Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/f75c65-885e-417d-8076-bf7d8fca46e1/1/SviCuXs5I90JYboA5hTnJegHijo.roa
File: SviCuXs5I90JYboA5hTnJegHijo.roa (raw, json)
Hash identifier: rg0CgPvhVTmyYZQs1qAhXaRMwBCg2SQhDs9+CCZKeRU=
Subject key identifier: 4A:F8:82:B9:7B:39:23:DD:09:61:BA:00:E6:14:E7:25:E8:07:8A:3A
Certificate issuer: /CN=43b0105bccb9e6093120767354a8b8493cbe4cd6
Certificate serial: 0186A12D835FA2AD831604485A9AF0396B4E
Authority key identifier: 43:B0:10:5B:CC:B9:E6:09:31:20:76:73:54:A8:B8:49:3C:BE:4C:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q7AQW8y55gkxIHZzVKi4STy-TNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/f75c65-885e-417d-8076-bf7d8fca46e1/1/SviCuXs5I90JYboA5hTnJegHijo.roa
Signing time: Thu 02 Mar 2023 07:15:59 +0000
ROA not before: Thu 02 Mar 2023 07:15:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15969
IP address blocks: 194.187.72.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a1:2d:83:5f:a2:ad:83:16:04:48:5a:9a:f0:39:6b:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43b0105bccb9e6093120767354a8b8493cbe4cd6
Validity
Not Before: Mar 2 07:15:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4af882b97b3923dd0961ba00e614e725e8078a3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:7b:dc:0b:9e:f6:54:ac:5d:2e:e2:b4:02:cd:
fa:c8:38:10:71:cd:1b:70:69:d4:71:be:b0:a8:c1:
69:15:83:fb:c6:2b:bf:ee:16:8f:d7:5c:5e:b7:0d:
74:80:a5:3c:72:cf:c6:78:da:cd:3c:ea:3e:50:40:
48:21:72:59:9c:89:c2:98:6d:e5:60:b1:e3:18:96:
10:7a:55:24:6e:93:77:36:8b:65:05:8f:56:d5:a8:
3c:aa:b0:21:a1:7b:06:3e:92:94:e7:37:a6:f5:22:
ff:6e:74:3c:00:00:7e:4f:56:a5:14:6e:2b:f8:fd:
3e:55:86:16:d5:a2:c8:7c:40:62:e2:3b:36:09:83:
4a:68:b4:1f:bd:1e:b7:a7:c3:a7:59:b9:05:26:60:
2b:bc:39:d1:a4:d3:e9:7c:b9:7e:cb:9e:65:48:93:
2c:76:f8:42:02:75:f6:fd:fe:04:99:1e:8d:b2:de:
aa:bc:75:ac:7e:9d:fa:3f:70:10:57:81:7a:77:02:
f4:85:6c:c6:f1:b7:c3:04:2d:9b:4d:33:cb:bc:48:
d2:b4:19:de:c0:5e:24:e3:64:04:33:2b:3b:ff:7a:
7b:58:30:f0:d1:ee:18:0d:e2:da:e8:8f:74:e8:53:
36:b3:7f:54:c1:89:bd:1d:aa:dc:be:1f:4a:49:af:
62:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:F8:82:B9:7B:39:23:DD:09:61:BA:00:E6:14:E7:25:E8:07:8A:3A
X509v3 Authority Key Identifier:
keyid:43:B0:10:5B:CC:B9:E6:09:31:20:76:73:54:A8:B8:49:3C:BE:4C:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q7AQW8y55gkxIHZzVKi4STy-TNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f75c65-885e-417d-8076-bf7d8fca46e1/1/SviCuXs5I90JYboA5hTnJegHijo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f75c65-885e-417d-8076-bf7d8fca46e1/1/Q7AQW8y55gkxIHZzVKi4STy-TNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.187.72.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:8e:37:8a:ba:9f:b6:0c:65:7e:96:38:0f:93:b4:ad:85:9e:
74:a7:b7:60:59:8d:aa:e0:88:71:95:ed:b0:26:f9:cc:0a:bd:
1b:6c:8a:78:56:a2:1c:6f:e0:0e:f6:46:6a:6d:33:e9:a4:56:
82:81:d5:dd:13:10:5f:a3:e5:c5:8a:25:d4:cc:34:9b:48:f0:
26:50:fe:b2:64:52:51:d9:2b:8b:0f:d4:ca:f3:ae:a1:28:dc:
8e:50:72:1b:4e:80:37:0e:5b:9d:55:f0:e1:64:5b:4c:4c:0f:
a9:65:19:12:18:31:ca:6d:da:f6:3a:98:34:30:a9:31:2c:c6:
6a:e9:b1:ec:b9:1a:45:2b:dc:9b:56:db:01:6c:8c:97:6c:2e:
05:cd:c7:34:c1:8f:1e:6e:38:48:ca:bc:d9:a8:14:88:53:1c:
88:a8:cc:42:a9:0e:cd:33:52:7b:fb:94:af:d7:c0:7b:f0:c6:
f4:0e:cd:34:29:a6:44:3f:42:64:a7:f1:89:e2:4d:b9:a7:c0:
55:5b:ce:06:a9:54:4a:28:14:62:81:19:77:b3:61:7f:4f:bd:
84:25:7c:42:e0:43:23:ff:c9:a8:5a:04:2c:2a:21:20:05:7a:
7c:b2:b4:38:8d:86:ed:4e:04:fe:e3:27:b0:fb:b8:53:52:08:
c0:31:fb:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:10 2024 by rpki-client on console-ams.rpki-client.org