Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/6ba63c-83d2-4157-b4ff-00104e74eccd/1/h9sH3dwRToLKbLOLyBDRQuiR67o.roa
File: h9sH3dwRToLKbLOLyBDRQuiR67o.roa (raw, json)
Hash identifier: 2szwOMks3Zl5Q/h9xbm8W9FyhS43Vj1iYq+EjYer1pk=
Subject key identifier: 87:DB:07:DD:DC:11:4E:82:CA:6C:B3:8B:C8:10:D1:42:E8:91:EB:BA
Certificate issuer: /CN=5588153f3ec6b36a3fc6850d05337236f3ced112
Certificate serial: 0184CB0DA88BA3D18D6BC5177A5B0CAE1528
Authority key identifier: 55:88:15:3F:3E:C6:B3:6A:3F:C6:85:0D:05:33:72:36:F3:CE:D1:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYgVPz7Gs2o_xoUNBTNyNvPO0RI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/6ba63c-83d2-4157-b4ff-00104e74eccd/1/h9sH3dwRToLKbLOLyBDRQuiR67o.roa
Signing time: Thu 01 Dec 2022 00:19:40 +0000
ROA not before: Thu 01 Dec 2022 00:19:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209260
IP address blocks: 176.97.213.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:cb:0d:a8:8b:a3:d1:8d:6b:c5:17:7a:5b:0c:ae:15:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588153f3ec6b36a3fc6850d05337236f3ced112
Validity
Not Before: Dec 1 00:19:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87db07dddc114e82ca6cb38bc810d142e891ebba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:0d:a5:c2:6c:48:62:7b:37:7b:54:e3:2a:d1:
04:8e:2d:84:f5:43:46:44:2d:2b:03:dd:97:0f:fa:
d0:ab:36:9d:e6:39:22:c8:8c:87:0c:71:85:51:5e:
b6:2b:2e:10:a0:bd:91:4a:bf:d3:98:3d:ce:0d:31:
14:17:d8:a4:b4:b2:f8:3e:20:40:69:7a:d7:b4:cb:
f6:4d:4a:a5:8e:74:eb:66:5b:5f:12:9f:0b:79:bd:
e2:98:23:b6:10:66:a5:ce:36:f1:6d:ba:58:f9:8f:
91:0e:8d:52:de:a7:97:d4:7f:fd:20:a7:08:2e:4a:
ba:0e:b5:3e:61:80:30:9e:89:6f:2f:12:46:96:fb:
8d:09:ad:4d:fa:04:36:fd:32:39:d6:e4:e3:26:eb:
4b:76:8e:1d:e0:fa:d6:f5:b3:f3:26:5a:6d:6e:bd:
7d:b7:23:41:ce:16:7e:70:6c:21:59:7c:8b:91:14:
aa:a2:67:bd:ae:d5:fe:28:a9:bb:d9:2a:c1:87:00:
cc:1c:9a:26:f5:40:3f:69:8c:aa:eb:c9:fc:15:c6:
29:29:b4:81:6a:bd:0b:76:0f:12:92:a5:fd:79:58:
32:d2:ae:40:4d:f7:30:4d:07:5f:5f:0e:ea:4f:dd:
30:0c:f8:c7:6c:ca:66:af:cf:18:98:dc:a3:9f:34:
12:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:DB:07:DD:DC:11:4E:82:CA:6C:B3:8B:C8:10:D1:42:E8:91:EB:BA
X509v3 Authority Key Identifier:
keyid:55:88:15:3F:3E:C6:B3:6A:3F:C6:85:0D:05:33:72:36:F3:CE:D1:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYgVPz7Gs2o_xoUNBTNyNvPO0RI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6ba63c-83d2-4157-b4ff-00104e74eccd/1/h9sH3dwRToLKbLOLyBDRQuiR67o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6ba63c-83d2-4157-b4ff-00104e74eccd/1/VYgVPz7Gs2o_xoUNBTNyNvPO0RI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.213.0/24
Signature Algorithm: sha256WithRSAEncryption
68:4a:d1:22:e3:35:1f:7f:cf:11:b1:a6:61:0c:4a:29:a2:f7:
02:89:49:4b:43:ee:27:dd:73:20:b2:f2:56:7d:f3:23:7d:92:
fa:67:71:e2:bc:63:af:73:89:d9:c6:62:6f:10:97:e6:08:ff:
38:de:de:09:b8:0f:4a:c8:f0:4f:f0:c7:e3:e9:3c:db:b5:37:
b6:d0:77:87:59:b9:eb:75:fd:48:ad:2d:f3:99:93:e4:71:03:
e3:31:e2:c3:a9:2e:db:7f:de:dc:a6:94:b1:cb:33:e5:86:47:
ad:31:49:d3:c7:cf:12:8f:71:89:f2:02:e6:30:ca:8a:26:cb:
0b:7b:03:4e:fc:8a:f0:d3:24:1a:20:d8:51:ce:eb:d7:85:59:
9c:98:47:a9:d5:20:6c:4b:7c:f9:43:43:3f:0a:92:2d:97:e2:
7c:26:a7:a7:96:93:05:b0:35:67:3f:5c:06:9f:1f:d9:0a:59:
4d:5d:a5:f0:c1:6e:43:66:e5:2f:96:bb:77:ee:98:25:2a:75:
59:35:15:08:a9:bf:91:b2:e7:23:a3:ce:e4:93:1e:5c:3c:6e:
a3:c0:0e:a7:5c:0a:d6:cc:78:d4:56:f6:53:20:03:22:93:75:
19:f2:63:5f:e3:1c:94:77:5b:d2:27:47:b8:df:0d:29:ac:87:
e9:40:94:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:06 2024 by rpki-client on console-ams.rpki-client.org