Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/4514ee-3dab-49fe-8577-3c8efcfc14f6/1/HJ34GhJNokh0IM1n5snQSErU0wo.roa
File: HJ34GhJNokh0IM1n5snQSErU0wo.roa (raw, json)
Hash identifier: PorXbRm9FoOEGvnUztYlXwRhUShBT1/qoOl3qCaXbeM=
Subject key identifier: 1C:9D:F8:1A:12:4D:A2:48:74:20:CD:67:E6:C9:D0:48:4A:D4:D3:0A
Certificate issuer: /CN=739a7358f73039a1da8865ef2f2ff6f9fc99ff38
Certificate serial: 018706862424C3AFEB2CF8F2FAE7D4197C41
Authority key identifier: 73:9A:73:58:F7:30:39:A1:DA:88:65:EF:2F:2F:F6:F9:FC:99:FF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c5pzWPcwOaHaiGXvLy_2-fyZ_zg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/4514ee-3dab-49fe-8577-3c8efcfc14f6/1/HJ34GhJNokh0IM1n5snQSErU0wo.roa
Signing time: Tue 21 Mar 2023 23:34:27 +0000
ROA not before: Tue 21 Mar 2023 23:34:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199242
IP address blocks: 37.72.142.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:06:86:24:24:c3:af:eb:2c:f8:f2:fa:e7:d4:19:7c:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=739a7358f73039a1da8865ef2f2ff6f9fc99ff38
Validity
Not Before: Mar 21 23:34:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c9df81a124da2487420cd67e6c9d0484ad4d30a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:35:38:d8:8b:80:e5:63:12:55:8a:ca:de:af:
cb:2a:b6:98:1d:67:d9:3b:44:d4:9d:c1:eb:d3:2a:
a1:cd:51:d3:04:f2:55:4d:8d:96:85:90:18:b0:8e:
d1:5a:b8:bc:55:86:df:a8:13:af:38:9c:ab:d0:d0:
37:d9:59:76:33:a8:67:49:e5:14:80:a7:53:57:2b:
06:6d:e7:99:2c:a2:4e:50:73:e8:72:df:18:13:a5:
d5:a7:ba:4c:a9:2a:6b:b0:2a:a8:4d:93:e7:8d:97:
ec:c4:d4:35:05:6f:bd:10:2e:41:22:4d:1f:a1:00:
b5:3d:a4:3f:31:26:56:ea:4e:0b:68:a1:26:db:07:
71:9b:9a:a2:02:2b:62:4b:2a:cd:5c:a1:8a:22:7b:
09:c3:7b:4d:49:18:82:f5:2b:1a:f7:60:78:15:91:
d1:91:ba:5d:9a:45:f0:98:b9:29:53:f2:53:d0:1a:
b7:4b:c4:a6:73:f2:20:c3:22:d1:a5:ce:b7:24:cf:
25:85:4b:5f:e9:c8:99:1f:04:4f:1e:a1:63:1c:3d:
2c:66:83:01:2c:65:e8:38:a7:80:e0:75:b6:a6:24:
7c:14:6a:b4:d0:ed:56:4f:8e:fb:aa:30:5b:e8:cc:
5c:37:d3:3b:f6:0c:ef:ec:96:36:08:e7:98:f1:ca:
59:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:9D:F8:1A:12:4D:A2:48:74:20:CD:67:E6:C9:D0:48:4A:D4:D3:0A
X509v3 Authority Key Identifier:
keyid:73:9A:73:58:F7:30:39:A1:DA:88:65:EF:2F:2F:F6:F9:FC:99:FF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5pzWPcwOaHaiGXvLy_2-fyZ_zg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/4514ee-3dab-49fe-8577-3c8efcfc14f6/1/HJ34GhJNokh0IM1n5snQSErU0wo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/4514ee-3dab-49fe-8577-3c8efcfc14f6/1/c5pzWPcwOaHaiGXvLy_2-fyZ_zg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.72.142.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:52:eb:96:8f:6b:ed:31:45:72:6f:0c:a7:dc:56:d1:d9:db:
4e:64:d1:a4:82:fc:f7:18:9c:3d:aa:6c:83:09:86:fc:96:e6:
92:a7:63:a7:51:3a:a7:9a:e6:01:1f:a5:2a:75:24:28:ef:e7:
49:58:ce:f8:7e:bd:e0:ed:c5:df:dc:59:68:b5:22:7c:4e:f5:
cc:d0:cf:19:fd:b4:c0:12:6c:30:c9:90:c2:46:84:05:39:00:
8f:2a:fb:85:22:68:f2:6b:02:45:d9:9c:a3:a3:43:4b:28:89:
01:c4:86:29:8e:d3:88:9b:49:7b:93:1f:ec:e2:1b:fb:29:89:
be:69:dd:40:ab:84:64:d8:14:43:af:e1:8f:34:fc:d4:30:fa:
8e:2a:56:a6:df:7c:a9:9e:a0:0b:b3:a5:3e:ca:01:55:90:0a:
89:bc:ef:af:80:53:46:ff:65:14:ff:bd:3e:b9:d1:b0:2c:44:
94:ee:3c:db:0c:7b:04:bf:66:57:3e:f3:00:0d:f8:63:14:3c:
0e:6d:47:f9:b3:79:a8:95:5d:86:d4:84:ef:f9:d5:b8:1b:55:
b2:2d:e5:65:b3:f1:68:58:5e:ed:1b:8c:43:5a:4f:9b:99:7c:
3d:1e:8a:72:00:ef:cb:7e:21:74:be:a9:2d:f7:f5:ba:0d:0e:
e6:71:69:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:34 2024 by rpki-client on console-ams.rpki-client.org