Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/9d7c4c-b47d-4f73-85d8-4bfed602bb88/1/Uq59RVoAPWjSQ4KbxQTlayC1yg0.roa
File: Uq59RVoAPWjSQ4KbxQTlayC1yg0.roa (raw, json)
Hash identifier: SIUlULZlh9eDLrBJEfwX86hndZtGXiqRDCY65wrbDoY=
Subject key identifier: 52:AE:7D:45:5A:00:3D:68:D2:43:82:9B:C5:04:E5:6B:20:B5:CA:0D
Certificate issuer: /CN=32f76de1a74f8e3801b1b9c3fec060cc710d44fd
Certificate serial: 0698F6CE
Authority key identifier: 32:F7:6D:E1:A7:4F:8E:38:01:B1:B9:C3:FE:C0:60:CC:71:0D:44:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mvdt4adPjjgBsbnD_sBgzHENRP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/9d7c4c-b47d-4f73-85d8-4bfed602bb88/1/Uq59RVoAPWjSQ4KbxQTlayC1yg0.roa
Signing time: Sat 01 Jan 2022 11:57:23 +0000
ROA not before: Sat 01 Jan 2022 11:57:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199907
IP address blocks: 194.24.188.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110687950 (0x698f6ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32f76de1a74f8e3801b1b9c3fec060cc710d44fd
Validity
Not Before: Jan 1 11:57:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=52ae7d455a003d68d243829bc504e56b20b5ca0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:b6:d3:e0:c3:ee:83:48:a4:d4:03:1b:aa:d4:
c8:9f:e9:78:90:b2:d4:cd:39:46:84:5b:af:7b:30:
ed:45:4a:a3:82:23:a2:90:de:9b:e1:15:be:40:af:
cd:bf:90:4c:7d:68:c5:1b:9b:92:fb:43:bb:c2:c8:
ac:4a:ae:45:ed:49:75:9d:61:9e:f5:fd:64:2f:f3:
d4:1c:46:d2:02:aa:c0:2e:52:c8:f9:e8:98:c0:e4:
80:3b:93:4a:35:42:85:56:17:b7:d8:dc:fd:08:9e:
f4:be:14:fa:d4:10:f9:98:94:fa:13:e5:66:57:08:
ea:c2:d1:4b:2f:45:3d:c3:33:1a:d5:f5:58:35:5f:
de:14:be:95:88:c3:0a:52:eb:ee:d6:06:83:d6:86:
2d:f8:b0:d9:1c:ac:5d:e4:e0:be:c5:6c:22:89:57:
f7:d5:f3:4c:b2:51:55:21:42:52:66:78:54:68:fa:
d0:b4:24:59:d8:69:26:c0:95:07:2d:9b:3b:09:46:
8d:e9:1b:36:9f:cc:3f:5e:73:ac:f4:89:01:d3:43:
90:50:e4:36:54:54:59:70:4a:07:d1:32:5d:26:96:
e2:b5:8d:c9:be:3a:c9:83:9d:bc:a4:c8:97:63:9e:
88:eb:38:d2:cc:5c:c2:17:19:d1:64:8f:7c:72:aa:
9f:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:AE:7D:45:5A:00:3D:68:D2:43:82:9B:C5:04:E5:6B:20:B5:CA:0D
X509v3 Authority Key Identifier:
keyid:32:F7:6D:E1:A7:4F:8E:38:01:B1:B9:C3:FE:C0:60:CC:71:0D:44:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mvdt4adPjjgBsbnD_sBgzHENRP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/9d7c4c-b47d-4f73-85d8-4bfed602bb88/1/Uq59RVoAPWjSQ4KbxQTlayC1yg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/9d7c4c-b47d-4f73-85d8-4bfed602bb88/1/Mvdt4adPjjgBsbnD_sBgzHENRP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.24.188.0/24
Signature Algorithm: sha256WithRSAEncryption
70:21:1f:2c:74:d2:ee:26:1f:a1:9f:48:2d:fd:cc:4d:b7:1c:
42:54:f1:fe:56:fb:cd:d8:0b:a9:68:49:f0:03:a7:cb:f4:8e:
1f:5d:a5:60:d3:c0:57:aa:29:f0:2b:78:a7:58:f7:8f:1b:52:
04:02:06:c7:09:fd:15:e9:b9:76:ad:34:29:d0:07:7d:b1:70:
63:f8:66:04:ee:34:1a:4c:0a:52:0c:7a:36:42:d3:ac:bb:71:
81:14:b9:d7:9e:e1:ef:7e:dd:f9:3e:c0:b5:4d:63:fb:62:7d:
d5:ea:2c:ca:1e:16:d0:f0:87:fa:52:e6:91:86:67:d2:45:92:
04:90:57:f5:80:05:c2:c4:77:69:cd:30:47:0c:d1:08:9c:6b:
fa:a7:30:0a:d7:49:6e:99:b9:3c:6e:b3:e7:80:b4:5e:d6:1c:
7c:3f:b7:85:dc:14:0a:3f:c7:08:58:bf:f9:ca:9d:ad:81:13:
9d:bd:06:fe:21:f9:33:25:34:58:34:8f:50:61:75:a8:e6:2d:
49:07:bd:73:a3:d0:f7:56:68:19:e8:94:24:dd:f6:e5:03:b8:
e4:a5:d9:9d:85:5b:77:3a:43:60:87:a6:c8:64:06:db:3f:e1:
a3:ff:45:06:d3:1e:42:6f:bc:15:ee:eb:2d:00:2a:b2:7b:98:
08:16:7d:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:40 2024 by rpki-client on console-fra.rpki-client.org