Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/H7UyG-TzvtwziHUiZldOrgJIbXw.roa
File: H7UyG-TzvtwziHUiZldOrgJIbXw.roa (raw, json)
Hash identifier: v+YI1wmcgWju/tj8uWxziOfSOLkJStaCtz8WWfw+WMI=
Subject key identifier: 1F:B5:32:1B:E4:F3:BE:DC:33:88:75:22:66:57:4E:AE:02:48:6D:7C
Certificate issuer: /CN=d53ece71ef6ebf55bb7b87e50665ba11fdc77f08
Certificate serial: 01856BAEA70506968658C0E76C11C0F10435
Authority key identifier: D5:3E:CE:71:EF:6E:BF:55:BB:7B:87:E5:06:65:BA:11:FD:C7:7F:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1T7Oce9uv1W7e4flBmW6Ef3Hfwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/H7UyG-TzvtwziHUiZldOrgJIbXw.roa
Signing time: Sun 01 Jan 2023 04:54:46 +0000
ROA not before: Sun 01 Jan 2023 04:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200019
IP address blocks: 31.6.12.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ae:a7:05:06:96:86:58:c0:e7:6c:11:c0:f1:04:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d53ece71ef6ebf55bb7b87e50665ba11fdc77f08
Validity
Not Before: Jan 1 04:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1fb5321be4f3bedc3388752266574eae02486d7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:1b:da:6c:c3:2f:5f:22:2b:03:79:a9:80:4b:
71:09:bb:dc:7b:6d:93:4b:bc:32:3d:2c:b3:cb:d2:
f1:2e:02:fe:03:fa:15:3b:71:3c:4d:54:5f:fd:d6:
d3:17:d2:c5:38:96:0c:27:9d:18:e0:ed:8e:e8:b2:
94:9b:d5:04:48:72:6d:2a:f7:0d:08:14:db:45:b7:
ef:d8:96:37:b5:9d:a0:a3:d1:49:ca:af:26:64:a1:
6d:74:0b:ff:6e:0f:8e:59:c0:c7:22:56:75:0a:57:
ad:ed:0d:2e:24:35:a5:cd:0e:08:68:32:49:e1:dd:
0d:25:6a:6f:08:5a:1c:46:9e:51:ec:90:40:16:a9:
86:4a:27:a8:09:76:04:a1:bc:71:dd:0b:2c:0e:8f:
93:90:87:c9:92:f7:d3:3d:b8:c4:d9:bd:8f:32:df:
68:da:8d:16:05:7f:86:c6:1f:c3:34:9f:61:ce:bc:
e8:d0:16:75:39:20:d4:c2:cd:da:83:29:2e:e3:f7:
3f:aa:fa:46:86:03:6a:63:45:00:26:b5:3e:eb:c9:
be:7e:26:5b:ac:fe:4b:8e:7a:39:8f:07:af:1b:54:
59:9e:ef:2e:b0:14:c1:ae:9c:4a:d4:08:1a:90:07:
14:54:3d:ce:81:58:95:dd:ab:2b:c4:1d:3f:9c:db:
6b:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:B5:32:1B:E4:F3:BE:DC:33:88:75:22:66:57:4E:AE:02:48:6D:7C
X509v3 Authority Key Identifier:
keyid:D5:3E:CE:71:EF:6E:BF:55:BB:7B:87:E5:06:65:BA:11:FD:C7:7F:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1T7Oce9uv1W7e4flBmW6Ef3Hfwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/H7UyG-TzvtwziHUiZldOrgJIbXw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/1T7Oce9uv1W7e4flBmW6Ef3Hfwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.12.0/22
Signature Algorithm: sha256WithRSAEncryption
33:a4:93:e4:a9:3f:d2:45:d6:c4:79:c6:ee:2d:a5:99:ac:6b:
1c:52:4a:6a:dc:3b:20:90:67:71:bb:ae:a9:be:11:9a:fe:97:
e6:ae:35:21:77:e2:0e:0f:a4:4f:b2:7d:a0:d7:d2:d7:5c:fd:
3e:1f:f0:88:83:d5:74:ba:5d:22:13:a4:d9:b5:7e:b9:e1:19:
e0:a5:85:71:c9:6c:1b:bb:09:d6:57:af:b7:85:f7:c3:70:2c:
ec:97:d8:3f:36:cc:b6:fc:95:bf:99:52:18:d8:2a:7d:03:60:
9b:b8:4a:6a:86:be:2b:33:04:6b:0d:10:7a:92:f0:53:df:e9:
1c:7f:01:d0:24:5f:de:c0:cd:8d:b5:88:ae:77:a2:cf:5f:8d:
b7:4f:4a:f9:66:7f:ce:47:8b:d3:b5:a5:e7:c2:71:cf:85:4e:
4e:24:8c:19:46:e2:f9:43:20:a4:ec:91:56:c2:20:c1:a1:39:
29:c5:dd:05:18:c2:1a:cb:8f:dc:32:0b:7f:9e:1b:05:93:91:
ba:8c:39:f7:eb:6e:d5:18:36:50:77:d5:cc:ef:5d:53:04:ec:
3c:c7:45:88:ff:54:e0:1f:2b:19:7c:36:22:be:c1:58:97:8d:
44:e4:7f:fd:4b:bb:a9:41:d4:70:a4:11:41:ec:59:13:6a:cd:
d0:5b:35:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:21 2023 by rpki-client on console-ams.rpki-client.org