Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/426846-c9ec-472b-8bff-3b492f463bff/1/hweX1rzgFcWXYZRHYqDnVMLYgJM.roa
File: hweX1rzgFcWXYZRHYqDnVMLYgJM.roa (raw, json)
Hash identifier: 1G789GfMMeDUpwl1p6A2f461IxDjTl7Wl7l42Tex1gc=
Subject key identifier: 87:07:97:D6:BC:E0:15:C5:97:61:94:47:62:A0:E7:54:C2:D8:80:93
Certificate issuer: /CN=bcf38fb3c9b3908bd6fd4970288d21b855836174
Certificate serial: 01856E2F9E19F9C007477903309185DEEF76
Authority key identifier: BC:F3:8F:B3:C9:B3:90:8B:D6:FD:49:70:28:8D:21:B8:55:83:61:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vPOPs8mzkIvW_UlwKI0huFWDYXQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/426846-c9ec-472b-8bff-3b492f463bff/1/hweX1rzgFcWXYZRHYqDnVMLYgJM.roa
Signing time: Sun 01 Jan 2023 16:34:52 +0000
ROA not before: Sun 01 Jan 2023 16:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52000
IP address blocks: 194.104.128.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:2f:9e:19:f9:c0:07:47:79:03:30:91:85:de:ef:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcf38fb3c9b3908bd6fd4970288d21b855836174
Validity
Not Before: Jan 1 16:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=870797d6bce015c59761944762a0e754c2d88093
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:2a:96:50:2a:25:12:c0:57:20:0a:cb:30:14:
bf:9d:15:0b:5b:89:69:7d:c6:79:3d:19:3d:75:80:
c0:54:0e:0b:41:a3:aa:0b:a3:d3:dd:33:ef:4c:19:
0c:6f:6c:82:d5:64:69:5f:d9:09:b5:0b:c4:df:06:
9d:80:82:40:da:2c:83:0d:52:51:f9:85:28:54:d0:
d9:5e:81:61:02:49:e7:d7:8b:77:1a:ff:19:5f:3f:
4b:0f:23:b3:47:1d:bd:8e:61:14:04:3e:92:89:11:
e0:57:8e:5e:74:54:0f:f6:0e:db:09:e9:0f:61:f1:
8f:36:06:4f:a1:30:88:2f:b0:54:6e:56:8f:0c:83:
61:72:f3:3c:ea:40:6f:f3:5d:c6:b0:f1:91:e6:79:
68:c8:3b:70:52:9a:b3:3f:55:75:28:58:73:03:32:
b6:90:52:8a:96:19:19:90:eb:79:cf:5c:85:02:24:
f4:14:d6:61:ea:c9:df:bc:d4:61:3e:22:4a:e0:07:
74:ba:91:45:8e:ca:05:39:2e:56:f7:8a:56:64:98:
5d:8d:4a:d5:71:37:bb:9b:a7:c2:9d:de:d3:ae:4c:
a3:a6:02:86:8d:a4:ae:ab:be:7f:92:dd:f5:b1:37:
cc:d6:0d:9c:42:23:52:6b:58:f5:65:78:d7:84:e3:
5e:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:07:97:D6:BC:E0:15:C5:97:61:94:47:62:A0:E7:54:C2:D8:80:93
X509v3 Authority Key Identifier:
keyid:BC:F3:8F:B3:C9:B3:90:8B:D6:FD:49:70:28:8D:21:B8:55:83:61:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vPOPs8mzkIvW_UlwKI0huFWDYXQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/426846-c9ec-472b-8bff-3b492f463bff/1/hweX1rzgFcWXYZRHYqDnVMLYgJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/426846-c9ec-472b-8bff-3b492f463bff/1/vPOPs8mzkIvW_UlwKI0huFWDYXQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.104.128.0/24
Signature Algorithm: sha256WithRSAEncryption
73:da:b5:bc:95:3c:92:5c:29:de:c3:75:2b:f3:6c:9c:52:53:
04:51:9e:b2:3a:e4:05:3d:6d:69:47:96:ba:06:59:64:8c:b6:
5c:9c:6f:6a:51:24:cc:62:a5:41:da:a3:9d:5e:2c:6b:a9:ee:
dd:a8:be:7c:5b:c7:4c:5d:09:f6:70:b7:c1:52:cb:a4:81:04:
a8:ef:a6:f6:dd:0f:25:91:31:81:ca:14:5f:cb:7c:e6:40:14:
55:4f:44:ae:b1:a4:c5:26:91:d7:8f:61:ec:b8:8c:26:b0:65:
21:07:57:f6:e7:a9:a2:b9:57:c2:c8:5b:7e:1b:60:c6:c1:9f:
64:e2:3f:8f:47:2d:6b:fe:4f:81:e4:7b:20:0f:ae:a1:50:b0:
79:7a:c1:3a:c3:0d:a6:a6:4c:77:5a:a9:e0:18:22:c4:b6:27:
55:06:5e:b1:b0:16:49:6a:b8:52:94:04:75:eb:17:20:97:a0:
22:31:47:9e:e1:6c:0c:1a:67:97:6f:4e:43:a0:42:48:66:3e:
e9:c8:9e:11:5f:5f:73:e1:dd:15:6a:11:eb:fd:4f:c8:a2:5f:
43:33:8c:3a:aa:9b:bc:c1:3d:49:84:93:f5:80:e8:de:72:cc:
7c:1e:5d:c8:5e:37:ff:64:e3:91:e9:8e:74:b4:7e:40:7e:53:
9b:76:58:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:33 2024 by rpki-client on console-ams.rpki-client.org