Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/ee1f8e-2f5c-4d7c-a7d1-1d8ead6e1073/1/aHKCuHQhZPOtNG533EWm6RDoHms.roa
File: aHKCuHQhZPOtNG533EWm6RDoHms.roa (raw, json)
Hash identifier: 4cNOV1gqVEvdzW3bA6UCzaZxh6lStQ8Gsb6DxITEzkY=
Subject key identifier: 68:72:82:B8:74:21:64:F3:AD:34:6E:77:DC:45:A6:E9:10:E8:1E:6B
Certificate issuer: /CN=e3bdc9fd7f52e1e75eb7ede6e25ad078fb90bfb4
Certificate serial: 0189654A8F7D0D30F2B5D2AB7B0CF512303C
Authority key identifier: E3:BD:C9:FD:7F:52:E1:E7:5E:B7:ED:E6:E2:5A:D0:78:FB:90:BF:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/473J_X9S4edet-3m4lrQePuQv7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/ee1f8e-2f5c-4d7c-a7d1-1d8ead6e1073/1/aHKCuHQhZPOtNG533EWm6RDoHms.roa
Signing time: Mon 17 Jul 2023 19:18:52 +0000
ROA not before: Mon 17 Jul 2023 19:18:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 176.126.102.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:65:4a:8f:7d:0d:30:f2:b5:d2:ab:7b:0c:f5:12:30:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3bdc9fd7f52e1e75eb7ede6e25ad078fb90bfb4
Validity
Not Before: Jul 17 19:18:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=687282b8742164f3ad346e77dc45a6e910e81e6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:6a:a7:00:ea:e7:ad:29:82:9a:34:a4:8c:5e:
a3:eb:03:f7:33:53:d3:15:ab:4b:96:fd:59:d8:23:
17:2a:10:06:cb:87:23:96:58:1c:52:2f:6b:51:03:
7e:88:b7:5a:ad:37:84:63:85:33:2f:89:91:21:07:
dc:45:1b:67:b2:01:6e:60:52:db:d6:c6:67:1f:70:
e2:59:c0:35:d9:44:e5:c9:b4:ff:70:81:64:bb:b0:
42:dc:85:14:28:eb:26:17:0a:dd:35:60:fc:fc:d1:
2b:e5:d0:1d:92:f8:a4:85:26:a6:2d:19:82:23:c5:
58:f7:32:49:80:cb:59:fc:68:5c:dc:87:64:6d:38:
83:c4:30:f2:6a:52:70:9b:df:de:76:9f:59:28:35:
e7:a6:71:fe:fa:91:e6:5e:0d:da:49:0c:f7:bf:3e:
05:82:0b:91:42:b2:19:21:71:97:45:fb:1f:aa:95:
3e:e7:f3:79:71:d2:4e:bf:5b:67:78:e2:ed:6b:33:
d5:c8:69:a4:1b:00:30:81:75:36:06:64:35:77:47:
99:e2:eb:ac:ad:c4:20:31:fb:e3:14:ad:9d:5d:0d:
99:29:24:66:f1:af:73:85:0c:7b:00:00:7e:25:00:
27:31:a8:7b:9d:33:12:eb:64:9a:b2:77:27:3f:36:
e1:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:72:82:B8:74:21:64:F3:AD:34:6E:77:DC:45:A6:E9:10:E8:1E:6B
X509v3 Authority Key Identifier:
keyid:E3:BD:C9:FD:7F:52:E1:E7:5E:B7:ED:E6:E2:5A:D0:78:FB:90:BF:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/473J_X9S4edet-3m4lrQePuQv7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/ee1f8e-2f5c-4d7c-a7d1-1d8ead6e1073/1/aHKCuHQhZPOtNG533EWm6RDoHms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/ee1f8e-2f5c-4d7c-a7d1-1d8ead6e1073/1/473J_X9S4edet-3m4lrQePuQv7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.126.102.0/24
Signature Algorithm: sha256WithRSAEncryption
83:59:e1:1d:fd:4f:e7:73:2e:a2:f3:a3:e9:be:de:14:3c:8f:
1b:69:2d:72:01:b8:cb:c2:f9:28:f1:53:f1:a9:90:5e:34:18:
c8:be:60:52:44:7a:2c:29:85:45:37:b8:d9:4e:94:7e:72:02:
8f:58:8c:5e:16:3e:b7:83:3a:4d:aa:fd:57:9f:bf:f8:13:87:
16:bf:88:fa:1a:a9:5e:26:35:3f:b8:ae:71:c7:6c:b2:4c:d1:
f9:4d:35:b1:ae:80:05:09:5d:e6:f1:7e:0a:bd:8c:ec:9c:5d:
dc:b8:2e:73:d5:2c:59:1d:24:9e:41:0e:fe:44:a5:15:bb:2d:
ff:b2:23:36:ce:f9:14:e6:07:7b:8a:12:93:ac:80:a9:b0:33:
23:87:52:2f:d6:43:d1:a4:cb:cc:85:eb:17:51:30:ee:b6:9c:
27:29:de:80:9f:35:76:6e:47:7d:ce:6a:33:ac:ca:f9:8f:f2:
83:ed:bb:bb:4a:f0:86:bc:18:57:fc:b7:3b:7b:42:a0:fe:c5:
1d:fe:e7:92:e7:8f:f9:c4:3a:ca:27:98:63:c0:b4:1e:c8:5c:
ab:c8:6c:f2:00:a7:25:c7:4c:50:42:2d:aa:80:da:69:11:03:
2e:51:9e:f8:4a:da:ff:ca:d2:6c:f0:24:5e:a7:9a:01:57:29:
4e:6f:9a:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 2 15:29:40 2023 by rpki-client on console-ams.rpki-client.org