:d7:34:a6:48:f0:be:f7:8e:ee:58:
d0:41:b4:6d:66:4f:9d:a7:77:4a:62:ee:89:b4:d6:7d:5b:82:
62:b0:ee:6f:3a:a1:86:ae:c9:70:a0:85:91:d1:2e:c6:b4:93:
16:17:db:cb:33:f4:58:04:1e:73:39:87:df:b5:06:3a:a9:e1:
43:0d:7b:44:90:7d:e7:dd:c3:6d:dc:38:19:b0:ed:18:55:84:
2c:00:cb:5c:02:10:ea:71:14:e6:5f:dd:6e:7d:65:e5:d0:43:
d2:f1:8e:69:36:36:a6:5c:e8:7d:39:25:1e:a8:56:62:1c:ab:
ae:0a:54:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 9 15:20:02 2023 by rpki-client on console-fra.rpki-client.org