Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/Dd1QCNdIC2hymM0vmbypBPK7aT4.roa
File: Dd1QCNdIC2hymM0vmbypBPK7aT4.roa (raw, json)
Hash identifier: 9VtGMxWl/ATnXq70l8FaZ3njWU5F2GO14dz1cHYE1ls=
Subject key identifier: 0D:DD:50:08:D7:48:0B:68:72:98:CD:2F:99:BC:A9:04:F2:BB:69:3E
Certificate issuer: /CN=d53ece71ef6ebf55bb7b87e50665ba11fdc77f08
Certificate serial: 03439496
Authority key identifier: D5:3E:CE:71:EF:6E:BF:55:BB:7B:87:E5:06:65:BA:11:FD:C7:7F:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1T7Oce9uv1W7e4flBmW6Ef3Hfwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/Dd1QCNdIC2hymM0vmbypBPK7aT4.roa
Signing time: Tue 14 Jun 2022 16:19:44 +0000
ROA not before: Tue 14 Jun 2022 16:19:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 178.208.180.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54760598 (0x3439496)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d53ece71ef6ebf55bb7b87e50665ba11fdc77f08
Validity
Not Before: Jun 14 16:19:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0ddd5008d7480b687298cd2f99bca904f2bb693e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:16:33:c1:b8:3b:39:4d:40:7c:6d:7e:f2:35:
90:f3:0f:a8:76:80:3b:c9:58:72:cc:4a:8d:9c:da:
4c:69:53:5b:32:d2:c6:39:f1:f5:28:2e:1f:7e:6d:
da:94:d3:6d:30:de:0e:3a:23:db:c3:8c:97:ec:3d:
6a:96:e0:6a:84:c9:7c:b4:bc:93:94:1a:ed:40:0c:
29:10:e4:31:b7:03:95:37:5c:11:36:b5:52:1f:40:
02:bd:07:9c:c8:02:af:16:71:92:69:ae:35:49:0d:
3b:ac:af:f5:4c:42:d0:f5:f8:c2:c5:cf:5e:6f:5c:
77:99:ba:eb:14:85:6d:01:9d:b4:82:0c:ad:79:cf:
8b:81:72:67:32:35:24:b1:6b:13:5a:a7:4a:ae:8d:
bb:8c:0f:2e:fd:ec:73:5b:27:c2:5c:44:22:46:1a:
b1:9c:6b:99:ad:e3:e8:3d:1e:36:9a:8f:8e:5c:00:
58:93:03:16:f4:b6:08:b6:01:22:eb:55:64:cb:1a:
dd:b6:2c:d4:19:8e:33:7f:a8:ff:45:28:9a:0f:62:
7b:2b:ba:b9:a2:4e:ce:9c:70:24:42:d4:41:8c:54:
82:6d:90:1b:28:84:82:81:80:a6:c5:f0:f0:ea:77:
3d:bb:2f:98:72:2e:59:bd:32:aa:ab:75:50:04:b2:
44:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:DD:50:08:D7:48:0B:68:72:98:CD:2F:99:BC:A9:04:F2:BB:69:3E
X509v3 Authority Key Identifier:
keyid:D5:3E:CE:71:EF:6E:BF:55:BB:7B:87:E5:06:65:BA:11:FD:C7:7F:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1T7Oce9uv1W7e4flBmW6Ef3Hfwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/Dd1QCNdIC2hymM0vmbypBPK7aT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/1T7Oce9uv1W7e4flBmW6Ef3Hfwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.208.180.0/22
Signature Algorithm: sha256WithRSAEncryption
05:32:8c:61:5b:ee:52:bd:c3:99:70:20:15:21:f0:b5:64:d7:
e7:05:9d:4a:2e:8d:e4:09:98:74:cf:7e:ac:55:c3:a2:fd:ad:
ca:b9:9a:80:1c:d5:e6:ad:b4:ce:cb:f6:e4:29:c9:32:7b:df:
82:9f:ce:17:9d:4d:c1:d1:86:1e:66:26:b9:c8:84:83:16:81:
63:e9:24:a8:6e:87:75:ea:57:97:a6:74:c4:f6:0d:be:59:40:
94:d7:6d:07:da:02:2e:32:fa:c0:d7:fe:aa:d8:55:88:37:eb:
ed:dd:13:79:60:fc:11:14:12:79:22:79:df:57:d8:2b:d4:97:
1c:d3:42:21:d8:73:32:b3:52:53:7e:bf:47:9f:29:fb:46:bf:
b1:35:06:6d:08:a3:07:c3:04:8a:13:5b:d0:9d:81:ff:74:4c:
17:b5:9f:fd:4b:99:fb:6c:39:fa:2e:30:da:b5:e1:43:4f:12:
73:ef:b0:f0:aa:c8:76:90:b7:3f:07:fa:c4:7d:b6:98:02:d2:
72:6b:cf:3e:df:1e:91:9c:bc:a3:49:97:c0:db:97:74:9b:4e:
80:72:73:e8:a5:40:9c:ed:c0:8d:dd:64:7f:9e:ae:aa:67:29:
c4:af:04:43:12:6d:c2:21:d6:f4:a7:36:72:fb:58:30:37:eb:
11:9a:3d:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:40 2023 by rpki-client on console-fra.rpki-client.org