Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/04tQKmJxpw5a_b-EF6iBQa4WFjA.roa
File: 04tQKmJxpw5a_b-EF6iBQa4WFjA.roa (raw, json)
Hash identifier: Vb1OcyBzNiD0apfkmXTI/tl5yZAuOUFqb49r3SLi9sQ=
Subject key identifier: D3:8B:50:2A:62:71:A7:0E:5A:FD:BF:84:17:A8:81:41:AE:16:16:30
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 018571DE8D1BA1290259E9FA290AD95385FB
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/04tQKmJxpw5a_b-EF6iBQa4WFjA.roa
Signing time: Mon 02 Jan 2023 09:44:48 +0000
ROA not before: Mon 02 Jan 2023 09:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3356
IP address blocks: 185.93.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:de:8d:1b:a1:29:02:59:e9:fa:29:0a:d9:53:85:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Jan 2 09:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d38b502a6271a70e5afdbf8417a88141ae161630
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:eb:76:a2:9c:77:a0:94:67:71:b2:da:ea:97:
eb:ff:bd:fb:06:30:c8:ca:f8:4a:d2:e5:a0:22:77:
b8:fd:25:52:dd:23:e0:56:57:1a:b8:df:2a:9b:41:
d6:a9:2e:93:4a:44:4c:8b:74:e5:78:3c:2b:b8:aa:
b5:3f:d4:f5:ba:1e:85:8a:f5:78:e5:51:5b:a9:8f:
42:8d:91:61:b7:bd:bf:ed:ca:fa:b7:c8:5c:44:bf:
a7:80:61:8e:fe:83:3a:5c:7f:f4:ec:73:01:8e:ee:
1d:2c:57:e3:c6:e8:47:0b:21:70:7c:1f:a8:f7:4c:
b7:40:a5:9f:0f:5e:5a:94:4a:ad:52:c5:0c:24:53:
d7:03:47:45:e4:3b:f6:f7:b4:39:a5:af:d7:4d:74:
9c:34:b0:cd:17:2a:96:98:d0:36:31:07:34:1d:b4:
2c:e8:eb:11:40:c7:19:64:1f:b7:6b:c7:22:4d:09:
c9:8e:fd:49:1d:d4:08:1a:69:31:38:01:15:2a:11:
5f:8b:d2:ae:b1:23:1f:10:8a:04:dd:01:63:9a:5c:
6b:d0:de:45:aa:59:1d:eb:b9:e3:97:c4:bc:70:1e:
e2:e4:45:77:cc:cb:49:0a:13:18:14:ab:8b:98:32:
b1:d8:80:83:d2:7d:65:8d:5c:19:5d:51:6b:35:b4:
39:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:8B:50:2A:62:71:A7:0E:5A:FD:BF:84:17:A8:81:41:AE:16:16:30
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/04tQKmJxpw5a_b-EF6iBQa4WFjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.32.0/24
Signature Algorithm: sha256WithRSAEncryption
12:14:67:9c:73:e7:b0:49:17:fa:7a:b2:80:2d:37:eb:b8:01:
9e:00:e5:44:68:24:e7:53:26:78:95:d0:a3:6a:34:ed:10:50:
d0:ad:96:1d:4f:10:5e:8f:05:92:19:b6:23:43:29:aa:ad:02:
75:da:46:4f:b4:17:a8:f9:d4:44:63:44:ef:e3:12:74:0b:14:
d3:57:4c:d8:a6:89:cd:e9:ad:95:12:54:27:c3:1d:09:87:d2:
62:c5:28:98:58:ec:d2:38:53:cd:63:60:fa:18:3b:45:eb:78:
7a:91:d1:db:10:38:f7:1f:da:99:63:42:7c:57:ee:b0:7e:c4:
38:8c:d2:b9:8b:34:d1:63:c1:32:05:85:51:c1:08:95:54:23:
40:09:de:7d:a9:61:b6:91:bf:2c:06:b3:79:19:0a:5c:10:a3:
ed:cd:b4:94:9b:7b:c4:c8:88:9c:a5:ba:80:6c:6b:99:f3:f4:
9a:cb:90:00:06:4d:a3:b8:0d:70:38:bc:64:da:22:12:66:e6:
66:f1:e3:57:56:dd:47:df:10:64:b2:95:2c:da:77:38:73:a6:
c2:fa:b2:9b:d8:28:9f:44:21:ed:cb:1e:f4:1d:9f:42:85:06:
f5:7e:4c:e8:de:70:87:09:ab:56:73:da:45:e1:2b:67:7c:97:
05:e3:86:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:23 2023 by rpki-client on console-fra.rpki-client.org