Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/2a4b7d-0372-41bf-bf38-796b059a3b93/1/Pq3O5PswqjPyLbh1Z4ZdcrZRa6Q.roa
File: Pq3O5PswqjPyLbh1Z4ZdcrZRa6Q.roa (raw, json)
Hash identifier: 8Gx3iFUheWxG96zloqCMuX4HUZE15LNqW8Iwp8Qa/GY=
Subject key identifier: 3E:AD:CE:E4:FB:30:AA:33:F2:2D:B8:75:67:86:5D:72:B6:51:6B:A4
Certificate issuer: /CN=b536bd81b38c70bf1fb259bc9752eacebe55b738
Certificate serial: 08E485B9
Authority key identifier: B5:36:BD:81:B3:8C:70:BF:1F:B2:59:BC:97:52:EA:CE:BE:55:B7:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tTa9gbOMcL8fslm8l1Lqzr5Vtzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/2a4b7d-0372-41bf-bf38-796b059a3b93/1/Pq3O5PswqjPyLbh1Z4ZdcrZRa6Q.roa
Signing time: Sat 01 Jan 2022 09:55:30 +0000
ROA not before: Sat 01 Jan 2022 09:55:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209986
IP address blocks: 194.39.160.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149194169 (0x8e485b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b536bd81b38c70bf1fb259bc9752eacebe55b738
Validity
Not Before: Jan 1 09:55:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3eadcee4fb30aa33f22db87567865d72b6516ba4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a6:7b:cf:6a:9f:b5:68:f9:8d:31:03:e5:2d:
29:65:f1:49:a7:18:ef:21:c0:d9:39:15:2c:32:33:
c6:41:41:c0:93:a1:85:6c:54:78:ca:3d:55:08:e8:
8e:32:2a:ad:6f:84:46:2c:a7:51:ac:bb:87:eb:8b:
d3:ba:ec:9d:c2:d4:05:c8:1f:16:7f:03:9e:f5:54:
41:b6:5b:c0:4e:c9:eb:05:56:90:45:33:8e:01:7a:
3f:b1:d2:e7:b2:45:ca:82:77:e1:a5:ec:8b:15:c6:
ed:de:33:5e:90:ce:73:3c:a9:a5:5f:1a:a2:ea:0f:
45:ea:36:a4:10:fa:95:cf:76:9b:79:ec:7b:e0:91:
e6:5e:f2:82:d9:ce:1b:4c:88:22:13:9c:8f:27:bc:
cb:e9:2e:07:82:95:90:8c:6a:92:b8:4f:97:84:25:
18:bc:0a:36:3a:b8:21:76:12:98:c5:56:9a:92:f7:
4e:ed:15:6c:50:b0:5c:c7:99:84:71:34:63:60:20:
dd:90:b4:3c:b9:bd:dd:c0:11:5a:32:2d:e4:a4:39:
63:46:08:65:b0:37:a0:0a:0d:7a:89:bc:44:bd:f8:
af:f4:03:74:86:df:cc:e1:0f:24:a2:d6:1e:1f:af:
05:ee:b8:5d:36:7c:fb:56:02:5b:76:94:bd:fa:51:
c0:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:AD:CE:E4:FB:30:AA:33:F2:2D:B8:75:67:86:5D:72:B6:51:6B:A4
X509v3 Authority Key Identifier:
keyid:B5:36:BD:81:B3:8C:70:BF:1F:B2:59:BC:97:52:EA:CE:BE:55:B7:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tTa9gbOMcL8fslm8l1Lqzr5Vtzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2a4b7d-0372-41bf-bf38-796b059a3b93/1/Pq3O5PswqjPyLbh1Z4ZdcrZRa6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2a4b7d-0372-41bf-bf38-796b059a3b93/1/tTa9gbOMcL8fslm8l1Lqzr5Vtzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.39.160.0/22
Signature Algorithm: sha256WithRSAEncryption
9d:64:40:8e:d2:0c:85:73:c5:fb:d0:39:07:7c:59:d4:21:6c:
69:13:7c:d9:6f:4a:fb:5c:49:9b:4e:a1:bc:96:d3:cd:69:a9:
ce:27:88:84:ac:18:44:54:ac:f1:61:f7:32:73:2d:d1:85:48:
4f:64:79:4b:1b:2b:fc:d9:4c:46:77:6b:e4:e3:34:c2:af:dd:
a1:b6:59:88:e1:b7:e6:31:9d:2a:14:94:07:df:fa:b2:38:b3:
80:83:a8:26:eb:06:4e:52:d5:72:87:2a:aa:2c:1b:b2:e4:bf:
cf:49:ab:d1:9a:e7:21:40:32:07:de:3f:74:34:1b:14:c6:0f:
a4:93:05:5d:73:73:12:7d:ef:dc:14:76:37:a3:64:64:5f:42:
f9:bb:54:a4:83:59:f8:f3:37:e2:8e:70:0a:22:bc:1a:50:ec:
06:22:19:4d:d4:64:e4:bf:0c:fb:85:21:da:bc:9b:18:f1:e1:
a3:0b:e1:d7:bf:36:91:f0:d8:de:52:42:41:ba:06:97:bd:f8:
38:92:bf:b5:9c:1d:7e:46:67:3b:bc:ba:f9:3d:83:10:a4:bf:
3f:1d:0c:e0:8b:01:d9:f2:20:31:8e:77:f2:83:ce:7d:3e:bf:
7c:3a:bf:cb:5b:75:d9:a1:96:23:e6:39:82:08:06:0f:6b:f2:
63:7f:7c:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:31 2024 by rpki-client on console-ams.rpki-client.org