Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/d679cd-4b00-4fbd-82f4-b28dc2b6a46b/1/D4x2yWX58AhTbGRusRfnk67WHxY.roa
File: D4x2yWX58AhTbGRusRfnk67WHxY.roa (raw, json)
Hash identifier: uLxfRzToI8ksCdCqTbBf132H/+mCdGY9WqPaAeP+Nqg=
Subject key identifier: 0F:8C:76:C9:65:F9:F0:08:53:6C:64:6E:B1:17:E7:93:AE:D6:1F:16
Certificate issuer: /CN=8b7757d9165f0821228c742ada7b3fb6a3223f58
Certificate serial: 01178A70
Authority key identifier: 8B:77:57:D9:16:5F:08:21:22:8C:74:2A:DA:7B:3F:B6:A3:22:3F:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i3dX2RZfCCEijHQq2ns_tqMiP1g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/d679cd-4b00-4fbd-82f4-b28dc2b6a46b/1/D4x2yWX58AhTbGRusRfnk67WHxY.roa
Signing time: Sat 01 Jan 2022 06:02:25 +0000
ROA not before: Sat 01 Jan 2022 06:02:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 176.56.35.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18319984 (0x1178a70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b7757d9165f0821228c742ada7b3fb6a3223f58
Validity
Not Before: Jan 1 06:02:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f8c76c965f9f008536c646eb117e793aed61f16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:b7:a3:da:59:ae:aa:61:70:3b:95:11:75:64:
f0:c8:f9:be:1a:64:c8:46:26:82:98:5c:6c:8c:37:
27:4a:b3:35:d0:83:5c:36:09:ac:68:8b:33:d3:80:
e3:37:6b:09:46:31:df:95:9d:4e:90:66:a7:16:16:
ea:7c:80:54:5b:d2:cd:0f:b3:d3:49:7e:97:40:9e:
ab:44:f7:d5:f1:88:11:5a:1e:c7:82:0b:d6:7c:5c:
15:b2:c8:28:99:47:a4:3f:61:41:e3:20:2f:ec:ba:
85:ff:c8:e6:61:54:56:a7:26:c4:d2:83:b5:d2:ac:
23:77:ba:a7:a3:f2:89:d0:35:5f:74:dc:14:b9:ba:
be:37:2b:c3:8e:08:7e:64:38:5b:d1:87:ac:23:91:
34:4f:53:7e:04:bb:4c:25:bc:1f:e2:78:3d:b3:54:
5e:87:bb:f7:92:05:05:6c:52:12:0f:f8:dd:ec:c4:
33:ca:03:cd:df:de:95:1e:c5:a4:2d:a2:be:98:40:
b6:3a:ba:99:16:7c:66:5c:e6:8a:e5:c4:fe:bd:c8:
41:a4:4c:64:55:8b:34:1c:b5:17:b5:c9:8e:ae:af:
bc:7f:50:9b:14:91:7f:15:b7:b4:1b:c2:0d:27:a1:
22:f2:cf:8d:01:e7:3e:86:43:fd:2f:08:cb:df:73:
b3:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:8C:76:C9:65:F9:F0:08:53:6C:64:6E:B1:17:E7:93:AE:D6:1F:16
X509v3 Authority Key Identifier:
keyid:8B:77:57:D9:16:5F:08:21:22:8C:74:2A:DA:7B:3F:B6:A3:22:3F:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i3dX2RZfCCEijHQq2ns_tqMiP1g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/d679cd-4b00-4fbd-82f4-b28dc2b6a46b/1/D4x2yWX58AhTbGRusRfnk67WHxY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/d679cd-4b00-4fbd-82f4-b28dc2b6a46b/1/i3dX2RZfCCEijHQq2ns_tqMiP1g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.56.35.0/24
Signature Algorithm: sha256WithRSAEncryption
73:15:02:4d:3d:02:d9:7c:01:77:da:21:76:b5:a3:55:a8:6c:
9d:72:fb:dd:75:da:ab:33:5d:48:2e:21:ad:09:90:df:42:5f:
f4:97:37:b5:a7:66:24:9e:79:e5:06:c3:7e:f9:14:86:64:d7:
ee:19:9d:88:dd:61:69:19:c9:54:58:c8:79:a0:ea:01:02:b3:
a0:c7:6a:7b:11:fb:67:6d:65:50:cd:bc:cd:d1:bb:29:ed:cf:
1d:10:45:2e:76:83:5b:a2:b4:8c:b5:80:1d:94:a3:c5:fb:e1:
41:d1:91:45:91:90:42:df:4b:9f:f0:5d:54:b1:d7:57:31:82:
ec:35:27:96:84:65:92:66:6a:d3:fe:ae:a3:0e:f9:18:98:49:
04:f8:2b:16:88:c6:bf:60:d4:bd:92:08:c6:5c:54:60:40:53:
17:7e:94:42:dd:9c:10:25:b4:fb:0d:90:e4:7b:54:c0:1f:83:
0f:20:56:e9:69:f7:ad:2b:f9:04:0e:16:65:0e:7e:89:8a:5e:
64:ef:df:95:ea:a4:3b:a8:7f:1c:39:aa:24:99:7d:68:6a:15:
f1:f0:bd:dc:7d:01:0c:03:bd:a9:66:b7:cb:0c:82:4e:c0:af:
8f:8b:34:aa:7f:4a:ff:8f:6a:5e:0d:e8:06:93:4c:dc:04:05:
80:30:b2:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:10 2024 by rpki-client on console-ams.rpki-client.org