Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/XdKigsi9vg5nAN78zC1-R829qTs.roa
File: XdKigsi9vg5nAN78zC1-R829qTs.roa (raw, json)
Hash identifier: +f8nRz6eEZpd98bYKyBBQ833Xge9Ezo76C0BAl8Fbpk=
Subject key identifier: 5D:D2:A2:82:C8:BD:BE:0E:67:00:DE:FC:CC:2D:7E:47:CD:BD:A9:3B
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 03E0B766
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/XdKigsi9vg5nAN78zC1-R829qTs.roa
Signing time: Sun 13 Mar 2022 10:39:20 +0000
ROA not before: Sun 13 Mar 2022 10:39:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208068
IP address blocks: 192.166.114.0/24 maxlen: 24
192.166.115.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65058662 (0x3e0b766)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Mar 13 10:39:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5dd2a282c8bdbe0e6700defccc2d7e47cdbda93b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:64:e3:4f:01:2f:eb:1f:86:f9:7a:fa:c7:eb:
47:66:a4:3c:74:6a:cc:23:3b:a4:30:5b:9d:5b:68:
b4:4c:03:9e:63:08:9a:1c:1b:85:6e:cc:8d:75:da:
85:a8:b2:ae:a4:22:83:fe:09:4f:1f:57:50:63:0d:
a8:fe:c5:eb:3a:e4:be:60:9b:67:d2:46:3f:2f:cf:
af:35:fa:f1:8a:a0:58:b3:6d:f2:02:f6:9a:3f:95:
a5:4f:cb:36:b4:34:85:f4:ce:bc:7e:0b:05:f9:d5:
b4:2d:f2:53:9f:4b:c3:18:b7:70:8d:43:76:89:70:
fe:5d:ed:e4:a4:4b:8c:a4:11:c9:3a:04:6d:34:f1:
10:a0:4a:54:cb:ce:54:06:54:04:30:ff:f5:d8:b9:
61:4e:19:a5:67:44:04:ae:2f:d3:d9:d1:4d:16:9e:
23:1d:cf:3a:10:3d:bc:cd:4f:60:be:0b:43:46:a7:
f7:7d:71:38:e4:78:1b:5c:b7:ea:1f:92:ae:15:20:
b6:a4:03:db:5a:03:45:11:d6:cc:c0:94:cb:20:3b:
c2:4b:aa:8c:53:63:4a:c9:f1:f2:28:be:a1:36:4f:
85:14:b4:35:db:12:76:63:21:8f:58:bd:73:0d:f3:
d6:4f:9e:0b:6e:9f:34:13:f9:83:38:23:c4:a4:e2:
19:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:D2:A2:82:C8:BD:BE:0E:67:00:DE:FC:CC:2D:7E:47:CD:BD:A9:3B
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/XdKigsi9vg5nAN78zC1-R829qTs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.166.114.0/23
Signature Algorithm: sha256WithRSAEncryption
59:db:67:35:46:35:f8:9a:e8:08:48:f4:28:e0:5b:99:17:1b:
e2:d8:8b:38:77:8b:cd:20:2c:86:c8:02:22:7d:da:f6:80:a0:
22:d4:4c:72:c2:44:c0:ea:6e:29:96:67:a4:7d:96:03:90:44:
bf:f6:ce:6d:e8:01:be:2c:56:68:f1:f3:d9:97:f4:94:3d:00:
68:da:8b:43:ad:d9:e0:ae:36:ee:18:15:77:91:73:fc:3f:03:
86:91:f5:e2:d2:92:49:2f:8e:63:bf:58:ae:5d:84:9c:6e:71:
0e:c2:4d:17:a1:e2:7f:8b:cd:c0:55:e3:c5:f1:59:e1:1c:1f:
f9:2f:65:0a:83:40:57:62:c3:1a:0e:52:84:74:88:ba:55:4e:
37:10:36:17:da:d1:7a:61:18:69:50:7a:01:2a:b1:8d:09:b5:
33:b9:b7:bc:38:5f:c5:e2:fb:ff:c1:00:3f:1b:82:f9:e2:0e:
30:64:46:8d:48:3a:45:3a:06:2e:90:06:b5:f3:81:1b:95:38:
ee:f7:2e:a3:ca:c7:2b:0c:c6:af:19:65:86:71:ec:3a:f8:59:
54:fd:f9:2e:e2:20:5d:89:e8:fd:91:ea:12:d3:bc:be:cf:42:
84:13:10:b9:c7:d8:13:50:6f:46:e1:b8:e3:8f:23:95:f0:3e:
e9:bd:ca:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:59 2024 by rpki-client on console-fra.rpki-client.org