Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/0f8Pzkw2wGnQIi1TL8ZTa35XOSI.roa
File: 0f8Pzkw2wGnQIi1TL8ZTa35XOSI.roa (raw, json)
Hash identifier: qmkJct0ALC+GcKtJYP9HklTB6cPbV7SVg9/4xme15wQ=
Subject key identifier: D1:FF:0F:CE:4C:36:C0:69:D0:22:2D:53:2F:C6:53:6B:7E:57:39:22
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 03E1A3F3
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/0f8Pzkw2wGnQIi1TL8ZTa35XOSI.roa
Signing time: Sun 13 Mar 2022 10:39:21 +0000
ROA not before: Sun 13 Mar 2022 10:39:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211017
IP address blocks: 193.176.129.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65119219 (0x3e1a3f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Mar 13 10:39:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d1ff0fce4c36c069d0222d532fc6536b7e573922
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:96:67:b0:46:29:0d:53:f0:a7:db:c3:47:24:
33:cb:42:3b:d3:b4:9b:65:e3:b9:32:3d:1c:ab:2f:
62:12:7b:ac:d5:21:99:df:4a:d6:85:02:36:2e:09:
15:f9:99:0c:09:c4:5c:37:1b:63:92:ac:45:03:55:
63:1d:04:00:b1:46:7a:48:6a:7c:35:4c:b8:a7:f1:
b2:86:cf:e8:cc:3c:3b:71:13:8f:fe:95:a5:d8:1d:
a0:3a:56:32:e8:fb:42:93:77:49:59:0e:36:4f:00:
25:95:69:86:48:f9:3b:14:41:c7:00:5b:24:92:52:
a5:a8:9d:b3:b6:0a:9d:56:51:89:92:10:ca:dc:da:
99:55:1e:54:70:af:a2:85:4e:be:54:23:d4:d4:16:
9e:79:83:e3:12:eb:9f:bc:2e:4d:e5:c3:72:0f:67:
5e:6b:64:42:19:25:63:fe:b4:3a:97:fa:a5:97:03:
d3:22:bf:9b:42:0f:2c:59:10:22:e0:21:8c:6b:fa:
ea:60:3e:55:40:fd:e6:4b:cb:9a:7b:15:46:38:cc:
7f:d9:ac:02:1a:99:f5:40:ba:ea:2c:82:22:14:c6:
d5:0f:02:d0:69:63:59:82:02:da:de:2c:8d:40:37:
9f:cc:f6:4a:ce:50:24:5a:93:a5:af:be:00:cd:ef:
e5:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:FF:0F:CE:4C:36:C0:69:D0:22:2D:53:2F:C6:53:6B:7E:57:39:22
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/0f8Pzkw2wGnQIi1TL8ZTa35XOSI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.176.129.0/24
Signature Algorithm: sha256WithRSAEncryption
53:83:2b:27:b4:b5:ea:24:db:5a:6f:f3:04:ad:32:e2:5b:ea:
87:c1:a8:cb:57:dc:c1:60:fd:9a:bd:ae:e2:ed:69:20:32:a2:
bf:c7:32:8b:96:af:77:8a:65:bb:6f:a3:2e:61:d3:9b:b2:eb:
59:f1:ca:2b:72:62:b7:52:89:77:51:5a:16:60:5c:aa:1f:51:
31:52:fa:09:74:31:a3:39:a9:eb:92:21:cf:35:bf:e0:c9:36:
a2:4e:c1:2e:38:fd:e5:74:93:f9:68:d8:76:d3:3e:39:fb:93:
03:87:ad:67:c9:74:2f:b3:0b:cf:96:cd:b6:f6:eb:0d:9f:49:
7c:0b:e4:d1:03:cb:c0:f8:9e:50:96:09:dd:a8:4c:14:f7:61:
e0:38:68:6b:b6:9d:23:bc:91:5c:40:16:37:02:3e:b4:d7:e9:
e7:67:8b:45:2d:88:7b:26:50:81:d8:bc:8f:20:22:94:bc:07:
bf:c7:d9:e2:51:d7:b2:68:e4:25:47:c1:ca:e0:ee:58:f0:92:
93:c8:3f:81:70:c0:de:d9:9b:a3:f9:8a:e0:d9:0d:75:c3:71:
26:ba:a9:4e:38:c3:bd:d1:dd:08:14:21:00:54:97:a6:fd:bf:
b6:20:30:44:63:78:e8:53:ab:46:6f:5b:ea:72:c4:fc:bb:7d:
b6:e0:f7:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:57 2023 by rpki-client on console-fra.rpki-client.org