Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/3c521b-ded9-4046-bb80-7899624a4f58/1/1bEO8XsnttHj9pCdQMC3YU8A10o.roa
File: 1bEO8XsnttHj9pCdQMC3YU8A10o.roa (raw, json)
Hash identifier: j0X+PvkoreCrMtAaTutDWsW17O17kc027xc4j2snmTE=
Subject key identifier: D5:B1:0E:F1:7B:27:B6:D1:E3:F6:90:9D:40:C0:B7:61:4F:00:D7:4A
Certificate issuer: /CN=ebd6fc5158ee3ec21a421d718234c8d8a3361fa6
Certificate serial: 07AB148F
Authority key identifier: EB:D6:FC:51:58:EE:3E:C2:1A:42:1D:71:82:34:C8:D8:A3:36:1F:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/69b8UVjuPsIaQh1xgjTI2KM2H6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/3c521b-ded9-4046-bb80-7899624a4f58/1/1bEO8XsnttHj9pCdQMC3YU8A10o.roa
Signing time: Sat 01 Jan 2022 07:03:07 +0000
ROA not before: Sat 01 Jan 2022 07:03:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28907
IP address blocks: 193.178.144.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128652431 (0x7ab148f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebd6fc5158ee3ec21a421d718234c8d8a3361fa6
Validity
Not Before: Jan 1 07:03:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d5b10ef17b27b6d1e3f6909d40c0b7614f00d74a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ba:d0:9b:eb:8b:4b:bf:34:61:5a:a9:6e:d9:
73:c6:e8:6e:cf:97:e2:ba:1d:8a:07:d8:d3:62:f2:
38:95:dd:e0:b5:64:97:9a:a7:15:01:6b:14:fb:38:
1f:fd:d3:7e:50:a7:0a:d9:05:82:e5:cd:e0:2b:fd:
81:fd:fe:aa:d0:79:b9:ee:2f:00:ed:f3:30:5a:22:
ee:0b:ae:a3:53:ab:15:fb:7a:72:d9:4a:04:1a:e9:
36:70:43:53:53:c2:dc:27:14:20:8c:f0:6c:1e:d9:
22:ed:08:32:66:85:6a:ed:34:12:03:04:f7:8f:03:
b8:44:9e:14:6c:9a:7b:c7:51:56:12:55:c0:b2:60:
06:b1:94:d1:21:1b:7b:11:88:ea:ca:d7:25:e8:16:
d5:4e:a9:d9:97:48:4e:87:c5:fa:48:a1:72:f4:44:
9f:66:72:67:7e:b3:6f:42:89:39:fa:c7:74:4e:ca:
dc:0f:7a:d5:1a:bc:14:c3:14:40:46:40:21:12:fd:
b4:b7:68:53:ab:56:f0:9a:d9:95:31:04:41:95:60:
2b:ab:f4:d7:67:77:bd:12:c3:11:0d:03:1a:31:27:
ba:77:c8:e6:f9:56:3b:11:80:b9:c7:9e:ea:89:d1:
8e:c7:9f:b9:dc:22:47:c2:fe:f3:76:73:24:37:67:
b5:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:B1:0E:F1:7B:27:B6:D1:E3:F6:90:9D:40:C0:B7:61:4F:00:D7:4A
X509v3 Authority Key Identifier:
keyid:EB:D6:FC:51:58:EE:3E:C2:1A:42:1D:71:82:34:C8:D8:A3:36:1F:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/69b8UVjuPsIaQh1xgjTI2KM2H6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3c521b-ded9-4046-bb80-7899624a4f58/1/1bEO8XsnttHj9pCdQMC3YU8A10o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3c521b-ded9-4046-bb80-7899624a4f58/1/69b8UVjuPsIaQh1xgjTI2KM2H6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.144.0/22
Signature Algorithm: sha256WithRSAEncryption
24:21:bf:02:fe:77:53:3a:01:a8:25:78:88:3a:b7:e2:da:21:
b4:ea:ce:8e:55:96:18:f6:7e:23:3d:5c:b0:8e:0a:b7:a9:39:
3c:ae:43:d8:70:43:3a:71:80:2f:fb:b1:b3:cf:a6:42:84:3d:
26:2b:d4:a7:f5:e9:05:52:c7:d0:4d:8f:c0:d9:bd:9f:6f:ce:
84:9d:19:37:d6:e3:56:45:89:a9:10:98:64:6f:ed:ef:f8:3f:
8c:d2:a8:27:87:2f:87:ee:06:d9:46:29:ed:92:08:72:01:df:
29:7d:16:d6:e5:58:8a:04:04:06:05:bc:ed:50:74:f2:c5:a4:
dc:9a:22:ee:14:2f:35:cf:ee:59:33:8d:a3:0f:20:a9:1e:2c:
75:ce:ec:fb:08:81:56:e0:30:01:d0:53:38:d1:c6:4c:e8:03:
73:31:f5:92:bc:78:af:d4:1d:aa:af:fb:d8:fe:70:30:ce:57:
73:82:8b:e5:ce:d4:9b:d4:ce:28:40:c5:e4:de:5a:75:e8:b1:
6d:35:fe:64:eb:0c:07:19:8b:c0:ff:a3:70:3b:37:ab:70:19:
5a:6a:33:94:45:f8:07:8a:24:2f:1b:9d:65:5f:d7:c0:f6:37:
5f:ba:5a:d8:9b:5d:6e:65:60:a7:f9:bf:0b:07:7d:38:a1:0e:
a8:1e:7a:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:52 2023 by rpki-client on console-fra.rpki-client.org