Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/2rKHoR6s_dCoyk11CVkZB5TqOCM.roa
File: 2rKHoR6s_dCoyk11CVkZB5TqOCM.roa (raw, json)
Hash identifier: 8HdnOqJ7EM6ldxTTPh65TW+WuaZjfFVf/n4XSDXLs3U=
Subject key identifier: DA:B2:87:A1:1E:AC:FD:D0:A8:CA:4D:75:09:59:19:07:94:EA:38:23
Certificate issuer: /CN=8e747481f2c98fbb70dca8d65c23de4fca37583d
Certificate serial: 01856ED4BE3E9D90A9524AAE45428AE6DFA9
Authority key identifier: 8E:74:74:81:F2:C9:8F:BB:70:DC:A8:D6:5C:23:DE:4F:CA:37:58:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jnR0gfLJj7tw3KjWXCPeT8o3WD0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/2rKHoR6s_dCoyk11CVkZB5TqOCM.roa
Signing time: Sun 01 Jan 2023 19:35:14 +0000
ROA not before: Sun 01 Jan 2023 19:35:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35830
IP address blocks: 193.151.188.0/24 maxlen: 25
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:be:3e:9d:90:a9:52:4a:ae:45:42:8a:e6:df:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e747481f2c98fbb70dca8d65c23de4fca37583d
Validity
Not Before: Jan 1 19:35:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dab287a11eacfdd0a8ca4d750959190794ea3823
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c6:5d:cb:a7:90:cb:9b:ed:6c:53:04:dd:64:
17:84:0c:78:1f:aa:e9:54:80:5a:c3:77:cb:3d:3e:
d8:52:51:c4:09:99:18:b1:a5:fc:04:2d:82:bc:45:
15:55:d8:8a:fd:ae:8b:ba:0d:e8:1d:54:45:e2:8f:
86:83:63:95:69:1b:19:c8:96:2f:6a:29:aa:2d:51:
1b:8c:8d:a0:82:2d:77:17:47:ba:b1:72:c6:2d:83:
a6:fb:37:e1:87:22:ca:fd:f1:29:d7:0a:8d:0a:05:
dd:2c:38:38:6b:c6:5f:3f:f4:44:97:85:2d:99:0b:
14:a1:b7:8f:b7:16:35:34:16:ec:73:63:37:2d:62:
58:58:6a:6e:fb:cc:b2:e8:3c:a4:70:52:17:e0:e6:
08:c3:90:ac:70:89:b8:1f:86:c0:96:01:e3:20:91:
31:1c:fa:44:0a:17:f7:0a:2a:00:00:3c:bc:f5:aa:
1b:d3:0c:bd:42:de:12:59:61:34:5a:f8:05:94:18:
2a:56:c5:43:da:e7:80:7f:ef:b4:58:ee:4c:ab:d3:
c8:bf:72:67:83:04:9f:f0:8e:23:f2:8b:32:07:31:
d8:7a:40:9f:db:3c:64:ee:dc:a2:5b:ff:e3:a2:63:
8c:b5:73:30:69:04:98:54:10:92:cf:87:cd:79:91:
0b:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:B2:87:A1:1E:AC:FD:D0:A8:CA:4D:75:09:59:19:07:94:EA:38:23
X509v3 Authority Key Identifier:
keyid:8E:74:74:81:F2:C9:8F:BB:70:DC:A8:D6:5C:23:DE:4F:CA:37:58:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jnR0gfLJj7tw3KjWXCPeT8o3WD0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/2rKHoR6s_dCoyk11CVkZB5TqOCM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/jnR0gfLJj7tw3KjWXCPeT8o3WD0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.151.188.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:06:c4:4c:35:42:db:bd:c4:fd:e3:36:22:5f:2b:d4:27:ec:
3f:44:75:9b:02:4c:6e:4f:db:32:72:3b:71:b7:f7:ef:28:44:
92:9f:66:59:44:aa:9d:74:b9:68:a4:3e:42:1a:f2:59:d7:89:
56:35:ca:fd:ea:81:9a:f6:a1:5a:45:71:d0:0f:f5:23:e5:23:
60:0f:de:5b:99:21:f0:a0:89:85:32:4d:96:50:f2:24:5a:22:
45:f6:47:cb:82:66:c3:23:50:20:2a:d7:5b:65:40:bb:b4:20:
e3:46:eb:72:f7:48:0d:bc:00:f8:d2:e8:7e:50:b0:ee:35:df:
43:34:b9:9a:fd:5e:11:d1:2c:b6:d2:83:c5:6a:e5:e1:51:e1:
11:2e:48:51:93:ef:2a:26:fd:15:ee:07:e5:c4:70:79:f8:3d:
07:d9:1c:bb:36:3c:db:9c:18:51:7a:89:b8:69:49:52:8c:5c:
0c:aa:d7:19:c4:45:f2:c0:49:22:30:ce:d9:a4:f1:c2:ff:c4:
67:04:d7:6c:11:eb:3c:56:8f:c1:ac:ad:c7:b6:80:dd:0c:f8:
f5:98:34:7f:b9:7b:7b:97:f2:c2:f3:23:09:79:41:fa:d4:53:
de:10:c5:44:f4:90:a3:33:e7:da:26:2a:f1:79:27:a2:01:c0:
c3:9e:14:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:44 2024 by rpki-client on console-ams.rpki-client.org