Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/8f17fa-f428-4dd1-b28b-44362038d5d1/1/28rYmScgrlRVmE8-i722mVQL0SA.roa
File: 28rYmScgrlRVmE8-i722mVQL0SA.roa (raw, json)
Hash identifier: 0AkAcJ38WOoYhQTCGLMDIYoXT10tIteIgUWkIOr0Eh4=
Subject key identifier: DB:CA:D8:99:27:20:AE:54:55:98:4F:3E:8B:BD:B6:99:54:0B:D1:20
Certificate issuer: /CN=0141c53a7e41acca08f2ceb069a3cfff68f485eb
Certificate serial: 018456DD244F5CA323F5A93DD9FD2E58C05E
Authority key identifier: 01:41:C5:3A:7E:41:AC:CA:08:F2:CE:B0:69:A3:CF:FF:68:F4:85:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AUHFOn5BrMoI8s6waaPP_2j0hes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/8f17fa-f428-4dd1-b28b-44362038d5d1/1/28rYmScgrlRVmE8-i722mVQL0SA.roa
Signing time: Tue 08 Nov 2022 10:50:44 +0000
ROA not before: Tue 08 Nov 2022 10:50:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8100
IP address blocks: 194.49.86.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:56:dd:24:4f:5c:a3:23:f5:a9:3d:d9:fd:2e:58:c0:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0141c53a7e41acca08f2ceb069a3cfff68f485eb
Validity
Not Before: Nov 8 10:50:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dbcad8992720ae5455984f3e8bbdb699540bd120
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:98:93:e0:4b:b9:04:70:4b:6e:cf:ff:02:24:
6c:8f:ac:cf:74:e1:30:64:cb:db:98:92:9a:bb:4d:
03:b7:0d:60:4b:fe:58:b4:8a:9e:35:49:7d:e0:ef:
82:1a:8b:8d:09:37:60:f9:90:80:6a:7c:0f:1e:a3:
9f:49:93:99:98:71:a4:7f:c0:74:a6:52:74:4d:1e:
0d:05:0b:d0:41:69:c7:ab:d1:d7:21:a3:0c:e9:18:
93:aa:34:fb:f0:a1:07:aa:fc:4a:b9:3a:0a:73:2b:
1b:85:b2:45:b6:52:a0:d4:6b:db:1a:2c:3a:fa:65:
b0:ec:1d:4e:8f:42:68:7e:6c:5e:52:c6:77:d0:92:
b4:07:f3:3e:95:1a:85:98:33:de:c5:6d:dc:64:bb:
3f:55:7d:71:19:2f:05:ee:67:12:bd:4e:46:54:4e:
bc:67:7a:78:f0:a8:63:99:4b:79:48:33:0d:35:11:
55:5e:9e:a5:2f:b0:54:1e:81:f1:c2:42:0b:ef:a2:
f5:ac:f3:f5:23:6b:f7:9a:75:34:cf:61:9d:fc:01:
74:8f:d4:7a:3d:79:15:bc:d8:4e:90:ee:63:3b:09:
e4:ea:b7:c2:68:47:2b:81:f1:dd:91:b2:a4:9e:08:
e5:42:1e:76:99:3f:af:46:1b:9d:e3:0b:9d:60:43:
9e:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:CA:D8:99:27:20:AE:54:55:98:4F:3E:8B:BD:B6:99:54:0B:D1:20
X509v3 Authority Key Identifier:
keyid:01:41:C5:3A:7E:41:AC:CA:08:F2:CE:B0:69:A3:CF:FF:68:F4:85:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AUHFOn5BrMoI8s6waaPP_2j0hes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/8f17fa-f428-4dd1-b28b-44362038d5d1/1/28rYmScgrlRVmE8-i722mVQL0SA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/8f17fa-f428-4dd1-b28b-44362038d5d1/1/AUHFOn5BrMoI8s6waaPP_2j0hes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.49.86.0/24
Signature Algorithm: sha256WithRSAEncryption
78:1e:68:de:ea:da:56:f0:49:26:7d:8c:2a:c1:cf:6f:c6:c2:
cc:cc:ac:5c:ca:af:29:6c:73:5a:4a:ce:1b:f6:2d:3b:22:dd:
10:b8:49:f4:69:19:34:c7:e5:64:31:d6:ed:39:c7:b2:c8:f4:
be:20:58:ee:da:1f:91:b2:f2:8b:8a:91:8d:6c:e6:2f:a9:83:
cd:38:f8:01:1a:62:ed:54:10:bb:93:3b:2c:09:83:a9:5e:8f:
a8:9d:94:69:7d:04:d9:3c:a8:b2:02:44:07:d5:12:d5:f4:f3:
c7:8b:b1:e0:d0:04:70:21:37:85:db:9f:73:16:2d:69:e9:ab:
4a:27:c1:ed:43:c1:ee:52:54:8a:11:70:97:6c:e2:17:10:42:
00:1a:b3:a4:c8:2a:13:7a:68:c2:a9:b0:08:56:08:47:59:37:
67:81:00:94:57:8e:22:11:cd:10:84:e1:e4:20:74:36:85:d4:
cc:ca:98:13:c0:d1:d3:22:6c:22:8a:b7:e2:31:3c:b5:2f:24:
80:e5:21:bc:ff:22:2e:a6:51:47:b1:be:fc:2f:c9:4a:5b:a3:
bf:d8:e2:c9:3b:f2:90:28:24:c6:0e:9b:c9:b8:02:a4:ab:b9:
29:2f:78:09:7d:44:da:17:90:c7:22:76:73:64:41:1a:94:c8:
94:c3:63:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:53 2024 by rpki-client on console-fra.rpki-client.org