Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/be718b-92a9-444b-ae0a-f75e5d853176/1/1-XYu_jliE29ILeJ4-TRNoU8SHw.roa
File: 1-XYu_jliE29ILeJ4-TRNoU8SHw.roa (raw, json)
Hash identifier: oUQ736Cp7tHOgwEKLGEAivnMIYkTr51H7Zg7H8lTQKc=
Subject key identifier: D7:E5:D8:BB:F8:E5:88:4D:BD:20:B7:89:E3:E4:D1:36:85:3C:48:7C
Certificate issuer: /CN=07ad752bdd91a0d31640c42304cae2a82f817c75
Certificate serial: 01856FD5077EB7771743218EC46CA21999D5
Authority key identifier: 07:AD:75:2B:DD:91:A0:D3:16:40:C4:23:04:CA:E2:A8:2F:81:7C:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B611K92RoNMWQMQjBMriqC-BfHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/be718b-92a9-444b-ae0a-f75e5d853176/1/1-XYu_jliE29ILeJ4-TRNoU8SHw.roa
Signing time: Mon 02 Jan 2023 00:15:10 +0000
ROA not before: Mon 02 Jan 2023 00:15:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204687
IP address blocks: 37.16.74.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:07:7e:b7:77:17:43:21:8e:c4:6c:a2:19:99:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07ad752bdd91a0d31640c42304cae2a82f817c75
Validity
Not Before: Jan 2 00:15:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d7e5d8bbf8e5884dbd20b789e3e4d136853c487c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:89:35:70:b8:34:8b:31:e5:8c:7d:58:6e:46:
a3:96:23:ac:ff:ef:09:c3:c7:a4:92:dc:e8:88:19:
c4:55:22:da:f6:e0:df:df:62:3a:c3:b5:3b:db:d7:
df:9a:97:7d:fb:e2:03:46:50:6c:d8:63:4a:70:57:
c2:27:13:12:d8:fa:57:0c:fb:23:f3:3c:78:28:cf:
e7:51:6b:57:09:42:18:c5:01:f8:6f:26:68:e6:8d:
dd:e5:cd:ba:76:f2:f3:d5:b8:90:4d:60:ce:99:a6:
52:a8:ac:57:f6:f5:f8:48:39:eb:54:d1:2f:56:15:
59:8b:f2:62:37:2d:5d:56:a6:4e:d8:59:ef:0c:6c:
4d:12:aa:a7:12:d9:49:31:14:cd:8e:8f:a0:5d:60:
1e:f5:77:7c:ae:ea:57:3e:04:d8:48:81:39:39:b1:
f6:b8:d7:de:a5:a5:26:ad:9d:ae:a0:96:a0:34:1a:
4b:9d:be:84:13:1e:e1:7b:69:26:f8:66:91:34:c8:
6f:ce:b4:f6:73:78:2b:64:7f:1a:03:f6:8f:42:89:
e2:02:f5:93:03:17:ff:8a:05:86:1a:6c:f6:25:01:
e2:db:d6:69:a5:9b:33:de:d8:08:82:d1:c0:13:62:
96:8d:7e:61:cb:f1:8b:6a:5d:30:46:eb:5f:38:b4:
b0:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:E5:D8:BB:F8:E5:88:4D:BD:20:B7:89:E3:E4:D1:36:85:3C:48:7C
X509v3 Authority Key Identifier:
keyid:07:AD:75:2B:DD:91:A0:D3:16:40:C4:23:04:CA:E2:A8:2F:81:7C:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B611K92RoNMWQMQjBMriqC-BfHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/be718b-92a9-444b-ae0a-f75e5d853176/1/1-XYu_jliE29ILeJ4-TRNoU8SHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/be718b-92a9-444b-ae0a-f75e5d853176/1/B611K92RoNMWQMQjBMriqC-BfHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.16.74.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:38:2a:43:b1:82:b1:ee:ef:28:fd:25:07:f6:d8:33:c0:ae:
b6:4e:64:03:59:f7:d4:d1:7a:b1:4a:21:a7:c7:2c:7b:18:a5:
9e:b1:0b:4f:6d:87:9e:99:6f:f3:c2:b1:bc:d6:37:b0:8e:39:
a5:9a:c1:5e:77:62:9a:0d:8f:84:24:6e:6a:9c:72:63:94:30:
14:49:24:13:e6:80:2d:ab:2f:bf:b4:80:7c:48:94:34:61:53:
1c:56:20:b1:1a:2b:2a:bb:4b:77:c9:9d:eb:ba:00:f5:a9:ac:
20:25:ce:91:7c:44:de:4d:e4:80:b5:b9:ef:05:70:e0:f2:1e:
69:80:a0:6d:1a:17:79:5b:22:13:9e:73:8c:44:25:d5:6f:99:
a7:f7:ff:02:e7:88:94:95:8e:dd:21:84:ba:45:0b:a9:c1:a9:
a3:6e:45:7c:8a:c9:d9:1d:42:d8:61:d7:c5:74:cd:b8:fe:46:
45:cd:0c:77:95:b7:3f:e0:f9:60:15:d6:d6:53:65:05:3e:52:
63:67:fe:ac:45:6e:7c:4e:e8:1d:ea:6d:81:b1:42:86:4c:76:
93:55:d9:9b:41:2c:10:f1:a4:8a:ee:6d:f0:7c:88:20:ed:27:
f0:c5:4b:d0:f2:f0:1f:e9:27:4b:81:59:2d:28:1c:72:12:5b:
ff:6e:d7:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:45 2024 by rpki-client on console-ams.rpki-client.org