Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/8a5888-fbe6-478e-ba7b-719a03a59db9/1/A8QsHiw78Xr0g52l1vGwIyqMLt8.roa
File: A8QsHiw78Xr0g52l1vGwIyqMLt8.roa (raw, json)
Hash identifier: OlkP/Z64lm2dqifd+5Sv4Xr5CKsA4RiR6qwCDSUzl3Y=
Subject key identifier: 03:C4:2C:1E:2C:3B:F1:7A:F4:83:9D:A5:D6:F1:B0:23:2A:8C:2E:DF
Certificate issuer: /CN=f974cc2daff2f234879d79557b553bde2ab10836
Certificate serial: 018783FF706F24F22773566F52BC6B43D359
Authority key identifier: F9:74:CC:2D:AF:F2:F2:34:87:9D:79:55:7B:55:3B:DE:2A:B1:08:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-XTMLa_y8jSHnXlVe1U73iqxCDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/8a5888-fbe6-478e-ba7b-719a03a59db9/1/A8QsHiw78Xr0g52l1vGwIyqMLt8.roa
Signing time: Sat 15 Apr 2023 08:19:28 +0000
ROA not before: Sat 15 Apr 2023 08:19:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198283
IP address blocks: 194.8.4.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:83:ff:70:6f:24:f2:27:73:56:6f:52:bc:6b:43:d3:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f974cc2daff2f234879d79557b553bde2ab10836
Validity
Not Before: Apr 15 08:19:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=03c42c1e2c3bf17af4839da5d6f1b0232a8c2edf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:b7:36:7e:86:29:f7:16:28:8b:93:12:f4:6b:
87:bb:e6:60:b2:f9:62:ef:37:b2:3d:a3:f0:1f:57:
e5:27:97:44:c3:72:5a:fa:8d:ff:e8:3f:ca:aa:9c:
f1:96:38:4e:93:d6:17:7b:2a:05:22:7a:d9:f3:b4:
55:af:41:5a:2e:9a:4a:12:fd:ca:ce:2e:30:ab:d6:
38:b7:f5:5f:db:42:9e:6c:12:36:a9:85:4d:9f:63:
42:47:66:9c:57:16:e5:36:8c:bc:a5:2f:a7:ef:bb:
16:7d:47:e2:24:3d:7e:9d:72:70:e4:b8:70:76:fe:
1f:f4:3b:a1:71:1f:a5:08:09:27:e1:44:0f:ba:af:
54:53:2e:fd:76:66:b5:3c:c2:13:2a:9f:23:db:93:
8b:92:d4:d3:96:89:31:78:b8:e5:fd:a2:eb:9f:0b:
63:e9:7d:3c:f6:e4:56:14:a8:01:b1:48:34:a2:0f:
7c:98:18:4f:9f:52:2c:29:6c:bf:88:be:98:61:d2:
82:04:25:4e:f0:81:03:29:cb:ba:0f:cc:ee:6f:b2:
f5:02:90:50:8c:d2:e6:96:39:0d:2b:8a:69:33:ca:
4c:47:af:0f:b6:a6:3f:53:35:fc:88:07:80:38:52:
a6:66:c7:9a:6a:b2:0d:6f:ac:86:75:87:f6:dd:4d:
63:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:C4:2C:1E:2C:3B:F1:7A:F4:83:9D:A5:D6:F1:B0:23:2A:8C:2E:DF
X509v3 Authority Key Identifier:
keyid:F9:74:CC:2D:AF:F2:F2:34:87:9D:79:55:7B:55:3B:DE:2A:B1:08:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-XTMLa_y8jSHnXlVe1U73iqxCDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/8a5888-fbe6-478e-ba7b-719a03a59db9/1/A8QsHiw78Xr0g52l1vGwIyqMLt8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/8a5888-fbe6-478e-ba7b-719a03a59db9/1/1-XTMLa_y8jSHnXlVe1U73iqxCDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.8.4.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:97:97:23:26:89:05:38:e1:1d:50:4b:63:16:c6:44:50:1b:
d9:be:f1:02:f2:ed:07:81:76:17:9e:c1:18:6c:2c:f3:35:7a:
b2:a7:5d:96:1d:55:21:d8:d6:be:61:32:85:14:17:96:65:1b:
ba:16:6a:89:41:94:99:55:6d:b8:4d:c5:05:80:0e:d4:04:2b:
5e:d0:e5:45:45:7a:33:73:d6:52:4a:5c:5c:4b:b7:5c:f9:c9:
ed:0d:4f:9c:69:96:6e:8d:22:19:17:cb:83:43:0a:67:06:90:
3d:b6:fa:c5:e5:ee:2b:b1:2c:2b:50:6a:3c:91:14:c8:6d:d4:
08:3e:78:e3:67:91:66:d6:e3:ae:8b:bc:f8:ee:c3:05:77:0f:
ad:12:a8:68:18:23:a6:d0:ca:b2:e6:77:d4:19:a4:ca:8a:02:
b4:6f:e8:14:e7:7f:62:af:b9:6f:8c:1c:58:ec:af:28:08:5d:
b8:c4:f3:8d:2f:b9:83:29:3a:0d:4b:3b:16:0f:03:91:5e:4b:
37:4e:72:69:40:c0:e7:ae:0f:16:66:b7:5f:29:22:94:31:10:
37:c9:a7:45:54:a4:68:f1:df:5b:4c:a0:91:c2:0b:3f:2f:d2:
2d:15:54:f3:49:9f:9a:eb:47:cc:fa:39:af:17:ba:5c:01:86:
4c:ac:09:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:08 2024 by rpki-client on console-ams.rpki-client.org