Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/20GzZu0X000wA-x0Se8Oc7XsQxo.roa
File: 20GzZu0X000wA-x0Se8Oc7XsQxo.roa (raw, json)
Hash identifier: Mqzvm205TgbR3w3Y2Zep0NWpcTG0nxbvInkFoC7Vgwg=
Subject key identifier: DB:41:B3:66:ED:17:D3:4D:30:03:EC:74:49:EF:0E:73:B5:EC:43:1A
Certificate issuer: /CN=a44c267fa754cd6509e9f807273123bee96c525d
Certificate serial: 01856F8C4B51B339E489A7BA4202AB9599E5
Authority key identifier: A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/20GzZu0X000wA-x0Se8Oc7XsQxo.roa
Signing time: Sun 01 Jan 2023 22:55:43 +0000
ROA not before: Sun 01 Jan 2023 22:55:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 53356
IP address blocks: 171.22.79.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:8c:4b:51:b3:39:e4:89:a7:ba:42:02:ab:95:99:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a44c267fa754cd6509e9f807273123bee96c525d
Validity
Not Before: Jan 1 22:55:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db41b366ed17d34d3003ec7449ef0e73b5ec431a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:b9:28:3d:b3:ad:16:31:d9:ec:3b:87:44:66:
87:54:4e:cb:52:e1:8a:f8:53:af:dc:e3:63:07:24:
e3:83:92:ac:91:3c:50:70:ac:ee:7d:5d:e7:2b:c8:
d6:f1:26:bb:55:d6:6b:08:a5:99:dd:e1:41:a8:ec:
cd:2b:66:27:33:ae:34:28:5b:86:9c:0f:14:87:fb:
f0:6c:2d:7f:79:e2:e0:7e:5a:93:2c:b4:61:c1:7f:
e1:33:a2:e6:3f:e8:c4:5f:ad:bb:77:0b:62:30:b2:
88:7f:09:96:f4:35:ee:90:77:92:cb:4a:a7:fb:4d:
1f:da:41:a2:97:19:f3:b9:fb:5d:cd:5f:ff:86:a3:
21:c7:6c:ac:4b:6a:f1:04:20:27:e9:b3:49:a1:73:
1a:05:85:d5:c4:e9:d9:8f:34:b5:2a:e7:15:a3:74:
d7:e3:df:38:15:b9:43:9c:88:76:a5:98:3a:34:06:
e8:80:1b:12:cc:63:0e:6e:59:3d:68:5d:20:f4:24:
9a:4b:b0:92:3e:ea:bb:90:ec:12:4b:89:eb:90:3a:
c7:dd:c4:d5:3d:79:75:72:26:ef:71:1e:68:12:ac:
55:c7:79:75:e9:c3:b5:d9:38:63:51:c1:08:3d:ca:
15:d5:38:01:0c:e2:a8:14:25:54:4f:e9:16:59:78:
88:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:41:B3:66:ED:17:D3:4D:30:03:EC:74:49:EF:0E:73:B5:EC:43:1A
X509v3 Authority Key Identifier:
keyid:A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/20GzZu0X000wA-x0Se8Oc7XsQxo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/pEwmf6dUzWUJ6fgHJzEjvulsUl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.22.79.0/24
Signature Algorithm: sha256WithRSAEncryption
93:02:f7:a5:9d:81:de:86:46:05:86:8f:f7:8c:87:2f:ca:e9:
c2:a5:a2:24:99:6b:88:72:b3:43:38:98:1f:11:4f:7b:48:52:
06:17:20:8d:7b:3c:fa:e6:9c:54:60:f1:e2:db:a1:44:01:45:
19:01:6e:2b:48:23:7d:e5:2d:7c:c7:0e:79:48:83:b4:a7:4c:
26:37:68:bb:9f:31:1b:04:f2:0f:98:80:a3:aa:04:56:7b:30:
ec:02:2b:ed:a6:a8:45:93:3e:99:f8:a1:0c:c8:17:09:73:17:
ed:45:46:cc:50:b9:e6:77:80:4b:fd:6f:ee:a1:94:41:00:c4:
c5:36:10:30:26:81:98:8f:91:fc:56:05:0a:bc:22:95:f4:bb:
62:7d:20:0c:5e:fc:44:63:3d:d1:74:d5:d0:3c:9d:82:15:a4:
e3:0c:df:54:40:b2:1f:58:e4:a0:2b:e2:6f:d9:fb:70:cc:c8:
94:49:93:78:66:27:54:55:a7:d6:67:f2:d4:7c:63:a6:c6:db:
46:42:22:47:e9:f8:f3:19:cd:23:4f:67:f0:92:aa:11:ed:cb:
b7:ee:3c:b8:68:ba:b3:b9:77:ce:fd:a2:0a:1c:f3:dd:85:b0:
cf:b7:a4:ba:e4:9d:8f:f9:3f:c9:fa:12:78:29:6f:47:d4:a6:
6f:2e:69:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:14 2023 by rpki-client on console-ams.rpki-client.org