Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/_wckM-bY-nvLzmkT3wrufkackxE.roa
File: _wckM-bY-nvLzmkT3wrufkackxE.roa (raw, json)
Hash identifier: 1hwRodeIuMwehPa7HRoWcK2vZ0veOj3BCIxmQiCtuxw=
Subject key identifier: FF:07:24:33:E6:D8:FA:7B:CB:CE:69:13:DF:0A:EE:7E:46:9C:93:11
Certificate issuer: /CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Certificate serial: 01869DCA0AF0261EF8F8AE7E087ADFE96B06
Authority key identifier: 21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/_wckM-bY-nvLzmkT3wrufkackxE.roa
Signing time: Wed 01 Mar 2023 15:28:29 +0000
ROA not before: Wed 01 Mar 2023 15:28:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 141.98.72.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9d:ca:0a:f0:26:1e:f8:f8:ae:7e:08:7a:df:e9:6b:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Validity
Not Before: Mar 1 15:28:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff072433e6d8fa7bcbce6913df0aee7e469c9311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e3:4e:65:b6:ec:9d:28:75:a3:80:ea:e6:9f:
01:b4:23:20:c4:d0:f6:8f:08:a2:2d:9c:83:01:02:
6b:70:c1:1d:0f:ca:f4:8e:c1:17:8e:95:10:48:5e:
25:50:bf:c7:06:ab:83:f9:42:20:e5:96:27:e7:57:
3e:d2:9b:c8:6b:4d:7d:da:5e:23:87:00:c6:91:1e:
d4:18:2f:5e:ce:38:ec:56:b6:bb:60:6e:f9:0e:cd:
28:c2:0f:00:d5:ba:8f:37:eb:79:78:c9:93:9d:ec:
5b:d4:f6:2f:ea:56:ef:f8:48:87:40:e2:46:f6:a1:
cb:04:ff:99:6c:07:5f:60:0f:43:18:fb:c9:30:ac:
e9:b7:d3:50:fd:5c:8a:dc:92:34:26:47:2c:08:e6:
10:ce:2f:dc:81:0b:b7:a1:de:b3:b4:16:b9:1d:9a:
2c:b8:17:73:cd:7f:e4:b3:a6:8e:71:59:0d:9c:2b:
e6:f9:92:59:98:47:56:96:67:bb:a0:30:f2:bd:db:
49:58:76:da:d3:23:66:ef:f2:7a:71:aa:52:72:97:
b3:be:97:1a:f6:b5:1c:f9:5d:4a:1d:a2:71:03:ec:
e3:ef:e7:4b:45:c3:da:7f:b1:c2:08:7e:99:19:1d:
f9:8f:4c:0a:43:31:ea:14:c4:d8:84:bc:34:2a:a7:
89:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:07:24:33:E6:D8:FA:7B:CB:CE:69:13:DF:0A:EE:7E:46:9C:93:11
X509v3 Authority Key Identifier:
keyid:21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/_wckM-bY-nvLzmkT3wrufkackxE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/IYFM8so-F5k0nM1Mfmp21j-DSj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.72.0/23
Signature Algorithm: sha256WithRSAEncryption
75:d9:86:b5:10:f3:ba:23:ad:e3:f2:69:ed:1a:8c:1b:82:22:
0c:bf:96:ac:48:22:4e:db:f5:80:f5:5a:89:91:5c:b5:7a:70:
2f:03:a3:e3:65:1f:f9:ab:a1:89:3c:97:aa:24:91:97:58:9d:
16:d6:9f:33:21:fc:43:04:2d:f9:14:9e:50:e0:25:cf:6a:7d:
ff:ba:cf:83:11:39:89:db:45:69:e2:55:7c:9b:e6:37:9f:38:
ea:60:76:6a:d0:19:11:9c:8b:93:e0:33:a2:d5:65:91:02:a1:
fc:d2:d8:ba:94:31:d4:12:f0:8d:c8:90:73:18:ae:9e:3e:a4:
7a:33:79:0f:b6:fa:38:e2:d0:c9:a7:b1:a1:c1:70:35:c3:06:
ea:76:0f:c6:c2:85:eb:f6:5d:64:c3:de:36:ab:c2:16:4c:b0:
90:6f:9a:11:22:c1:5b:a9:6b:e4:d6:3a:f1:fe:a1:66:2f:d2:
1b:75:21:a1:1c:e3:6c:d6:8e:cb:c8:2e:ca:82:1a:05:7d:91:
b6:10:7c:fd:a9:91:50:1d:1b:6e:97:18:8c:24:b6:26:42:71:
31:70:ee:1c:18:d2:05:3f:e0:0e:d9:05:73:7e:1c:b9:fd:1e:
73:51:1e:4d:76:d9:0b:44:83:6d:a9:00:52:25:fa:3f:f2:01:
93:32:36:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:50 2024 by rpki-client on console-fra.rpki-client.org