Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/d23df1-07c8-4024-a186-48e1a9800202/1/QUzwYJUgZuZyEcR-jUGzjfXbxeE.roa
File: QUzwYJUgZuZyEcR-jUGzjfXbxeE.roa (raw, json)
Hash identifier: ofIERj+phjPlAspPmU96kYs8OUe9jB0ImC3nVoFXP2o=
Subject key identifier: 41:4C:F0:60:95:20:66:E6:72:11:C4:7E:8D:41:B3:8D:F5:DB:C5:E1
Certificate issuer: /CN=c1164bc2cdea83bc0365808ad7b5bbb418a34b07
Certificate serial: 01A69E
Authority key identifier: C1:16:4B:C2:CD:EA:83:BC:03:65:80:8A:D7:B5:BB:B4:18:A3:4B:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wRZLws3qg7wDZYCK17W7tBijSwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/d23df1-07c8-4024-a186-48e1a9800202/1/QUzwYJUgZuZyEcR-jUGzjfXbxeE.roa
Signing time: Mon 20 Jun 2022 11:20:01 +0000
ROA not before: Mon 20 Jun 2022 11:20:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50774
IP address blocks: 193.108.143.0/24 maxlen: 24
193.108.142.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108190 (0x1a69e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1164bc2cdea83bc0365808ad7b5bbb418a34b07
Validity
Not Before: Jun 20 11:20:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=414cf060952066e67211c47e8d41b38df5dbc5e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:9c:3f:ed:bf:f0:1b:23:51:eb:21:5f:90:75:
01:62:eb:04:99:f5:c0:8b:6a:df:c2:f5:fe:71:cb:
96:d9:e5:a2:39:05:91:76:2e:82:ab:9a:d6:85:17:
3b:3c:48:42:e8:ed:8c:a0:ec:5c:7a:d3:16:ae:46:
d4:4e:6a:54:77:21:b1:f3:07:32:aa:2b:eb:44:af:
53:d3:a3:93:46:a0:7e:4e:76:96:9b:fc:0d:7e:99:
50:86:99:74:1c:0e:1e:1e:13:09:9e:b1:c1:67:40:
dc:27:39:3c:98:cf:c3:08:11:ca:71:32:1f:53:f1:
ca:c0:1d:5d:bf:5a:08:13:7b:ca:5b:e6:e9:45:66:
5b:cb:cb:c7:f9:79:3f:ee:b0:af:70:86:61:7e:26:
23:af:6a:d9:a3:17:db:a7:29:54:a0:05:81:84:08:
3a:a4:18:de:7f:39:e8:33:1f:86:ee:4d:29:58:de:
45:a8:ad:b7:72:27:1b:2f:b6:cf:37:9f:f4:67:5e:
3a:0e:82:54:2c:07:ff:38:19:98:6d:55:87:9c:c5:
74:06:6e:86:54:56:24:0e:36:78:90:0b:b2:ea:29:
c8:c5:64:d2:58:35:ea:1e:ba:9d:56:84:95:e9:6b:
ee:46:71:dd:a2:01:c3:9d:ba:50:d5:df:13:db:de:
3a:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:4C:F0:60:95:20:66:E6:72:11:C4:7E:8D:41:B3:8D:F5:DB:C5:E1
X509v3 Authority Key Identifier:
keyid:C1:16:4B:C2:CD:EA:83:BC:03:65:80:8A:D7:B5:BB:B4:18:A3:4B:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wRZLws3qg7wDZYCK17W7tBijSwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/d23df1-07c8-4024-a186-48e1a9800202/1/QUzwYJUgZuZyEcR-jUGzjfXbxeE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/d23df1-07c8-4024-a186-48e1a9800202/1/wRZLws3qg7wDZYCK17W7tBijSwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.142.0/23
Signature Algorithm: sha256WithRSAEncryption
a4:c0:f0:f1:1e:42:de:da:be:9d:ea:5d:63:3b:5f:4f:a8:fb:
a6:75:1b:e3:cd:03:a2:07:b1:b1:45:64:b3:72:03:f9:fb:95:
35:1e:ed:1f:55:58:4b:9b:fb:98:76:d8:72:5a:1f:42:0c:e8:
76:06:28:d6:79:25:e3:bb:d8:36:a0:d3:22:4e:4b:86:cc:20:
1f:f0:d5:13:9f:a8:f6:b2:00:fe:86:e9:a4:3b:e4:8a:84:57:
b2:d9:2c:15:77:88:fe:42:1f:2e:e1:b7:ef:99:51:75:8f:e5:
78:d4:0b:4b:f5:9b:2a:b6:11:a7:75:c5:ad:09:c7:90:7b:55:
87:2a:51:c3:a7:25:a8:2d:0d:c8:b2:20:c8:d4:20:c3:7e:b0:
c9:5d:fc:c2:96:88:8a:75:48:fe:1c:c1:2c:ef:db:82:7a:a0:
8f:ad:0c:22:a2:7b:a7:6b:3b:f8:b3:e8:ac:29:cb:0c:88:ae:
a5:cf:af:ec:50:45:b1:af:bd:96:be:fb:ce:32:1e:28:28:4d:
96:b5:66:52:5d:8a:cc:4f:1e:e2:d8:a9:2a:6d:27:87:a6:e4:
86:08:86:30:c9:20:2f:15:c1:46:59:2f:47:23:36:0d:d9:10:
65:38:0a:88:3c:77:c3:90:6d:2a:51:38:af:1e:2e:c5:c5:b3:
ca:91:42:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:04 2023 by rpki-client on console-fra.rpki-client.org