Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/6ba63c-83d2-4157-b4ff-00104e74eccd/1/1-KJaLwcLMpbwknPBmJR3sa4fkow.roa
File: 1-KJaLwcLMpbwknPBmJR3sa4fkow.roa (raw, json)
Hash identifier: nGUGC6ubEdVEOETMUxyRht/FYOHY+8YDIA/22+8KYIQ=
Subject key identifier: F8:A2:5A:2F:07:0B:32:96:F0:92:73:C1:98:94:77:B1:AE:1F:92:8C
Certificate issuer: /CN=5588153f3ec6b36a3fc6850d05337236f3ced112
Certificate serial: AC7C05
Authority key identifier: 55:88:15:3F:3E:C6:B3:6A:3F:C6:85:0D:05:33:72:36:F3:CE:D1:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYgVPz7Gs2o_xoUNBTNyNvPO0RI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/6ba63c-83d2-4157-b4ff-00104e74eccd/1/1-KJaLwcLMpbwknPBmJR3sa4fkow.roa
Signing time: Mon 17 Jan 2022 18:49:36 +0000
ROA not before: Mon 17 Jan 2022 18:49:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 176.97.213.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11303941 (0xac7c05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588153f3ec6b36a3fc6850d05337236f3ced112
Validity
Not Before: Jan 17 18:49:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f8a25a2f070b3296f09273c1989477b1ae1f928c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:4d:f1:9e:5b:2d:63:bf:3b:44:68:f9:6b:da:
1e:6e:01:5a:de:3e:1b:c0:9d:e2:d7:47:55:07:c4:
8c:0c:50:51:46:19:84:d9:d4:95:74:45:03:48:2c:
78:49:f0:89:75:cb:30:8b:ec:08:ca:71:02:aa:6f:
87:5e:68:79:30:9d:82:02:70:91:6b:df:4a:10:cb:
48:64:a6:5d:86:93:78:1c:54:8c:ac:82:5b:9f:aa:
50:5e:20:61:dc:a9:4e:c5:1f:d2:c1:23:c2:19:7c:
89:67:b1:bf:8d:22:c7:eb:be:c5:d9:29:e1:4a:ee:
73:53:c6:88:3e:04:92:1d:a4:c2:d8:04:46:39:58:
3a:86:43:4e:e9:cd:93:85:c0:de:d1:60:99:45:49:
66:0c:38:27:db:f8:d1:fb:81:32:56:2f:de:94:4e:
b6:c9:23:83:f6:ee:0e:a2:5c:3e:24:68:13:37:02:
da:75:5a:f1:dc:58:22:84:1c:dc:34:7b:4f:2c:db:
65:21:86:6a:65:f1:a8:10:e1:71:db:ae:2a:2e:03:
9e:09:15:0d:f0:e0:24:a2:00:8c:19:19:42:75:d9:
2f:30:e4:d2:c1:b4:ac:21:8d:8d:5c:d7:8e:93:ba:
03:ab:1a:22:31:27:69:96:0b:3d:ad:f5:05:bf:de:
60:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:A2:5A:2F:07:0B:32:96:F0:92:73:C1:98:94:77:B1:AE:1F:92:8C
X509v3 Authority Key Identifier:
keyid:55:88:15:3F:3E:C6:B3:6A:3F:C6:85:0D:05:33:72:36:F3:CE:D1:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYgVPz7Gs2o_xoUNBTNyNvPO0RI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6ba63c-83d2-4157-b4ff-00104e74eccd/1/1-KJaLwcLMpbwknPBmJR3sa4fkow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6ba63c-83d2-4157-b4ff-00104e74eccd/1/VYgVPz7Gs2o_xoUNBTNyNvPO0RI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.213.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:80:a5:0b:c7:c0:8f:a1:dc:36:c9:c1:e3:49:05:7f:ff:9a:
6d:1f:91:ad:90:88:af:c5:3c:2d:ed:56:5d:4a:cc:04:d1:d9:
2d:b7:66:c4:80:fb:51:e6:ff:5e:cc:2a:bf:96:c3:ac:1a:cb:
61:00:52:5f:7d:cb:bf:01:69:93:1d:4f:94:32:e9:bf:fc:77:
8c:18:b0:60:db:98:1b:0b:00:77:a9:bd:8a:6e:05:f1:1e:75:
74:dd:51:46:5c:f3:76:c0:a6:c7:5a:ea:cb:be:a3:bc:1c:4f:
89:4e:a1:a5:69:d7:bf:6a:c3:c6:c9:4f:04:74:35:af:8f:f8:
ff:6e:18:89:e8:a7:52:3d:9a:6f:bb:be:c1:1a:b8:b1:f8:d8:
98:f9:d8:68:e9:0c:88:34:63:d0:f4:48:0f:07:a3:cd:9a:1f:
ae:90:2d:3e:9b:40:04:7d:59:4d:ad:d5:dd:11:6f:25:55:95:
b2:20:d7:d6:ee:d3:64:cb:e0:ae:2f:8d:b1:85:44:07:84:db:
73:c0:b7:c8:b6:47:f1:ac:b8:f9:63:c4:d3:54:a7:53:c2:f6:
a7:9d:ba:ed:45:64:a2:41:11:dd:10:e5:ee:1c:2a:e1:a5:d5:
e6:64:2d:73:f4:17:c5:1e:dc:4f:c6:e5:d3:8d:fc:81:8e:0e:
b2:bd:94:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:12 2024 by rpki-client on console-fra.rpki-client.org