Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/0hcaoGTu--7F3RdBW2treGjUUGU.roa
File: 0hcaoGTu--7F3RdBW2treGjUUGU.roa (raw, json)
Hash identifier: LhhuZhRwybI24UqouHA8OisPxwpkM70wkT5OX20PQC0=
Subject key identifier: D2:17:1A:A0:64:EE:FB:EE:C5:DD:17:41:5B:6B:6B:78:68:D4:50:65
Certificate issuer: /CN=a44c267fa754cd6509e9f807273123bee96c525d
Certificate serial: 0184D1B66017C5C6517191AB922AD9C01118
Authority key identifier: A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/0hcaoGTu--7F3RdBW2treGjUUGU.roa
Signing time: Fri 02 Dec 2022 07:21:41 +0000
ROA not before: Fri 02 Dec 2022 07:21:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 185.172.172.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d1:b6:60:17:c5:c6:51:71:91:ab:92:2a:d9:c0:11:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a44c267fa754cd6509e9f807273123bee96c525d
Validity
Not Before: Dec 2 07:21:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d2171aa064eefbeec5dd17415b6b6b7868d45065
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:25:2f:f7:88:46:ab:4e:39:05:7f:8f:df:64:
91:d8:09:b1:03:12:22:26:74:f8:e7:6e:fb:e9:45:
50:c4:29:e6:a4:9c:9a:44:12:49:04:38:fc:fe:9b:
69:a7:70:23:00:0f:62:01:5c:9f:d6:0e:99:a2:73:
92:7e:a2:0c:ee:f3:d5:19:24:5e:5d:28:b3:e1:61:
f0:8e:cc:c7:c8:b9:b2:ef:8e:c6:26:4e:33:5c:0d:
93:37:11:07:f9:86:1b:d6:6d:2b:5c:8c:38:3a:26:
98:ea:e3:59:cb:e2:db:c1:6d:69:d3:84:f1:b9:b9:
70:a0:b1:ec:80:52:ef:87:17:c9:aa:01:58:3f:87:
8e:8e:e8:20:e1:43:1e:e5:fd:69:d1:ed:02:53:7a:
94:9e:8c:e2:a4:3d:24:90:ca:63:c2:be:37:22:7b:
d9:58:42:11:82:f2:52:b4:9f:b4:2a:8a:31:b9:8d:
dd:e1:e2:10:6b:f6:6c:5a:1a:45:82:39:62:d3:4d:
52:22:be:86:dd:66:53:41:4a:d5:dd:af:5c:84:3b:
f7:df:32:f9:96:f0:95:8a:df:0b:97:33:b1:93:7c:
84:f3:a7:7d:cd:20:1c:66:58:60:4a:29:e9:d3:a9:
9d:80:5a:ef:42:7a:93:06:a5:46:63:86:2a:76:3d:
46:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:17:1A:A0:64:EE:FB:EE:C5:DD:17:41:5B:6B:6B:78:68:D4:50:65
X509v3 Authority Key Identifier:
keyid:A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/0hcaoGTu--7F3RdBW2treGjUUGU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/pEwmf6dUzWUJ6fgHJzEjvulsUl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.172.0/22
Signature Algorithm: sha256WithRSAEncryption
40:c0:66:7b:c6:9b:ff:30:30:74:23:e7:2c:c7:49:7c:dc:a6:
8f:30:e3:d6:5a:38:e3:fa:21:7e:0b:e4:64:f8:d9:4b:a7:d5:
3c:52:e4:b2:45:28:eb:ba:00:ea:71:c2:4c:d8:d6:e2:60:28:
04:d4:11:c4:fc:45:d6:bd:7e:e5:40:35:42:fa:38:75:1a:0d:
21:98:1d:9d:1a:ac:b8:61:fc:b8:eb:a7:14:59:cb:14:86:db:
84:a2:54:72:22:9c:37:7a:a0:1f:4c:a0:b0:39:55:df:ed:5a:
fd:ba:5a:e9:b7:d1:22:ab:77:63:de:ab:6b:ec:74:82:46:31:
b7:5d:5e:cf:9d:01:1c:b8:40:2a:8e:d7:4b:34:f0:e6:79:70:
b6:90:d4:0d:bf:f9:7e:05:57:37:b9:2b:6d:36:1e:26:aa:04:
1b:f7:31:81:b6:df:63:9f:b5:0d:78:ec:e2:8d:52:69:62:39:
40:6b:b9:67:04:56:af:a7:28:82:54:c4:3f:4c:02:04:67:b2:
b8:16:14:55:90:c0:c8:b6:81:30:e3:b9:20:8f:a4:89:1a:29:
4d:c4:70:be:4c:2f:d2:e9:b5:09:c7:93:83:1e:02:76:cb:1b:
3c:10:3b:64:56:e7:fa:fb:da:fa:17:0c:4b:f4:13:73:fa:38:
1e:d5:40:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:14 2023 by rpki-client on console-ams.rpki-client.org