Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/92158a-d13c-4418-8663-9318d216bc37/1/lMC3CKVqyRG1yGTlc4mIrSYM1iU.roa
File: lMC3CKVqyRG1yGTlc4mIrSYM1iU.roa (raw, json)
Hash identifier: uP49KdmQmJwS5LRa1hnbziia0zlfp6VX55+cFQfoubs=
Subject key identifier: 94:C0:B7:08:A5:6A:C9:11:B5:C8:64:E5:73:89:88:AD:26:0C:D6:25
Certificate issuer: /CN=9c02de7d4d8aff150104f90aacee958fd07207f8
Certificate serial: 018571FA26DFA547C760131D83CEF83A82CB
Authority key identifier: 9C:02:DE:7D:4D:8A:FF:15:01:04:F9:0A:AC:EE:95:8F:D0:72:07:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nALefU2K_xUBBPkKrO6Vj9ByB_g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/92158a-d13c-4418-8663-9318d216bc37/1/lMC3CKVqyRG1yGTlc4mIrSYM1iU.roa
Signing time: Mon 02 Jan 2023 10:14:57 +0000
ROA not before: Mon 02 Jan 2023 10:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212728
IP address blocks: 194.156.79.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:fa:26:df:a5:47:c7:60:13:1d:83:ce:f8:3a:82:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c02de7d4d8aff150104f90aacee958fd07207f8
Validity
Not Before: Jan 2 10:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=94c0b708a56ac911b5c864e5738988ad260cd625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:f3:a4:95:a0:2c:52:3c:4b:41:88:83:dc:61:
1a:23:59:38:28:79:ca:9e:9a:5e:1e:23:c5:8f:0a:
b6:f7:9a:65:f5:1c:09:17:11:98:9f:18:dd:68:bd:
0b:7b:72:8a:2c:03:34:0e:d8:eb:96:8c:cb:b1:cd:
cc:99:26:8f:a5:00:42:ec:3a:98:7f:e8:f7:2e:8f:
bb:f7:e3:22:31:4c:7f:0b:8e:90:e7:dd:67:0f:57:
ac:49:23:8d:57:69:ac:1a:87:99:47:54:1d:3e:47:
8a:e7:bf:94:24:af:ba:82:26:41:bd:2d:50:76:73:
c7:4a:af:4b:ed:dd:75:24:d4:4c:36:79:d8:2d:38:
45:d9:75:7a:21:ed:ae:de:4a:35:b2:b9:01:4b:6b:
19:cf:77:5a:db:f2:1c:f1:ba:69:7d:52:43:6d:2c:
b8:61:91:56:8b:d1:d4:92:ad:23:7a:f8:7d:e2:b6:
e7:7a:a5:a8:4b:29:c9:45:5f:fa:05:89:20:22:21:
0e:39:61:8b:06:2a:4a:13:05:52:81:6a:21:f5:ee:
a4:62:27:63:55:6e:a3:5e:17:55:8d:13:27:22:78:
cb:02:90:df:a1:ed:12:8a:90:94:10:c2:b0:64:ec:
1f:99:90:9c:47:0f:60:1c:dc:d7:08:ca:b3:06:9f:
1f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:C0:B7:08:A5:6A:C9:11:B5:C8:64:E5:73:89:88:AD:26:0C:D6:25
X509v3 Authority Key Identifier:
keyid:9C:02:DE:7D:4D:8A:FF:15:01:04:F9:0A:AC:EE:95:8F:D0:72:07:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nALefU2K_xUBBPkKrO6Vj9ByB_g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/92158a-d13c-4418-8663-9318d216bc37/1/lMC3CKVqyRG1yGTlc4mIrSYM1iU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/92158a-d13c-4418-8663-9318d216bc37/1/nALefU2K_xUBBPkKrO6Vj9ByB_g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.156.79.0/24
Signature Algorithm: sha256WithRSAEncryption
47:7a:a8:ef:ba:66:d7:08:8d:da:c6:bd:1f:09:51:d2:e3:b3:
cd:cb:23:49:52:b0:78:c7:a4:83:20:92:9a:86:08:58:87:f3:
4e:03:15:d1:a9:63:fb:56:e5:8b:d0:ad:c3:bf:1e:8d:df:3c:
0f:e9:e7:a5:a6:36:5d:67:ca:9a:7a:46:b7:d9:9f:c1:94:cf:
bb:92:4b:a6:1f:1f:cc:66:29:08:3a:24:ef:f1:ce:44:70:59:
30:c9:1c:ed:58:a4:45:3a:12:01:39:f8:1a:20:24:36:a0:ad:
38:5b:05:bf:f9:22:2a:c1:c7:0f:72:8b:7b:4b:27:50:dc:39:
c2:47:bf:0e:c2:e1:81:7c:23:cf:a0:9b:31:4f:74:06:38:75:
ab:44:f5:73:69:e3:25:0c:5d:a2:28:03:15:7f:07:a9:f7:d1:
e1:80:51:bb:9c:fe:fe:9c:07:a5:fd:66:93:8c:20:5e:1a:ea:
f7:07:45:dd:8a:87:55:54:76:57:f4:0b:f8:12:42:01:03:d1:
46:22:3b:36:79:b2:f9:d4:c6:e5:41:98:89:1e:ad:7e:00:43:
b9:1b:f6:cb:07:f7:91:e5:11:39:2b:f3:97:e2:7c:93:01:18:
12:6a:91:7d:0f:3f:e7:3a:cd:f1:d2:69:ff:9a:f8:21:b1:f9:
68:31:fb:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:41 2024 by rpki-client on console-fra.rpki-client.org