Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/247492-da0f-4d43-b262-d2c29f1981ff/1/qZnbWbmLyEEnloLrzIew4odunIs.roa
File: qZnbWbmLyEEnloLrzIew4odunIs.roa (raw, json)
Hash identifier: QCRhYL/QTd4h+EppG9sk4R5oTpUqWcD0Edt0L4XfUsE=
Subject key identifier: A9:99:DB:59:B9:8B:C8:41:27:96:82:EB:CC:87:B0:E2:87:6E:9C:8B
Certificate issuer: /CN=0d8f95c3875d66b069042196606c00d9f96fd4cb
Certificate serial: 018964C050CF23AE60647BD874885BB46BE7
Authority key identifier: 0D:8F:95:C3:87:5D:66:B0:69:04:21:96:60:6C:00:D9:F9:6F:D4:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DY-Vw4ddZrBpBCGWYGwA2flv1Ms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/247492-da0f-4d43-b262-d2c29f1981ff/1/qZnbWbmLyEEnloLrzIew4odunIs.roa
Signing time: Mon 17 Jul 2023 16:47:52 +0000
ROA not before: Mon 17 Jul 2023 16:47:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 193.228.131.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:c0:50:cf:23:ae:60:64:7b:d8:74:88:5b:b4:6b:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d8f95c3875d66b069042196606c00d9f96fd4cb
Validity
Not Before: Jul 17 16:47:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a999db59b98bc841279682ebcc87b0e2876e9c8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e2:dd:91:e0:2a:39:5e:46:4c:f5:f4:bd:73:
75:1f:cf:a4:90:a3:39:b8:38:a1:19:87:0c:c5:52:
f9:79:75:1a:6a:56:43:c1:ed:cd:1a:de:a7:3e:f0:
c4:d4:c0:d2:d3:99:db:11:a5:14:d4:92:b9:41:a7:
a3:e1:66:26:3d:15:a2:c7:34:59:fc:d7:d6:7f:2d:
d1:6c:b9:29:89:f9:10:84:28:fe:38:43:62:34:44:
c4:18:c5:b7:93:1b:75:2b:1b:ef:d1:e6:a6:25:b4:
ff:fd:b8:da:e8:ef:53:e7:b6:4d:b3:3c:8a:23:fd:
8b:42:b7:36:8e:fb:c6:e9:7d:44:ed:1c:ca:7d:b5:
4f:5a:ac:cc:09:4a:32:6d:5e:79:6c:fc:61:48:33:
18:d0:ab:c7:9b:9c:72:7c:10:b6:73:dd:2f:d7:e9:
60:86:57:ab:d5:bc:a0:80:3f:69:f9:1a:22:6a:7d:
18:c9:37:1f:70:9e:33:e9:97:2d:e2:b5:58:6a:48:
3c:c0:c4:95:75:d5:7f:da:ad:17:c9:d9:76:5f:94:
ee:6a:ea:f3:38:36:1c:b9:98:2a:95:d7:54:ad:0b:
1b:ae:53:53:78:17:45:22:39:d1:5d:ed:71:80:ae:
17:94:20:51:8c:c1:b7:6c:8e:22:1a:46:e1:a6:a1:
6c:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:99:DB:59:B9:8B:C8:41:27:96:82:EB:CC:87:B0:E2:87:6E:9C:8B
X509v3 Authority Key Identifier:
keyid:0D:8F:95:C3:87:5D:66:B0:69:04:21:96:60:6C:00:D9:F9:6F:D4:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DY-Vw4ddZrBpBCGWYGwA2flv1Ms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/247492-da0f-4d43-b262-d2c29f1981ff/1/qZnbWbmLyEEnloLrzIew4odunIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/247492-da0f-4d43-b262-d2c29f1981ff/1/DY-Vw4ddZrBpBCGWYGwA2flv1Ms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.228.131.0/24
Signature Algorithm: sha256WithRSAEncryption
21:a2:64:64:85:c5:ba:d8:0c:aa:e7:5f:d3:4f:d3:98:d9:08:
5a:09:24:e8:d8:98:52:8e:79:17:70:59:b3:79:1e:3f:1f:fa:
21:bf:59:6c:dd:0c:7d:b0:a9:ee:b7:d6:84:68:17:44:59:13:
5a:1d:c0:15:df:3e:8a:78:d7:1a:e8:bd:ef:13:ef:8b:61:05:
97:b7:dc:54:68:3b:28:61:9c:77:a8:ce:87:da:d0:5e:fa:53:
0b:cc:73:fd:34:a3:22:7c:26:c3:6e:bc:63:02:87:9c:78:06:
e1:69:4e:60:25:f5:86:29:ba:f2:f6:57:69:62:0a:10:4a:6d:
51:58:1f:46:cb:aa:82:a9:4a:76:5c:49:90:d3:e7:6a:6f:31:
ad:5e:33:2b:e5:79:92:6d:ee:25:f3:c1:d0:61:d3:bf:91:1d:
17:24:df:a7:5d:df:4d:66:c6:28:3f:87:9e:0e:47:af:93:6a:
88:7c:f9:44:ac:5a:59:5d:03:bf:da:58:37:30:6a:8b:3b:46:
ae:27:df:0a:9f:a8:fb:72:aa:cd:25:c1:db:cd:96:45:f6:50:
30:9c:4a:25:db:bb:b6:b4:a3:5c:12:06:5f:54:29:b6:f5:e4:
b1:12:c9:7c:55:d3:06:db:7a:93:a6:6f:78:da:f3:7e:b7:63:
9c:72:bf:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:32 2024 by rpki-client on console-ams.rpki-client.org