Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/72a67b-1d1c-4235-a487-fc9093fedb1b/1/czl8gCf_1mYnnXQsECYYvss30HE.roa
File: czl8gCf_1mYnnXQsECYYvss30HE.roa (raw, json)
Hash identifier: PQeT6QV9toLZE6P0+Y3il9TkJUcYZW+QyQTlWpBhXZw=
Subject key identifier: 73:39:7C:80:27:FF:D6:66:27:9D:74:2C:10:26:18:BE:CB:37:D0:71
Certificate issuer: /CN=6327607563493337687ad69ce1064e636265be3f
Certificate serial: 018DF8BACD8EDC4515125C06F93C2145FDC3
Authority key identifier: 63:27:60:75:63:49:33:37:68:7A:D6:9C:E1:06:4E:63:62:65:BE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YydgdWNJMzdoetac4QZOY2Jlvj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/72a67b-1d1c-4235-a487-fc9093fedb1b/1/czl8gCf_1mYnnXQsECYYvss30HE.roa
Signing time: Fri 01 Mar 2024 06:36:48 +0000
ROA not before: Fri 01 Mar 2024 06:36:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215943
IP address blocks: 5.157.2.0/23 maxlen: 23
37.72.184.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f8:ba:cd:8e:dc:45:15:12:5c:06:f9:3c:21:45:fd:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6327607563493337687ad69ce1064e636265be3f
Validity
Not Before: Mar 1 06:36:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=73397c8027ffd666279d742c102618becb37d071
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:4c:55:78:72:d9:ff:20:bf:ca:cb:f2:4a:bc:
61:76:bf:99:d6:8d:90:b9:4f:17:93:bf:84:05:b8:
c6:de:b6:84:e2:3f:c5:4e:9a:66:a2:05:ac:d5:51:
d9:22:c3:50:a3:67:23:46:4e:1c:f9:49:b4:fe:85:
3a:ce:df:ee:ff:6c:5e:b9:41:8c:3e:70:66:1c:73:
b9:51:dc:25:ba:8a:98:c2:4f:9e:e4:1e:cd:23:21:
8d:3b:d9:03:c8:f0:74:a8:5c:24:42:0f:3c:f8:3b:
1d:98:df:cf:5e:be:7a:f2:1f:f7:de:c3:cd:fc:48:
7f:69:a8:b7:a0:48:fc:6b:81:2c:07:f8:36:11:41:
62:a7:e7:c7:2b:8e:77:7b:a1:d8:ce:2c:36:9d:80:
50:7e:72:0d:bd:be:4d:cc:50:e4:b7:d6:24:b7:f0:
aa:0d:29:fe:23:7c:21:a2:2f:59:7d:75:a7:7b:53:
2a:c0:cb:ff:fc:cb:e1:91:a0:b0:6d:15:01:fe:69:
29:cf:79:73:8d:ed:85:5a:58:74:c7:0e:bc:99:fb:
d0:c8:ca:09:76:af:23:7b:f5:25:0f:83:4a:73:e3:
dd:30:53:36:9b:5d:5c:54:46:49:1d:1a:1a:b5:71:
59:b6:cd:da:77:ba:f3:3e:d2:ef:27:ba:c9:29:cd:
eb:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:39:7C:80:27:FF:D6:66:27:9D:74:2C:10:26:18:BE:CB:37:D0:71
X509v3 Authority Key Identifier:
keyid:63:27:60:75:63:49:33:37:68:7A:D6:9C:E1:06:4E:63:62:65:BE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YydgdWNJMzdoetac4QZOY2Jlvj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/72a67b-1d1c-4235-a487-fc9093fedb1b/1/czl8gCf_1mYnnXQsECYYvss30HE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/72a67b-1d1c-4235-a487-fc9093fedb1b/1/YydgdWNJMzdoetac4QZOY2Jlvj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.157.2.0/23
37.72.184.0/23
Signature Algorithm: sha256WithRSAEncryption
3a:22:0f:02:2f:17:35:50:34:90:d8:9f:cf:bb:6e:b1:5b:76:
6a:cb:59:34:89:f6:c5:2d:ba:f5:6c:23:6b:3d:98:03:b7:85:
f3:dd:a3:75:af:3d:19:65:8e:ca:f4:b8:0c:66:f8:cb:cc:6d:
19:d4:08:d2:dc:16:ea:98:a7:cf:80:18:08:8a:14:6c:24:46:
9e:95:f6:1c:29:f4:f0:bb:bb:1f:93:72:ea:49:ac:4c:d0:5b:
7c:d5:6d:68:e4:3d:01:91:ef:e3:9a:fa:a0:a2:e3:2f:d9:a0:
82:19:b8:24:d7:4c:d4:c2:21:f6:f8:e5:d7:87:4c:f2:0b:5b:
c6:b2:08:1e:3f:22:b7:89:f3:f8:3b:69:25:76:cd:27:81:a6:
fe:52:23:c2:7c:77:b8:4f:c5:6b:20:3d:2f:b6:72:33:19:3e:
fe:02:f0:ce:45:fe:78:41:26:74:5c:75:9b:76:ad:a8:d3:10:
f0:b7:b2:7f:2d:7f:ed:23:3f:5b:8c:2c:39:c1:71:01:ce:ea:
8c:fd:74:f4:2a:94:d1:d4:c0:c4:97:93:9d:55:7a:5c:55:c7:
f1:d5:aa:5c:a3:92:48:09:1a:51:35:0f:8d:f7:90:c6:cc:64:
01:5b:f4:93:a3:6c:a6:74:61:c9:67:fc:36:a9:2c:4f:a8:5a:
90:19:95:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:24 2024 by rpki-client on console-fra.rpki-client.org