Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/daf25c-1b49-4719-9203-3254e4d7122e/1/1WejyYlglMKyzhJJSseY7tb49dk.roa
File: 1WejyYlglMKyzhJJSseY7tb49dk.roa (raw, json)
Hash identifier: x3mm/c8UAq8LTCsKCbp3OuBSjf9wYTu6RWthlcAfo6g=
Subject key identifier: D5:67:A3:C9:89:60:94:C2:B2:CE:12:49:4A:C7:98:EE:D6:F8:F5:D9
Certificate issuer: /CN=bf174a5833bde6aa7824c34099762d00978857ff
Certificate serial: 01856E4AF8F509AF69AB3F78B56FA59243BE
Authority key identifier: BF:17:4A:58:33:BD:E6:AA:78:24:C3:40:99:76:2D:00:97:88:57:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vxdKWDO95qp4JMNAmXYtAJeIV_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/daf25c-1b49-4719-9203-3254e4d7122e/1/1WejyYlglMKyzhJJSseY7tb49dk.roa
Signing time: Sun 01 Jan 2023 17:04:45 +0000
ROA not before: Sun 01 Jan 2023 17:04:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13057
IP address blocks: 193.163.240.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:4a:f8:f5:09:af:69:ab:3f:78:b5:6f:a5:92:43:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf174a5833bde6aa7824c34099762d00978857ff
Validity
Not Before: Jan 1 17:04:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d567a3c9896094c2b2ce12494ac798eed6f8f5d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:96:f8:7d:44:b2:b4:ae:34:61:9f:17:ac:be:
61:92:26:9e:de:33:5c:75:32:b2:27:10:98:0c:4b:
ab:79:b0:47:48:14:7e:a6:a1:1a:b2:a7:e6:fa:34:
df:82:43:1d:ac:12:dd:7a:97:85:58:fd:d9:1e:26:
49:9d:9c:3d:0f:f1:a7:9c:f2:dd:2d:3a:1f:7a:39:
9b:d3:26:bb:4d:5e:fc:52:d4:5c:64:85:f2:b5:38:
a5:54:a2:3a:6b:da:5a:07:a6:94:a4:be:7b:a0:a0:
72:c0:08:81:1d:f6:5d:f3:0f:63:e8:d4:26:84:e2:
27:27:6d:a6:9c:16:98:5c:05:ce:c6:b6:0b:86:ec:
30:29:67:de:f9:48:f6:e2:f8:f3:04:f2:b4:87:ab:
82:f5:c8:49:c2:37:d1:84:a0:e5:26:9f:8d:18:bf:
01:d0:5e:5c:5c:e7:b6:e0:e8:98:19:58:a1:de:2f:
d5:7c:c3:6a:8b:da:b8:32:04:82:de:6e:56:ee:f8:
cd:3b:a0:4b:4a:5f:d4:e3:25:d1:1e:92:25:d0:bf:
db:b6:32:f3:ac:50:5b:6a:40:c2:b3:12:20:5e:2f:
11:13:a0:e3:b1:61:21:3f:50:34:e9:42:2f:ce:52:
da:62:64:fa:00:37:67:74:48:bc:30:7e:30:3d:f7:
20:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:67:A3:C9:89:60:94:C2:B2:CE:12:49:4A:C7:98:EE:D6:F8:F5:D9
X509v3 Authority Key Identifier:
keyid:BF:17:4A:58:33:BD:E6:AA:78:24:C3:40:99:76:2D:00:97:88:57:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vxdKWDO95qp4JMNAmXYtAJeIV_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/daf25c-1b49-4719-9203-3254e4d7122e/1/1WejyYlglMKyzhJJSseY7tb49dk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/daf25c-1b49-4719-9203-3254e4d7122e/1/vxdKWDO95qp4JMNAmXYtAJeIV_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.240.0/24
Signature Algorithm: sha256WithRSAEncryption
47:0e:dc:40:ca:3d:be:b0:98:cb:22:c8:7e:c7:2c:64:ad:c1:
97:bb:7a:f5:c9:6f:ea:0e:f3:91:88:65:03:30:31:21:34:a6:
a6:0c:0b:a8:22:e6:80:59:df:0f:6f:fb:06:ef:00:05:f2:cc:
41:78:c9:de:63:b5:79:d4:36:4d:2f:62:0c:3e:8c:bf:d9:fc:
01:da:1d:7f:e2:b6:32:fe:49:09:2c:9f:5b:84:47:af:33:49:
0a:0a:27:fe:8e:21:b5:ec:d5:cb:e8:fe:70:6d:f4:30:a4:cc:
69:b2:9a:b9:a0:6d:45:33:67:2c:e0:71:bf:81:23:5f:9e:b4:
c0:9d:eb:19:d2:00:44:e0:7d:02:ff:a0:d8:1e:4a:32:20:31:
fb:e8:13:58:f0:9e:23:49:8e:27:14:13:2e:7d:01:b0:c8:68:
0d:12:e6:d4:ae:b6:3a:18:16:27:9e:58:fd:bf:43:99:1a:df:
63:38:5e:a9:37:98:e7:06:8b:8f:54:c8:17:da:ee:ea:56:41:
c2:8e:55:98:23:09:83:dd:51:80:2b:27:48:78:1b:59:c0:f7:
7e:76:86:e1:25:bf:05:32:62:00:77:55:5c:d4:6e:d3:bd:12:
f5:b1:8d:e7:bb:7a:0a:46:a9:83:28:df:4e:3c:44:43:16:c4:
b6:74:56:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:33 2024 by rpki-client on console-fra.rpki-client.org