Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b64405-e6f6-422d-9037-cc15689e1fb1/1/FhAj1806FPRKvBw2duMFWwHqIPE.roa
File: FhAj1806FPRKvBw2duMFWwHqIPE.roa (raw, json)
Hash identifier: /Cv7Y9CH9MaFkGwN/a1xUkdXAVhuBxd6CkoDz1eaoQM=
Subject key identifier: 16:10:23:D7:CD:3A:14:F4:4A:BC:1C:36:76:E3:05:5B:01:EA:20:F1
Certificate issuer: /CN=b2236dc4844b9e734a53a7034e8adc350cab950a
Certificate serial: 0B430FDA
Authority key identifier: B2:23:6D:C4:84:4B:9E:73:4A:53:A7:03:4E:8A:DC:35:0C:AB:95:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/siNtxIRLnnNKU6cDTorcNQyrlQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b64405-e6f6-422d-9037-cc15689e1fb1/1/FhAj1806FPRKvBw2duMFWwHqIPE.roa
Signing time: Sat 01 Jan 2022 14:03:48 +0000
ROA not before: Sat 01 Jan 2022 14:03:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59943
IP address blocks: 194.32.152.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188944346 (0xb430fda)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2236dc4844b9e734a53a7034e8adc350cab950a
Validity
Not Before: Jan 1 14:03:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=161023d7cd3a14f44abc1c3676e3055b01ea20f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ec:f1:9e:9f:9a:61:fe:46:72:64:d7:21:10:
ee:30:1a:af:9c:b7:18:3f:27:13:b0:d7:a8:2f:94:
86:58:42:e2:f9:93:d4:1c:92:75:77:0d:3c:78:3b:
50:76:87:41:1b:de:e2:99:a7:4f:d6:8a:09:ed:be:
ce:6b:7c:3c:ad:49:19:d2:db:8c:10:a4:31:f7:0c:
7c:9e:04:b8:bc:e0:f4:70:4b:b8:80:4b:ec:19:79:
02:40:62:ec:00:56:37:27:36:ad:5d:c9:0b:2c:81:
75:42:48:84:35:42:e1:b7:61:0a:ed:93:c1:fb:53:
1c:b1:1e:77:4a:d4:1c:a6:19:38:52:43:25:6b:4d:
23:50:3e:a3:91:5e:36:ab:6b:ce:14:0c:19:d0:28:
33:39:17:b9:8b:18:44:2c:26:a9:08:d5:c7:97:c8:
a7:59:db:37:d6:dc:d9:1c:d4:ca:42:cd:79:4c:0a:
b0:7e:e9:a0:8f:cf:1a:a6:cc:30:11:e5:52:6a:8b:
e7:8f:9b:c1:2e:5b:f9:07:cc:ea:18:79:2a:45:1b:
b3:b0:8c:36:b8:b4:62:0b:5a:23:eb:9e:bb:cf:f0:
5d:7f:51:f6:e1:a0:8d:ea:00:e9:08:07:52:41:83:
54:39:f9:af:05:06:78:2b:89:7e:f9:e2:35:82:62:
f6:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:10:23:D7:CD:3A:14:F4:4A:BC:1C:36:76:E3:05:5B:01:EA:20:F1
X509v3 Authority Key Identifier:
keyid:B2:23:6D:C4:84:4B:9E:73:4A:53:A7:03:4E:8A:DC:35:0C:AB:95:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/siNtxIRLnnNKU6cDTorcNQyrlQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b64405-e6f6-422d-9037-cc15689e1fb1/1/FhAj1806FPRKvBw2duMFWwHqIPE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b64405-e6f6-422d-9037-cc15689e1fb1/1/siNtxIRLnnNKU6cDTorcNQyrlQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.32.152.0/22
Signature Algorithm: sha256WithRSAEncryption
40:c7:1a:2f:96:eb:d3:e2:b4:8a:45:cc:5c:e8:6e:68:eb:0d:
b9:be:ba:f2:09:e0:f5:d6:67:59:23:69:4c:75:18:e1:40:6d:
a5:7d:ec:51:11:da:3c:11:5c:d6:b6:5c:7e:5f:50:88:49:66:
fb:06:f0:98:16:2c:87:f3:ec:15:1e:5b:8b:a6:f9:1c:1f:b4:
74:c6:8c:c2:84:34:08:7b:2e:d9:e2:13:ab:5e:1b:11:56:04:
6a:6b:3d:ab:69:9e:d3:de:ea:a4:82:e7:89:9a:92:4d:11:38:
b1:28:28:13:fc:37:c0:62:84:b6:ac:65:7c:0a:b9:26:6c:f1:
ee:2d:bf:a6:06:b8:88:50:f6:c3:9b:23:d3:6b:9a:20:45:96:
8c:02:0c:ce:36:38:79:56:20:16:ca:06:82:7a:47:df:e1:22:
31:ba:59:73:f5:d7:5d:b0:8c:43:11:58:7d:aa:bd:13:c0:35:
66:bd:2d:4b:ce:8d:46:93:7f:bb:67:c5:33:5c:e8:f7:ac:cc:
39:8d:2b:f1:e1:4c:c9:7f:22:98:82:f0:ce:2f:3a:93:76:75:
f4:b5:47:17:4f:56:ff:a2:e7:86:05:d9:bf:3b:51:48:39:c1:
04:ed:e1:57:15:a3:88:bb:d9:2c:a0:f0:9a:e9:ad:93:be:2d:
9f:fe:08:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:29 2024 by rpki-client on console-fra.rpki-client.org