Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/936eab-094e-4903-9148-a76f86575247/1/pDoyTt5XzHj5POpcWpurpaYHdyA.roa
File: pDoyTt5XzHj5POpcWpurpaYHdyA.roa (raw, json)
Hash identifier: ceFxdScNETIA9dfNFaRd+iqr12HBS7SB7fBo8pGX1Z8=
Subject key identifier: A4:3A:32:4E:DE:57:CC:78:F9:3C:EA:5C:5A:9B:AB:A5:A6:07:77:20
Certificate issuer: /CN=3124de2d6b780b3dbb5fbf5b926dcb8d2f0cc106
Certificate serial: 0184385738F0AD3502056DB425AC00BCE057
Authority key identifier: 31:24:DE:2D:6B:78:0B:3D:BB:5F:BF:5B:92:6D:CB:8D:2F:0C:C1:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MSTeLWt4Cz27X79bkm3LjS8MwQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/936eab-094e-4903-9148-a76f86575247/1/pDoyTt5XzHj5POpcWpurpaYHdyA.roa
Signing time: Wed 02 Nov 2022 12:35:50 +0000
ROA not before: Wed 02 Nov 2022 12:35:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8100
IP address blocks: 141.98.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:38:57:38:f0:ad:35:02:05:6d:b4:25:ac:00:bc:e0:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3124de2d6b780b3dbb5fbf5b926dcb8d2f0cc106
Validity
Not Before: Nov 2 12:35:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a43a324ede57cc78f93cea5c5a9baba5a6077720
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:17:aa:cf:00:d4:ed:c3:d7:ca:ff:63:5e:32:
1b:89:20:a3:13:70:e8:bb:b9:22:80:fa:f7:7d:ce:
64:54:07:64:46:fc:d3:e8:ae:6e:74:ee:39:d6:3c:
d2:a8:b4:e6:71:5e:13:aa:8e:c9:36:60:27:e8:4c:
e9:be:06:5b:08:6d:a5:bf:6f:a3:c8:6e:17:32:7d:
14:ba:54:b4:ad:88:25:bd:45:94:1b:fb:9d:9c:7f:
f7:25:5f:20:27:23:a1:fd:c8:f5:39:27:79:04:f3:
0c:c1:d6:4e:ab:c4:0a:58:d1:82:1b:03:1c:69:94:
77:5e:4a:e9:9b:5e:9a:e0:4e:fc:ab:e4:63:96:85:
3c:32:24:51:05:06:e8:5e:d7:a8:c9:fc:2f:e5:30:
d3:a0:a8:c6:c2:4c:39:c9:0e:f9:9a:4a:3e:a7:89:
8f:06:0e:47:9c:4b:00:94:06:b5:5f:06:4b:9b:17:
66:1c:34:49:7c:33:a9:66:64:a9:a9:b3:53:e5:23:
91:fd:15:7a:7a:95:96:07:37:f1:7d:50:8e:e9:50:
86:e3:58:66:18:0b:f3:87:3e:5c:13:5a:c7:44:17:
23:60:92:30:b7:fd:3f:9e:15:d8:e5:1b:ec:9e:58:
8c:c7:ef:36:d1:b4:db:b7:82:fc:55:e9:b3:0c:e3:
d8:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:3A:32:4E:DE:57:CC:78:F9:3C:EA:5C:5A:9B:AB:A5:A6:07:77:20
X509v3 Authority Key Identifier:
keyid:31:24:DE:2D:6B:78:0B:3D:BB:5F:BF:5B:92:6D:CB:8D:2F:0C:C1:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MSTeLWt4Cz27X79bkm3LjS8MwQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/936eab-094e-4903-9148-a76f86575247/1/pDoyTt5XzHj5POpcWpurpaYHdyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/936eab-094e-4903-9148-a76f86575247/1/MSTeLWt4Cz27X79bkm3LjS8MwQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.5.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:6c:83:79:e9:6a:99:63:ed:1c:29:2f:e1:1d:22:45:73:bd:
20:d4:74:47:7a:0c:66:d9:d3:89:c5:95:18:40:2a:14:6b:b4:
56:ab:2e:d6:8e:28:9e:58:56:f4:95:ce:de:63:83:f8:67:eb:
e9:a4:94:bf:46:eb:f3:a4:9b:2d:b5:30:f2:bf:fa:15:f0:4e:
51:08:22:52:ca:a3:6e:60:95:f9:b1:2f:ce:3e:de:74:fc:dc:
f5:43:2a:c8:53:b4:30:20:b0:16:3d:34:5b:b2:58:37:04:a2:
17:95:08:66:6c:5c:3a:ee:ac:3e:0a:91:cd:7e:a9:28:0a:f6:
66:51:2e:f3:91:29:d8:ea:45:9a:e1:4b:14:f5:46:66:31:de:
ca:64:d9:de:a0:70:f0:d5:c5:19:e8:30:6c:13:f6:32:c3:75:
1e:a1:8e:7c:3f:7a:23:37:15:e2:f3:08:cf:92:18:9e:69:9b:
fe:ce:76:84:77:e3:2f:d8:24:a9:7a:29:27:41:fc:d3:f3:94:
d4:26:c0:68:6b:db:6b:cd:9c:ff:1d:1e:ea:65:fe:7d:99:09:
a7:f7:72:d3:ed:4a:cb:50:39:36:84:0c:d0:72:6a:c3:c6:28:
c7:ef:ac:eb:0f:60:80:eb:e3:41:98:dc:cc:4a:4d:c8:cb:a7:
a6:26:a8:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:57 2023 by rpki-client on console-fra.rpki-client.org