Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/9102de-d3bb-46f2-a567-69a3573c2e33/1/GQoymNvtVcMxEqxpfY3zU-tOs0k.roa
File: GQoymNvtVcMxEqxpfY3zU-tOs0k.roa (raw, json)
Hash identifier: 1rC4Osm6PfDBJT9QXePtelDh03fKv4m+xNS8gDSK4tY=
Subject key identifier: 19:0A:32:98:DB:ED:55:C3:31:12:AC:69:7D:8D:F3:53:EB:4E:B3:49
Certificate issuer: /CN=4c91418c204d8649a340b67b3283628f2f8858e7
Certificate serial: 018BECB22C3EEF3F2A0659DF42337F221228
Authority key identifier: 4C:91:41:8C:20:4D:86:49:A3:40:B6:7B:32:83:62:8F:2F:88:58:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TJFBjCBNhkmjQLZ7MoNijy-IWOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/9102de-d3bb-46f2-a567-69a3573c2e33/1/GQoymNvtVcMxEqxpfY3zU-tOs0k.roa
Signing time: Mon 20 Nov 2023 12:26:21 +0000
ROA not before: Mon 20 Nov 2023 12:26:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210669
IP address blocks: 176.126.121.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ec:b2:2c:3e:ef:3f:2a:06:59:df:42:33:7f:22:12:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c91418c204d8649a340b67b3283628f2f8858e7
Validity
Not Before: Nov 20 12:26:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=190a3298dbed55c33112ac697d8df353eb4eb349
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:b8:0a:c5:a6:07:ff:cc:c6:72:1d:21:60:b6:
33:6a:df:16:c4:75:d0:89:da:93:97:e5:ea:f5:02:
52:72:38:03:c3:45:5f:7d:44:ae:bc:0c:41:15:31:
31:86:bb:37:31:83:bd:73:f1:3a:f1:db:6d:67:64:
05:9b:3e:1f:54:6d:5f:ed:9f:59:ee:c0:e7:66:c4:
7b:03:63:32:be:65:2d:6c:73:50:80:8f:52:33:ce:
e2:03:58:a2:f8:f5:8b:e4:34:21:73:83:5b:55:61:
d9:49:b7:4f:b1:dc:07:05:7d:28:36:82:64:0a:a4:
cf:15:31:39:ba:29:f1:71:9d:d8:e0:e0:9e:a0:81:
60:3f:28:ad:32:48:9c:06:28:1d:ae:3e:44:b0:fb:
20:94:a0:30:c5:34:ec:90:58:f1:ab:9f:94:a3:ef:
06:12:1f:81:b5:32:35:fd:4b:34:f7:6c:e9:7c:e9:
f5:72:51:1e:67:0b:43:57:28:17:8d:24:c5:92:49:
c7:09:db:93:8c:ec:3e:48:d7:1c:ad:df:64:a4:ea:
d6:2e:a2:a0:69:2d:5f:6d:80:f7:20:b7:a8:65:6e:
2c:1e:88:ff:5b:b8:19:1a:30:86:a8:10:26:82:cc:
1b:5d:5d:73:75:0b:56:a4:5a:b6:f1:34:5f:8b:bb:
83:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:0A:32:98:DB:ED:55:C3:31:12:AC:69:7D:8D:F3:53:EB:4E:B3:49
X509v3 Authority Key Identifier:
keyid:4C:91:41:8C:20:4D:86:49:A3:40:B6:7B:32:83:62:8F:2F:88:58:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TJFBjCBNhkmjQLZ7MoNijy-IWOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/9102de-d3bb-46f2-a567-69a3573c2e33/1/GQoymNvtVcMxEqxpfY3zU-tOs0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/9102de-d3bb-46f2-a567-69a3573c2e33/1/TJFBjCBNhkmjQLZ7MoNijy-IWOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.126.121.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:ba:ea:1c:e8:1b:0d:0c:60:d8:d9:99:48:03:f8:c0:4d:f5:
af:95:1c:5f:de:ff:70:09:05:5b:72:f1:26:24:16:cb:c7:7a:
3d:b2:6e:1c:91:ad:89:8d:ff:7b:b9:b4:f2:c8:3b:76:f4:6f:
03:16:37:8b:cc:81:dc:e0:3e:14:e5:d0:1f:b2:7a:24:84:0d:
c3:ed:5f:76:42:79:c4:35:6b:16:45:09:5f:b4:7e:fa:6c:3f:
19:ad:99:6f:c6:68:c2:cf:be:ed:cb:46:45:e0:dd:ea:da:d5:
34:02:21:db:4b:ca:67:ea:05:12:1e:20:f7:6c:b5:c3:b1:c3:
29:6d:24:18:16:ad:10:7c:d3:28:9a:c0:cd:f7:fb:79:11:a9:
1d:7d:95:d4:db:ca:d0:22:d0:fe:c2:dc:3e:e9:ec:5e:16:2f:
2c:ce:d1:0b:4a:4d:66:26:53:38:b9:a0:d7:07:90:45:65:53:
f8:65:1e:b2:24:4a:1d:12:5c:c7:26:78:b5:c0:bb:b9:0f:90:
d9:9d:51:7e:5f:83:48:f2:d8:76:7a:36:69:f1:a6:9c:ed:3f:
c3:be:ef:9e:30:52:32:0e:53:ca:cc:ca:aa:9c:7f:e1:a5:e4:
82:5f:af:79:e1:c4:3c:c6:7e:0c:85:92:9d:32:25:0a:b6:2c:
d8:aa:0f:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:55 2024 by rpki-client on console-fra.rpki-client.org