Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/febb37-d2fe-444c-87db-bd6c99e7e2da/1/oy9itglOE5tSiSf4lT6sPz-ieHM.roa
File: oy9itglOE5tSiSf4lT6sPz-ieHM.roa (raw, json)
Hash identifier: kKvkVrjKLqB0mzTJBzUCpGiyAkGzCiqz9IpeTpvEyXU=
Subject key identifier: A3:2F:62:B6:09:4E:13:9B:52:89:27:F8:95:3E:AC:3F:3F:A2:78:73
Certificate issuer: /CN=6189c749502e55366a350bea97354f6997c3c321
Certificate serial: 0182C5EDDA31F9CCA4605C7C002A1B688A3B
Authority key identifier: 61:89:C7:49:50:2E:55:36:6A:35:0B:EA:97:35:4F:69:97:C3:C3:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYnHSVAuVTZqNQvqlzVPaZfDwyE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/febb37-d2fe-444c-87db-bd6c99e7e2da/1/oy9itglOE5tSiSf4lT6sPz-ieHM.roa
Signing time: Mon 22 Aug 2022 14:21:15 +0000
ROA not before: Mon 22 Aug 2022 14:21:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 171.22.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c5:ed:da:31:f9:cc:a4:60:5c:7c:00:2a:1b:68:8a:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6189c749502e55366a350bea97354f6997c3c321
Validity
Not Before: Aug 22 14:21:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a32f62b6094e139b528927f8953eac3f3fa27873
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:8b:e8:cb:3c:55:16:d6:c2:86:f1:85:54:16:
04:50:d2:20:88:06:d9:6f:58:8e:02:b3:6f:f7:82:
47:e0:d8:c4:2c:43:56:93:1e:6c:6c:a0:8c:03:3f:
4c:3e:62:7c:fc:16:52:ec:49:8d:9f:0c:69:41:b5:
85:45:dc:98:ec:6f:ab:0b:b9:d5:1e:0c:2c:89:a8:
93:1d:30:44:34:71:98:89:ac:65:cc:32:e2:69:df:
dd:36:83:aa:04:a9:69:ae:02:4b:3d:30:88:93:68:
ae:bb:a8:c5:1c:1b:57:47:e8:fa:a7:48:a1:07:53:
d3:c3:b8:b3:37:9b:70:f6:2d:da:b6:40:3c:a8:01:
5f:a9:25:c9:7d:03:72:3e:10:f8:69:5c:70:1b:cf:
9f:69:98:9f:29:79:6a:92:10:d3:d1:be:74:d2:1e:
b5:e6:b2:27:7f:78:24:dc:70:c0:99:59:96:20:d4:
fc:2c:e0:82:cd:ad:19:1b:c1:6e:a6:c4:55:45:9b:
f1:af:02:ec:52:1b:bc:58:72:f8:bb:1b:71:c0:ba:
8b:91:79:d2:98:84:e0:c4:d3:14:82:de:28:ec:cf:
dd:db:14:b8:4b:15:0d:e1:44:47:f3:ff:c1:66:4d:
48:f4:f7:f5:18:9d:a4:c9:eb:73:62:c6:6a:31:da:
c8:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:2F:62:B6:09:4E:13:9B:52:89:27:F8:95:3E:AC:3F:3F:A2:78:73
X509v3 Authority Key Identifier:
keyid:61:89:C7:49:50:2E:55:36:6A:35:0B:EA:97:35:4F:69:97:C3:C3:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYnHSVAuVTZqNQvqlzVPaZfDwyE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/febb37-d2fe-444c-87db-bd6c99e7e2da/1/oy9itglOE5tSiSf4lT6sPz-ieHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/febb37-d2fe-444c-87db-bd6c99e7e2da/1/YYnHSVAuVTZqNQvqlzVPaZfDwyE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.22.29.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:1d:9f:7d:dd:6a:82:d1:64:e9:fa:16:2b:8d:6b:01:aa:2d:
c1:75:16:3e:98:67:00:1d:38:94:5f:10:57:0f:d3:f7:2f:b7:
51:22:77:6d:34:b4:9e:39:37:7f:f8:65:6f:8c:c0:b8:fa:a3:
70:b0:99:de:5c:ee:b9:e2:f0:5e:d0:19:c9:be:60:29:ef:55:
13:3a:7f:bb:cf:0c:3f:22:cd:91:9f:1d:90:50:a0:ec:8b:ca:
70:74:45:f8:9f:52:15:02:96:c1:ae:25:d5:71:0c:0f:9b:12:
c2:83:17:9f:3e:54:b5:f6:00:75:fc:74:55:60:ee:a5:15:4e:
f0:46:a2:08:12:2c:7f:d7:4a:18:b6:dc:a8:97:d4:c4:db:c9:
dc:15:55:6d:ff:60:01:00:9c:a6:e8:43:d6:55:b6:e3:e8:57:
6a:4a:b5:2f:e2:20:52:38:70:7d:3d:c9:d6:a9:64:de:57:5b:
da:d6:5b:b1:43:b3:08:cb:69:83:d0:41:53:96:46:3b:58:01:
69:57:8c:ec:d7:a3:8a:ea:a1:eb:4d:d8:21:50:6a:3c:7f:10:
cc:ad:87:0f:51:32:d3:76:7e:e5:a3:18:01:2c:e3:44:2c:f1:
3b:b6:64:f7:39:f5:dc:8e:15:ad:d3:2c:75:91:35:87:46:47:
0b:c6:7a:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:13 2024 by rpki-client on console-ams.rpki-client.org