Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/3882d1-7264-4cf5-8679-cb98a7b4ddf6/1/DQzj80Wvp8mRVJMD1BYc_idp6EY.roa
File: DQzj80Wvp8mRVJMD1BYc_idp6EY.roa (raw, json)
Hash identifier: iiqFQNqvvmiiQh25D7PCZRpP4UnjHWIif4usZtWYbU0=
Subject key identifier: 0D:0C:E3:F3:45:AF:A7:C9:91:54:93:03:D4:16:1C:FE:27:69:E8:46
Certificate issuer: /CN=0672be0a174c6a9373c2509ba8fb146260b04430
Certificate serial: 04142B
Authority key identifier: 06:72:BE:0A:17:4C:6A:93:73:C2:50:9B:A8:FB:14:62:60:B0:44:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BnK-ChdMapNzwlCbqPsUYmCwRDA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/3882d1-7264-4cf5-8679-cb98a7b4ddf6/1/DQzj80Wvp8mRVJMD1BYc_idp6EY.roa
Signing time: Thu 03 Feb 2022 16:40:53 +0000
ROA not before: Thu 03 Feb 2022 16:40:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 193.163.45.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 267307 (0x4142b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0672be0a174c6a9373c2509ba8fb146260b04430
Validity
Not Before: Feb 3 16:40:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0d0ce3f345afa7c991549303d4161cfe2769e846
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:2c:39:8e:19:25:ad:d7:de:c7:ce:0e:be:b2:
e2:8c:02:42:8c:19:34:c6:89:ac:c7:14:de:18:15:
ee:23:1d:55:3e:bd:e0:e8:c9:44:80:08:8c:6f:ca:
88:8f:6a:e5:a0:4f:78:59:79:36:05:b9:f8:b1:b0:
83:56:37:5e:31:a9:2a:c0:da:c9:f4:a6:51:a8:55:
ba:f9:bd:48:69:bb:e6:1c:4a:0e:7d:59:30:db:5e:
42:8c:24:3d:fc:98:34:59:ce:ac:99:74:34:11:12:
ff:de:63:41:11:15:24:36:8d:f2:c0:12:c5:36:2b:
9e:29:32:41:61:91:03:09:95:d3:d7:76:50:75:50:
72:03:d2:5a:aa:cb:5b:31:9f:43:29:15:61:18:96:
1a:e5:f2:aa:60:cc:08:bf:47:e7:a8:93:2f:9b:07:
7d:ce:ca:71:93:a8:eb:60:98:71:bf:3b:8b:b3:94:
8f:94:50:4a:fe:96:29:79:30:75:be:76:c9:3c:02:
8a:a5:34:d4:68:ae:93:8c:a0:04:32:e2:6b:85:84:
64:fd:a7:ef:4f:35:57:64:ee:94:14:df:c1:2f:6f:
e8:b9:37:19:10:10:7d:0c:2f:4e:89:fb:0e:48:ba:
0e:91:5c:85:fe:b7:92:04:37:bd:33:ec:cd:21:1e:
9f:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:0C:E3:F3:45:AF:A7:C9:91:54:93:03:D4:16:1C:FE:27:69:E8:46
X509v3 Authority Key Identifier:
keyid:06:72:BE:0A:17:4C:6A:93:73:C2:50:9B:A8:FB:14:62:60:B0:44:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BnK-ChdMapNzwlCbqPsUYmCwRDA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/3882d1-7264-4cf5-8679-cb98a7b4ddf6/1/DQzj80Wvp8mRVJMD1BYc_idp6EY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/3882d1-7264-4cf5-8679-cb98a7b4ddf6/1/BnK-ChdMapNzwlCbqPsUYmCwRDA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.45.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:9e:72:44:b3:2d:b3:00:56:ec:43:c6:92:a6:a1:53:82:28:
6c:57:53:d9:7c:7d:e1:d4:2c:a5:9f:6f:33:e0:e1:0c:5d:d2:
8f:7e:64:25:f0:75:41:4b:cc:aa:ee:df:6c:5a:58:51:3d:6e:
01:85:48:f4:e8:0d:43:1b:80:2a:61:42:57:26:94:b8:bd:d0:
1b:61:57:bb:68:b1:c0:75:43:f3:74:4e:b9:c3:09:55:5c:60:
82:c7:15:1e:73:41:de:d9:c2:26:6c:bf:33:d3:c8:80:cf:46:
69:6a:2c:6d:b2:f1:2d:c9:80:af:b1:6b:1e:e2:75:c4:9c:3f:
28:36:e6:98:fe:eb:9e:54:4a:8f:dd:85:8d:42:9c:4d:f2:b4:
e7:f8:56:a9:fa:0c:23:58:24:fe:53:0a:f9:4f:cd:3e:00:ef:
ce:0e:5f:43:be:af:39:e3:cc:c2:7d:17:04:43:ca:d1:3e:96:
a2:e4:59:f3:f9:9b:ca:ab:34:14:be:db:7b:8a:66:45:ae:a7:
fb:41:68:9c:91:db:eb:04:d5:78:bd:c8:d7:20:f4:85:7a:35:
34:c6:26:1d:d0:21:4c:0a:ed:20:02:0f:7f:84:a5:b7:08:0a:
b7:9c:21:75:5d:40:70:2c:23:82:30:71:97:3b:4e:23:32:28:
10:55:c2:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:50 2024 by rpki-client on console-ams.rpki-client.org