Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/f5d3fb-c8c7-42e4-9ff8-6018faf464fb/1/XQD3kzTnIFCwAbJGsBtG1IUCCcU.roa
File: XQD3kzTnIFCwAbJGsBtG1IUCCcU.roa (raw, json)
Hash identifier: 9yXteRWgtwp0APX2oHrsrvDgOuTV0eRu2nl3A95Z2Hw=
Subject key identifier: 5D:00:F7:93:34:E7:20:50:B0:01:B2:46:B0:1B:46:D4:85:02:09:C5
Certificate issuer: /CN=c43256a81911d13cd80c53673e0517ff225c6d08
Certificate serial: 03226E05
Authority key identifier: C4:32:56:A8:19:11:D1:3C:D8:0C:53:67:3E:05:17:FF:22:5C:6D:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xDJWqBkR0TzYDFNnPgUX_yJcbQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/f5d3fb-c8c7-42e4-9ff8-6018faf464fb/1/XQD3kzTnIFCwAbJGsBtG1IUCCcU.roa
Signing time: Sat 01 Jan 2022 12:01:16 +0000
ROA not before: Sat 01 Jan 2022 12:01:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 193.239.146.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52588037 (0x3226e05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c43256a81911d13cd80c53673e0517ff225c6d08
Validity
Not Before: Jan 1 12:01:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d00f79334e72050b001b246b01b46d4850209c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:17:f5:b8:3d:41:17:e2:24:4d:58:0d:83:e5:
0e:fe:30:93:03:92:91:90:4a:4c:4e:38:34:a1:c6:
48:05:42:e5:57:69:d3:cf:42:62:44:30:3b:03:f3:
e1:63:9b:50:bb:36:eb:88:01:10:41:67:ec:48:80:
b2:c3:2e:24:b4:c6:2c:2c:04:30:94:24:5e:45:d3:
6b:f5:13:9d:1f:bb:76:bf:a5:e7:08:05:da:6e:1e:
74:17:4f:4a:67:c2:36:aa:97:85:5f:ee:a0:fa:04:
a8:59:18:cf:ea:fa:e8:20:ac:b2:ad:9d:7d:20:56:
8d:9f:f4:f3:91:82:93:ad:e9:92:e6:af:ee:2a:a8:
c5:e5:c1:64:47:04:99:e8:bf:09:9f:81:d7:c6:41:
f5:ec:b4:9b:73:2e:93:11:00:54:8a:cc:b7:4f:ea:
ec:fb:33:5a:4c:90:7a:29:cb:ed:6f:05:dc:95:f6:
0d:2c:dd:fb:fb:ea:8b:22:9e:23:df:35:65:b7:66:
de:fd:0b:80:c3:47:2a:88:4c:1e:59:0f:89:de:da:
44:24:87:a2:bb:32:22:f3:12:68:3f:9b:01:85:4b:
d8:37:a5:45:29:ac:2a:21:40:07:47:8c:6a:f7:88:
65:35:71:76:fa:76:12:2a:d7:30:0d:92:4b:ad:8f:
ef:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:00:F7:93:34:E7:20:50:B0:01:B2:46:B0:1B:46:D4:85:02:09:C5
X509v3 Authority Key Identifier:
keyid:C4:32:56:A8:19:11:D1:3C:D8:0C:53:67:3E:05:17:FF:22:5C:6D:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xDJWqBkR0TzYDFNnPgUX_yJcbQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f5d3fb-c8c7-42e4-9ff8-6018faf464fb/1/XQD3kzTnIFCwAbJGsBtG1IUCCcU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f5d3fb-c8c7-42e4-9ff8-6018faf464fb/1/xDJWqBkR0TzYDFNnPgUX_yJcbQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.146.0/23
Signature Algorithm: sha256WithRSAEncryption
c6:ef:9f:5f:fc:6e:e3:fb:82:3e:b5:3e:2c:5b:cb:53:cd:3d:
b6:04:32:ac:7e:8a:56:a3:9a:6d:10:a5:77:7f:32:ea:8f:3a:
3d:64:5f:6f:8a:ee:fb:6d:41:50:da:de:57:eb:a7:65:c3:e2:
9c:33:6b:db:ef:c0:cb:7a:be:d0:9b:8b:c2:b2:51:5d:4a:66:
56:06:81:07:94:f1:71:31:52:ae:f1:3b:1a:05:25:5f:e3:a0:
ec:a9:4e:7b:2d:6e:10:58:b5:9f:f1:bd:85:f0:1e:e5:6b:5f:
3e:89:13:cb:97:62:c2:f9:8a:de:5e:cd:54:8a:d7:8f:52:0a:
41:a2:a5:9d:f2:1f:1b:9c:a0:d6:41:85:97:9d:cd:1c:5d:ad:
7a:19:2b:df:8b:ea:34:67:70:6a:df:4f:ff:9b:3b:c5:4d:47:
18:e4:b4:5a:33:23:52:25:0a:80:18:58:48:8e:f7:35:77:4f:
e8:93:06:bd:df:df:eb:70:52:89:d8:69:f7:5a:84:04:5b:ab:
36:b2:0b:35:ef:ce:61:76:fb:a7:a8:9c:a6:c0:08:94:9f:01:
92:87:b1:c0:3a:0a:38:0f:67:d5:df:fe:87:fc:bf:75:61:7c:
96:53:f0:9c:a3:98:b9:29:54:9f:cc:28:56:26:9d:d9:0d:4c:
e5:f6:28:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:58 2023 by rpki-client on console-fra.rpki-client.org