Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/f5d3fb-c8c7-42e4-9ff8-6018faf464fb/1/tKj_YR-t94VYdsCuG79qe-4DV1Q.roa
File: tKj_YR-t94VYdsCuG79qe-4DV1Q.roa (raw, json)
Hash identifier: 9T0QyUtqkHdLREbPbvk0rMLwMAX1Zv/u5I7LJqXFa48=
Subject key identifier: B4:A8:FF:61:1F:AD:F7:85:58:76:C0:AE:1B:BF:6A:7B:EE:03:57:54
Certificate issuer: /CN=c43256a81911d13cd80c53673e0517ff225c6d08
Certificate serial: 036D0908
Authority key identifier: C4:32:56:A8:19:11:D1:3C:D8:0C:53:67:3E:05:17:FF:22:5C:6D:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xDJWqBkR0TzYDFNnPgUX_yJcbQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/f5d3fb-c8c7-42e4-9ff8-6018faf464fb/1/tKj_YR-t94VYdsCuG79qe-4DV1Q.roa
Signing time: Mon 31 Jan 2022 11:48:32 +0000
ROA not before: Mon 31 Jan 2022 11:48:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213035
IP address blocks: 193.239.147.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57477384 (0x36d0908)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c43256a81911d13cd80c53673e0517ff225c6d08
Validity
Not Before: Jan 31 11:48:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b4a8ff611fadf7855876c0ae1bbf6a7bee035754
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:86:61:8c:78:bc:3a:8b:6f:f3:1c:b7:f1:96:
7a:13:c6:c7:35:af:22:3c:c8:c6:fc:4a:b9:32:6f:
86:41:af:de:b6:35:de:05:6b:13:32:96:de:6f:03:
cd:66:48:8a:e3:56:5d:03:a9:46:21:bf:af:98:7d:
84:90:80:f1:08:bd:56:0d:db:25:b6:5e:09:8a:03:
74:33:4c:e4:74:8e:32:b5:46:43:2f:c8:bd:cc:c2:
47:44:46:4a:22:f2:ee:8a:6f:ae:e3:1b:bd:72:5e:
2f:e4:17:94:67:02:de:02:2a:98:41:24:39:bd:a7:
34:40:6f:7e:10:ec:f6:fd:7e:6e:f4:49:1f:08:73:
21:9c:6f:9a:77:e3:03:7b:ea:04:20:bb:64:b5:cd:
ab:90:44:31:c7:05:eb:94:f9:ad:7e:3b:cb:b6:43:
9c:a4:b0:bd:78:57:5c:9b:0a:3e:2b:e2:a2:3d:cc:
26:78:4d:15:f6:3a:1e:82:3c:5e:cb:84:f7:80:24:
af:03:bb:ab:d3:a3:e5:a6:19:a2:a5:ba:38:54:7c:
e5:b5:f0:89:96:ab:2a:45:0e:ca:63:54:d7:b6:b8:
38:26:0f:64:0d:05:52:a2:36:63:ed:e1:1a:32:ba:
ec:8a:e6:ba:21:ab:4b:8f:df:48:f5:e2:6b:26:32:
ae:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:A8:FF:61:1F:AD:F7:85:58:76:C0:AE:1B:BF:6A:7B:EE:03:57:54
X509v3 Authority Key Identifier:
keyid:C4:32:56:A8:19:11:D1:3C:D8:0C:53:67:3E:05:17:FF:22:5C:6D:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xDJWqBkR0TzYDFNnPgUX_yJcbQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f5d3fb-c8c7-42e4-9ff8-6018faf464fb/1/tKj_YR-t94VYdsCuG79qe-4DV1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f5d3fb-c8c7-42e4-9ff8-6018faf464fb/1/xDJWqBkR0TzYDFNnPgUX_yJcbQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.147.0/24
Signature Algorithm: sha256WithRSAEncryption
58:65:34:3d:74:ec:a8:65:c4:bf:88:bd:c3:5c:a4:92:1f:8b:
dc:ba:31:0e:91:e5:dd:ff:88:a2:e2:e5:6f:49:f2:fc:46:41:
59:ab:fd:38:fc:93:dc:66:bc:ae:07:a3:55:d7:1b:4a:70:cc:
82:76:3d:b9:93:2d:73:0d:17:0c:eb:bf:76:03:a4:19:fc:81:
11:b3:3f:e3:a1:c3:5e:9b:68:59:f9:1c:09:01:ea:e5:e4:88:
a5:97:17:b6:55:4a:2e:4f:96:a6:f5:4c:54:98:20:26:fc:ea:
b6:32:d8:02:88:c9:e0:32:c2:92:fc:c8:7b:d1:d0:f0:af:b5:
60:70:7b:31:46:3b:68:69:4c:19:0e:dd:70:1e:ed:17:dd:93:
70:d1:b7:de:89:ec:be:8a:03:47:d1:bf:90:8c:31:7a:fb:d9:
bf:ef:09:76:2e:cb:94:c3:ee:76:07:85:9d:fe:85:cb:9b:06:
e5:00:a8:da:df:d1:60:08:6a:89:bf:19:34:4b:cc:ea:08:3e:
f4:f4:5f:09:1d:aa:b1:35:f3:dc:ef:a3:fc:39:4b:72:74:f7:
b4:75:cb:ce:2b:9c:f3:16:c1:c8:f6:b7:4c:ba:ed:d7:be:81:
8a:10:3d:cd:1c:7d:73:cb:72:03:b2:3f:b9:17:07:2d:18:dc:
5b:06:10:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:58 2023 by rpki-client on console-fra.rpki-client.org