Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/53fcaa-b721-462a-a607-3740507a2601/1/qTiWeB9kUb5uEKViq7dUwWFyuiM.roa
File: qTiWeB9kUb5uEKViq7dUwWFyuiM.roa (raw, json)
Hash identifier: 5uUk++sI1D+6/gd9cT1yztnXor1zM349YFu5S9eUdrw=
Subject key identifier: A9:38:96:78:1F:64:51:BE:6E:10:A5:62:AB:B7:54:C1:61:72:BA:23
Certificate issuer: /CN=98c11fd034eff9157554f55ee2834db3b29fcc35
Certificate serial: 018CC7270036460EF33917D76107BDABE566
Authority key identifier: 98:C1:1F:D0:34:EF:F9:15:75:54:F5:5E:E2:83:4D:B3:B2:9F:CC:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mMEf0DTv-RV1VPVe4oNNs7KfzDU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/53fcaa-b721-462a-a607-3740507a2601/1/qTiWeB9kUb5uEKViq7dUwWFyuiM.roa
Signing time: Mon 01 Jan 2024 22:31:11 +0000
ROA not before: Mon 01 Jan 2024 22:31:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42425
IP address blocks: 2.59.6.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:00:36:46:0e:f3:39:17:d7:61:07:bd:ab:e5:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98c11fd034eff9157554f55ee2834db3b29fcc35
Validity
Not Before: Jan 1 22:31:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a93896781f6451be6e10a562abb754c16172ba23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:33:0b:89:b6:60:be:7b:df:21:38:ac:bb:c7:
4c:64:13:f6:14:b2:16:13:89:d0:e1:41:23:8e:ae:
33:01:ac:26:c1:61:04:cd:23:35:3e:08:72:65:ba:
59:e7:ec:ae:f0:e4:4b:2e:27:8e:ef:c1:d3:dd:8c:
b4:76:93:43:75:32:c0:e0:3b:e2:d3:10:47:eb:8e:
e7:d0:25:9e:ce:93:b8:af:10:e9:e3:47:99:13:d4:
cd:79:e3:a0:97:20:5a:e4:97:03:9c:91:0b:c4:ba:
f5:c6:e4:7e:5e:81:1b:dd:71:dc:51:80:b0:03:04:
dc:1b:05:f8:6b:76:2b:d2:04:37:47:30:c2:6b:24:
fa:27:5e:38:ba:be:89:50:2a:f8:ad:2b:a3:bd:a3:
c3:dc:01:df:6c:96:f9:b8:9c:60:1d:a4:8a:6a:0c:
b8:7c:e1:d2:91:74:f2:f7:5a:f1:d8:1f:17:3c:04:
fa:eb:b8:d0:37:0e:89:ee:26:50:2d:e6:5f:37:42:
26:c4:79:9c:1c:25:4a:0c:4b:99:2b:36:a1:24:7c:
23:67:fb:7f:9a:ba:a9:20:90:4f:0f:be:d3:9e:d3:
7d:be:ed:2e:15:15:6a:60:a5:d9:45:e0:7a:8e:7d:
bc:c1:d0:b4:06:4c:d6:8b:b8:5a:72:40:9a:6b:2b:
2b:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:38:96:78:1F:64:51:BE:6E:10:A5:62:AB:B7:54:C1:61:72:BA:23
X509v3 Authority Key Identifier:
keyid:98:C1:1F:D0:34:EF:F9:15:75:54:F5:5E:E2:83:4D:B3:B2:9F:CC:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mMEf0DTv-RV1VPVe4oNNs7KfzDU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/53fcaa-b721-462a-a607-3740507a2601/1/qTiWeB9kUb5uEKViq7dUwWFyuiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/53fcaa-b721-462a-a607-3740507a2601/1/mMEf0DTv-RV1VPVe4oNNs7KfzDU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.6.0/24
Signature Algorithm: sha256WithRSAEncryption
83:67:ed:7d:a8:93:d1:f1:fd:02:77:a6:18:a3:d4:67:e0:d4:
05:04:ef:98:ee:b3:0c:3f:a1:7b:1b:33:48:c1:3f:e5:46:7f:
17:41:dc:f6:65:22:39:fc:b7:47:52:fe:e9:46:c2:ec:29:d6:
5d:05:71:b9:7f:b5:65:83:c2:bb:56:3f:4f:30:bd:35:77:30:
a3:f2:81:6f:1e:ce:7b:1e:bf:96:23:03:69:14:73:14:e5:fd:
87:06:68:2c:02:98:65:18:7e:32:88:d4:9d:12:e7:84:65:c7:
1e:c3:a1:22:44:3a:70:d5:87:57:5a:a0:cd:46:98:97:14:94:
05:1f:49:fd:73:4c:31:94:e7:5d:c2:0a:ea:59:6a:44:fa:f2:
a6:ef:ad:68:8a:7b:6e:db:24:c1:cd:e4:c7:7e:ad:1e:93:32:
08:c2:8a:61:fb:ec:d4:53:0d:c9:1d:de:36:cc:03:12:f1:83:
2c:70:79:c5:e4:66:ca:b7:38:9b:8d:90:33:2e:1a:be:91:4f:
69:ae:36:bd:5f:6e:b9:66:11:54:11:50:a0:d3:bb:8e:d2:e5:
44:51:75:83:7c:aa:12:6d:ce:45:d2:fc:ee:81:72:f8:c2:91:
00:8b:32:3d:0c:dc:51:69:f1:68:bd:c2:c3:b4:93:6f:83:83:
df:c0:45:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:41 2024 by rpki-client on console-fra.rpki-client.org