Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/ea6a7d-c99e-47e7-9b8c-5f005e3f12ed/1/HxGRjeAHDnOBd3UZm0nJh5JP0nE.roa
File: HxGRjeAHDnOBd3UZm0nJh5JP0nE.roa (raw, json)
Hash identifier: DVxL9CIS0srl8yY6qESr0HhJdnG1eveZFr+po9MDWQU=
Subject key identifier: 1F:11:91:8D:E0:07:0E:73:81:77:75:19:9B:49:C9:87:92:4F:D2:71
Certificate issuer: /CN=9dd989234f75ae04de30653ae14139f9dc609ac1
Certificate serial: 0BA26B2E
Authority key identifier: 9D:D9:89:23:4F:75:AE:04:DE:30:65:3A:E1:41:39:F9:DC:60:9A:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ndmJI091rgTeMGU64UE5-dxgmsE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/ea6a7d-c99e-47e7-9b8c-5f005e3f12ed/1/HxGRjeAHDnOBd3UZm0nJh5JP0nE.roa
Signing time: Sat 01 Jan 2022 05:00:39 +0000
ROA not before: Sat 01 Jan 2022 05:00:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59746
IP address blocks: 46.16.196.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 195193646 (0xba26b2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dd989234f75ae04de30653ae14139f9dc609ac1
Validity
Not Before: Jan 1 05:00:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f11918de0070e73817775199b49c987924fd271
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:30:56:dd:41:4f:61:5d:35:bf:06:fe:e2:7a:
c9:7d:69:29:e6:09:a7:c9:9c:2d:9f:37:c4:e5:e0:
6d:7f:fa:e6:7d:c0:06:4c:a6:e8:a8:60:fa:39:c6:
3a:7e:3a:e5:71:a0:95:76:96:21:3f:14:09:d8:4e:
51:f8:3e:89:70:e4:7b:51:67:93:1e:f1:dc:3a:3a:
af:14:5c:74:99:70:7b:c0:ca:f1:ea:8b:a9:95:dc:
4c:c0:b7:5f:33:d4:0c:f1:d8:ad:a7:31:6d:69:e3:
6e:a0:f9:04:58:a0:82:d7:b3:22:51:1a:93:08:8d:
cb:f4:dd:08:5a:df:45:ed:f4:63:06:6e:6c:ad:ba:
75:ef:ea:f1:12:bc:05:41:7d:1e:59:31:11:07:46:
4f:4d:ac:9c:cb:d6:c9:4d:da:97:ec:f7:8d:68:ba:
57:77:40:d7:9f:f9:67:c3:d8:a9:95:2a:43:56:85:
13:af:d1:c1:75:98:9f:27:81:0c:ae:2b:6f:f6:d2:
8f:03:3f:92:5f:20:7c:24:b3:83:9b:52:f9:3b:af:
79:56:df:11:cf:1d:bc:f5:30:d9:c2:42:36:e0:67:
1e:40:94:cd:c0:9e:a9:42:2e:ce:64:d8:aa:c8:cb:
7f:ed:d1:fa:70:6a:44:61:15:41:e8:88:d2:ff:2c:
71:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:11:91:8D:E0:07:0E:73:81:77:75:19:9B:49:C9:87:92:4F:D2:71
X509v3 Authority Key Identifier:
keyid:9D:D9:89:23:4F:75:AE:04:DE:30:65:3A:E1:41:39:F9:DC:60:9A:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ndmJI091rgTeMGU64UE5-dxgmsE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/ea6a7d-c99e-47e7-9b8c-5f005e3f12ed/1/HxGRjeAHDnOBd3UZm0nJh5JP0nE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/ea6a7d-c99e-47e7-9b8c-5f005e3f12ed/1/ndmJI091rgTeMGU64UE5-dxgmsE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.16.196.0/24
Signature Algorithm: sha256WithRSAEncryption
77:eb:c0:11:30:3b:33:f4:b1:99:a4:2c:ab:4b:85:16:b8:a6:
a8:f2:17:18:4e:0a:05:d5:3e:d0:e5:8d:72:ad:76:65:75:05:
af:13:44:1d:35:23:96:fe:a6:98:ea:3b:97:09:db:b7:d2:e4:
e4:87:a1:7f:67:a5:d6:b3:a1:3f:9d:8f:02:3c:80:4c:8b:87:
a0:5f:45:a5:6c:d0:8b:c6:d2:db:99:3d:4e:b5:57:b2:7a:7f:
9b:d1:16:5a:3e:e9:7e:e8:ae:d5:d1:ba:8d:8a:5f:e8:69:5e:
3d:f4:7b:c0:da:aa:af:47:85:81:69:04:93:c3:1b:fb:3a:aa:
b8:a7:37:6d:3c:56:a5:92:33:d0:a5:e3:05:91:40:03:61:73:
87:a0:4f:1b:a6:fc:d9:1f:5d:14:d6:3f:e4:f2:c3:b6:77:83:
c8:e0:73:bb:47:db:bf:8b:c5:75:ec:75:ec:68:c3:fa:50:f0:
41:d5:d7:b4:7f:67:3b:04:89:7d:2b:66:36:df:3a:0c:ab:93:
9a:79:ee:17:83:39:d1:04:67:78:6d:0a:ae:ae:2f:56:08:52:
2a:a7:64:2a:34:49:bf:35:d8:39:a2:a3:6d:ea:dc:6d:23:b4:
c1:36:cb:e3:d5:ae:8f:61:49:9f:56:e2:22:92:3c:a5:6d:7e:
42:45:9d:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:13 2023 by rpki-client on console-fra.rpki-client.org