Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/d8d23b-92d8-46af-911e-be736416b30f/1/7kzlqayJf_GA5aTzBtBguTKJJQU.roa
File: 7kzlqayJf_GA5aTzBtBguTKJJQU.roa (raw, json)
Hash identifier: em9olKCEsifGGvpU/JUD+QTHCHjlgTQq+WOrOFoeFAE=
Subject key identifier: EE:4C:E5:A9:AC:89:7F:F1:80:E5:A4:F3:06:D0:60:B9:32:89:25:05
Certificate issuer: /CN=b709035681f2e361785d4a8f63590ceec217e251
Certificate serial: 01875658F0B58FFF5AC1F25311903C04C75B
Authority key identifier: B7:09:03:56:81:F2:E3:61:78:5D:4A:8F:63:59:0C:EE:C2:17:E2:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/twkDVoHy42F4XUqPY1kM7sIX4lE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/d8d23b-92d8-46af-911e-be736416b30f/1/7kzlqayJf_GA5aTzBtBguTKJJQU.roa
Signing time: Thu 06 Apr 2023 11:34:42 +0000
ROA not before: Thu 06 Apr 2023 11:34:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5531
IP address blocks: 194.165.24.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:56:58:f0:b5:8f:ff:5a:c1:f2:53:11:90:3c:04:c7:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b709035681f2e361785d4a8f63590ceec217e251
Validity
Not Before: Apr 6 11:34:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee4ce5a9ac897ff180e5a4f306d060b932892505
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:df:01:4b:47:9e:64:d5:bb:93:65:dc:ea:bd:
5f:ab:67:37:05:26:a3:cc:ae:56:30:12:eb:4b:ee:
73:70:e9:1c:1a:8d:74:08:56:6b:76:26:fa:9b:37:
3e:04:f7:64:ed:7e:de:96:00:54:8b:cd:72:4a:f8:
7d:59:da:5f:2d:9a:e5:8c:cd:89:4a:6c:7c:16:4c:
ac:4f:94:ad:26:2c:22:ab:79:8b:9f:6f:c5:2d:38:
d1:e9:99:26:f1:23:a9:65:7c:59:a8:24:68:ed:16:
cc:d8:0b:e0:bc:8e:4e:c3:08:67:2c:06:ee:5d:f8:
ad:1a:b3:46:44:85:19:e4:72:0b:af:43:b6:ba:0c:
73:07:7f:cd:bb:01:d5:f7:50:13:ec:10:de:82:13:
e7:43:2c:d6:65:13:2e:01:21:f9:3e:a1:d6:d5:e1:
85:5b:00:9b:4e:15:14:f7:97:d5:09:e8:7b:53:29:
f6:21:9b:8f:57:e1:cc:66:af:af:04:a6:96:8d:bb:
3b:97:99:7f:cc:80:af:6f:b0:26:8a:f9:f5:5b:6d:
93:0d:2b:9a:e3:52:cc:d5:95:d7:b4:c5:82:0e:02:
8b:75:60:d7:58:8a:4c:2a:51:e7:3d:6b:27:fc:73:
81:87:6b:15:a7:b1:55:bb:7f:a8:fd:80:94:0a:3d:
ae:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:4C:E5:A9:AC:89:7F:F1:80:E5:A4:F3:06:D0:60:B9:32:89:25:05
X509v3 Authority Key Identifier:
keyid:B7:09:03:56:81:F2:E3:61:78:5D:4A:8F:63:59:0C:EE:C2:17:E2:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/twkDVoHy42F4XUqPY1kM7sIX4lE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/d8d23b-92d8-46af-911e-be736416b30f/1/7kzlqayJf_GA5aTzBtBguTKJJQU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/d8d23b-92d8-46af-911e-be736416b30f/1/twkDVoHy42F4XUqPY1kM7sIX4lE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.165.24.0/23
Signature Algorithm: sha256WithRSAEncryption
6b:bd:eb:a0:1d:3f:57:e5:8b:a1:d0:84:be:c0:23:d4:45:64:
e6:21:69:4f:08:28:15:ad:72:0a:31:a5:fd:68:98:d2:0a:e9:
d8:60:af:06:c4:94:4b:02:e0:95:ba:45:e5:98:78:91:2f:96:
8c:24:2c:f2:3d:f5:5e:81:70:20:d2:d5:f0:50:9b:9a:ed:af:
54:0b:ab:28:1c:1f:74:2b:90:a4:a8:6d:fb:00:ce:93:95:0b:
be:cf:38:29:fd:43:82:99:c2:18:28:3b:59:f8:f9:c1:35:e8:
40:85:e9:e4:ee:22:67:09:59:06:9e:14:7b:81:47:bd:5c:4c:
c3:f0:c2:62:a8:43:be:96:d4:52:28:4d:1c:88:51:62:85:50:
27:b3:d3:b4:3b:20:8b:d8:7a:67:8e:84:9a:ac:1e:5d:83:d0:
1d:01:58:75:62:c2:4a:bc:03:51:81:77:48:dd:a1:e0:2a:6e:
7f:1e:2d:27:cd:c9:a5:67:0a:5b:17:c1:1b:8b:da:e2:d2:1e:
ba:94:bb:86:93:e3:33:b5:d2:24:65:d2:4b:ce:0e:49:03:b6:
b7:dd:e1:99:13:ad:6b:10:c5:24:c7:99:35:94:6a:f1:b8:a5:
4a:4a:67:58:d8:2a:21:4e:7d:42:df:48:e4:87:45:7c:3c:3a:
56:a6:c7:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:04 2024 by rpki-client on console-fra.rpki-client.org