Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/dde46d-d883-43f0-8796-236a30d527fb/1/4wwSraUVJXPtGvw3Y0UNo8f0wtQ.roa
File: 4wwSraUVJXPtGvw3Y0UNo8f0wtQ.roa (raw, json)
Hash identifier: zSufXvuMTfhV/BLU02z/6KiftrPKjmv06IUuQhBePRA=
Subject key identifier: E3:0C:12:AD:A5:15:25:73:ED:1A:FC:37:63:45:0D:A3:C7:F4:C2:D4
Certificate issuer: /CN=e89a7ca8705d869dfc1832de168282d4b725d651
Certificate serial: 01856D01CC66E08801CF1B2BDD33A1C77ED2
Authority key identifier: E8:9A:7C:A8:70:5D:86:9D:FC:18:32:DE:16:82:82:D4:B7:25:D6:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6Jp8qHBdhp38GDLeFoKC1Lcl1lE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/dde46d-d883-43f0-8796-236a30d527fb/1/4wwSraUVJXPtGvw3Y0UNo8f0wtQ.roa
Signing time: Sun 01 Jan 2023 11:05:12 +0000
ROA not before: Sun 01 Jan 2023 11:05:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48066
IP address blocks: 147.78.84.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:01:cc:66:e0:88:01:cf:1b:2b:dd:33:a1:c7:7e:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e89a7ca8705d869dfc1832de168282d4b725d651
Validity
Not Before: Jan 1 11:05:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e30c12ada5152573ed1afc3763450da3c7f4c2d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f5:6b:81:08:ad:f2:c2:ec:0c:1d:43:57:bc:
6b:9e:15:ec:26:be:64:70:ac:a9:df:20:b9:f3:fe:
44:d4:e6:75:e1:0a:3c:32:81:94:7f:e4:1e:a2:0b:
a7:29:10:6f:48:57:c8:2a:99:cb:c8:9b:67:0d:a0:
80:16:e3:5a:e9:1a:25:c8:05:50:11:9e:cd:62:39:
8c:5d:71:02:01:34:60:73:47:a8:50:5b:21:3b:86:
e8:00:f6:e3:9c:82:6f:1b:af:50:a1:22:01:c2:b3:
fd:97:f3:71:ad:30:6b:d4:74:5e:70:43:15:a9:5a:
37:a9:85:81:93:1b:d1:4d:f8:60:1a:bb:46:43:80:
b6:41:05:a5:40:45:ab:4d:09:69:2f:02:7f:f2:44:
eb:d1:be:8c:f8:e2:17:ce:ae:16:02:5a:5c:4f:44:
45:d7:de:ff:fb:38:0f:c8:af:ba:a3:f4:78:f0:e5:
87:f2:64:64:4a:77:2a:06:74:24:3c:8b:bc:fc:a8:
e3:57:a3:b1:d0:45:77:75:e6:e7:f7:fe:ce:17:13:
6b:38:bd:3a:f8:81:7c:3e:f7:3b:3f:a3:29:e2:4a:
8a:1c:a6:31:05:40:04:41:b4:9d:fd:a0:f3:03:3c:
53:d2:02:30:4a:e8:fe:23:3b:d3:e3:67:f4:40:36:
cd:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:0C:12:AD:A5:15:25:73:ED:1A:FC:37:63:45:0D:A3:C7:F4:C2:D4
X509v3 Authority Key Identifier:
keyid:E8:9A:7C:A8:70:5D:86:9D:FC:18:32:DE:16:82:82:D4:B7:25:D6:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6Jp8qHBdhp38GDLeFoKC1Lcl1lE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/dde46d-d883-43f0-8796-236a30d527fb/1/4wwSraUVJXPtGvw3Y0UNo8f0wtQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/dde46d-d883-43f0-8796-236a30d527fb/1/6Jp8qHBdhp38GDLeFoKC1Lcl1lE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.84.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:9f:05:cb:bb:f9:a9:ef:91:12:0c:68:3d:41:50:95:ce:d1:
0a:72:18:fb:aa:95:2c:5a:85:9e:e3:1e:02:29:74:c4:57:3e:
bc:a4:f9:bc:23:00:9c:73:3f:b3:55:2a:d5:81:d8:3b:48:d0:
4b:9d:ad:d4:c0:a8:53:91:b4:5b:b9:6d:9b:ce:ab:b6:c9:36:
54:c9:fb:dc:f1:a1:34:11:2a:62:cb:35:34:12:00:ea:2d:e1:
88:e7:44:7b:cb:62:3d:46:6f:ed:e3:c2:55:df:ce:98:dc:e7:
f5:c4:a2:72:4a:fa:f9:3d:35:85:65:ad:e0:8c:5b:77:64:54:
51:a6:c4:32:e7:55:fc:dc:79:5f:ea:fc:00:73:14:8c:79:3f:
0c:f6:a5:ab:31:8f:cb:3f:17:14:7e:43:7b:e6:02:c7:27:5b:
ec:59:32:8d:84:8b:69:e5:1d:83:f7:53:e0:dc:c0:70:02:96:
86:e1:d2:ff:8f:00:28:2a:fe:ba:b7:1e:0f:cf:38:3c:46:96:
21:e8:d2:ad:17:b3:1a:02:94:17:24:f5:44:33:c4:c2:27:7c:
35:9c:38:3a:5a:0e:2a:7a:3f:7e:82:44:3f:f4:58:08:ff:84:
fe:72:07:00:87:ca:6f:d0:8d:c2:18:eb:29:33:fc:32:e0:3b:
f2:a6:67:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:51 2024 by rpki-client on console-fra.rpki-client.org