Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/daf25c-1b49-4719-9203-3254e4d7122e/1/R1r6KWsnc0yqbxV1VpoqsCTOb0o.roa
File: R1r6KWsnc0yqbxV1VpoqsCTOb0o.roa (raw, json)
Hash identifier: RnQ2qoFWA6MTC6fG4OsKIMX8FLa0RUo4zhodV9fjgpY=
Subject key identifier: 47:5A:FA:29:6B:27:73:4C:AA:6F:15:75:56:9A:2A:B0:24:CE:6F:4A
Certificate issuer: /CN=bf174a5833bde6aa7824c34099762d00978857ff
Certificate serial: 01856E4AFB2BD2A71DB490B253232D64E9A5
Authority key identifier: BF:17:4A:58:33:BD:E6:AA:78:24:C3:40:99:76:2D:00:97:88:57:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vxdKWDO95qp4JMNAmXYtAJeIV_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/daf25c-1b49-4719-9203-3254e4d7122e/1/R1r6KWsnc0yqbxV1VpoqsCTOb0o.roa
Signing time: Sun 01 Jan 2023 17:04:45 +0000
ROA not before: Sun 01 Jan 2023 17:04:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25384
IP address blocks: 193.163.255.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:4a:fb:2b:d2:a7:1d:b4:90:b2:53:23:2d:64:e9:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf174a5833bde6aa7824c34099762d00978857ff
Validity
Not Before: Jan 1 17:04:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=475afa296b27734caa6f1575569a2ab024ce6f4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:03:b0:4a:c0:68:14:7c:fb:73:dc:b4:48:0b:
83:4b:81:7b:85:7c:a4:1e:3b:d2:d9:89:ef:1f:c2:
c4:b8:94:ff:3d:7b:ba:66:ed:be:60:7d:23:4d:bf:
05:07:2d:d3:ca:30:48:c9:04:25:51:f3:9e:a0:0c:
e2:9e:e1:a2:aa:ab:36:47:cd:be:80:84:76:f1:78:
60:19:28:34:b8:63:e6:82:8e:91:dd:a4:4e:fa:18:
91:f8:f9:a9:74:51:bc:db:fc:90:e8:b8:a5:41:7d:
d7:93:a8:f9:74:ec:58:f4:7e:2c:fe:31:5b:f7:77:
64:b1:97:db:28:02:bb:21:36:17:c1:f5:da:07:f9:
33:4c:e2:22:91:06:ae:3a:31:8b:46:8f:92:21:51:
9c:3f:47:e6:cf:0d:a1:1e:7c:8a:89:44:fb:1b:7e:
34:f3:fd:17:26:4c:02:fd:12:84:26:d1:bf:03:5c:
15:6d:c1:06:1c:ef:df:2c:0d:21:e4:23:0d:8e:93:
19:b1:2f:f8:23:06:53:5a:a2:9a:65:56:7a:06:8e:
eb:88:c8:e9:a3:a9:60:19:64:97:09:b0:65:06:78:
0b:46:56:30:91:b5:89:f0:4f:5b:22:f0:bd:7d:7b:
f0:1c:cd:7f:0b:e6:84:a3:36:f4:ca:34:a7:20:39:
17:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:5A:FA:29:6B:27:73:4C:AA:6F:15:75:56:9A:2A:B0:24:CE:6F:4A
X509v3 Authority Key Identifier:
keyid:BF:17:4A:58:33:BD:E6:AA:78:24:C3:40:99:76:2D:00:97:88:57:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vxdKWDO95qp4JMNAmXYtAJeIV_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/daf25c-1b49-4719-9203-3254e4d7122e/1/R1r6KWsnc0yqbxV1VpoqsCTOb0o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/daf25c-1b49-4719-9203-3254e4d7122e/1/vxdKWDO95qp4JMNAmXYtAJeIV_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.255.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:b2:98:02:3c:18:ee:30:8c:09:0f:c5:69:75:a0:37:a7:9f:
f2:68:82:b3:ba:03:f2:54:8a:c5:df:1e:a7:47:a9:6f:68:e4:
77:56:90:8d:d8:8a:88:ca:e3:e4:a4:42:2f:3a:7c:ee:7f:c2:
c8:ba:a9:97:ca:ec:4e:fb:91:b8:cc:69:eb:1d:de:a5:49:79:
07:3c:e7:6d:40:bc:e4:86:84:22:6a:79:0b:ad:fe:46:cc:05:
12:bf:18:76:18:95:37:69:39:6e:d2:d3:fc:3a:79:bf:78:2d:
23:69:f9:02:32:28:26:6b:18:d0:b0:0f:84:36:89:69:f1:e7:
a2:db:bf:9d:89:ef:a9:a7:b4:68:d5:55:a2:33:30:6f:1b:2c:
60:fc:9f:b2:fb:89:95:c6:59:03:58:c8:c3:c6:64:97:3b:cb:
0a:f6:75:14:03:0d:4f:bd:84:fc:8f:35:29:b1:35:f0:77:b2:
b3:44:96:5d:99:58:1b:2b:0e:ce:4f:94:11:8e:40:84:e7:15:
a4:85:2e:69:48:01:84:f0:e9:8f:84:bc:94:35:44:4c:52:02:
a8:03:43:1a:80:db:03:70:c7:bb:d8:22:f4:10:7c:ff:de:4b:
54:b2:6e:20:53:20:30:3d:bf:b7:dc:68:33:c8:b3:56:b5:db:
9c:f1:4e:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:33 2024 by rpki-client on console-fra.rpki-client.org