Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/bea562-3cf4-43b0-a5f0-b803ba564de6/1/xYiVbZdcbmvVRTskW218K1qFZDo.roa
File: xYiVbZdcbmvVRTskW218K1qFZDo.roa (raw, json)
Hash identifier: 2BoQO4OCPmdig8zyo66NpqTmBF1397qRisbEwbjVTQI=
Subject key identifier: C5:88:95:6D:97:5C:6E:6B:D5:45:3B:24:5B:6D:7C:2B:5A:85:64:3A
Certificate issuer: /CN=6f9bf54d4178c2840d521b50f2590b6a30af4faf
Certificate serial: B6F5E7
Authority key identifier: 6F:9B:F5:4D:41:78:C2:84:0D:52:1B:50:F2:59:0B:6A:30:AF:4F:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b5v1TUF4woQNUhtQ8lkLajCvT68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/bea562-3cf4-43b0-a5f0-b803ba564de6/1/xYiVbZdcbmvVRTskW218K1qFZDo.roa
Signing time: Sat 01 Jan 2022 11:02:24 +0000
ROA not before: Sat 01 Jan 2022 11:02:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31732
IP address blocks: 217.114.40.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11990503 (0xb6f5e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f9bf54d4178c2840d521b50f2590b6a30af4faf
Validity
Not Before: Jan 1 11:02:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c588956d975c6e6bd5453b245b6d7c2b5a85643a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:f5:10:a8:a5:96:63:27:0f:92:79:38:0e:fa:
ad:56:3d:f4:1c:4f:3f:eb:8d:87:44:29:e3:93:5a:
ed:07:e9:22:1e:0e:3c:37:fb:ec:c2:90:f1:40:a1:
69:0f:05:a1:c2:11:db:eb:76:48:8e:77:31:ee:e5:
44:21:21:5d:42:82:ff:54:b7:0f:75:75:f9:80:f2:
45:24:37:0e:a8:7c:06:3b:a2:b1:c0:d7:87:0c:6e:
a8:ba:89:c5:e3:ea:5e:64:7c:b1:c6:b3:62:18:86:
21:e2:a4:e4:4a:6d:40:6c:d6:cb:70:64:a1:c0:08:
8f:2d:2f:ba:95:e9:00:70:c9:b0:56:41:c6:99:d2:
09:65:c6:fb:43:91:64:b4:8c:64:cb:77:a0:6f:89:
ff:4b:0e:6a:46:76:9e:e6:db:7b:bc:fc:00:d9:dd:
39:8f:0f:ce:d5:37:45:21:62:af:ac:c6:03:53:e4:
6f:09:c4:33:76:0e:e7:3f:2f:01:d1:7f:65:15:50:
d2:f6:5f:00:3e:88:48:f4:9f:c6:b9:37:3a:a2:b0:
c6:16:03:c9:6b:bd:c7:fc:6d:4f:bd:b0:55:4e:b7:
c7:f1:61:80:41:90:22:50:d9:02:ff:08:7e:3f:10:
f7:65:28:c9:7c:c1:8f:3e:39:fc:2a:ba:90:b8:ef:
3a:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:88:95:6D:97:5C:6E:6B:D5:45:3B:24:5B:6D:7C:2B:5A:85:64:3A
X509v3 Authority Key Identifier:
keyid:6F:9B:F5:4D:41:78:C2:84:0D:52:1B:50:F2:59:0B:6A:30:AF:4F:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5v1TUF4woQNUhtQ8lkLajCvT68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/bea562-3cf4-43b0-a5f0-b803ba564de6/1/xYiVbZdcbmvVRTskW218K1qFZDo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/bea562-3cf4-43b0-a5f0-b803ba564de6/1/b5v1TUF4woQNUhtQ8lkLajCvT68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.114.40.0/24
Signature Algorithm: sha256WithRSAEncryption
19:65:9e:d5:13:9a:a0:6c:97:b4:8e:e8:41:c9:f9:4a:b7:93:
9b:69:be:a6:36:72:52:a1:b2:f9:53:a8:e4:c4:b4:cd:c4:f1:
7d:ab:6d:85:31:0f:3b:0f:f8:1d:ec:5a:e3:39:01:19:a9:dc:
ee:f2:fb:1c:32:6f:b6:d5:a2:48:76:95:f7:3f:a5:c6:ee:80:
77:ab:bd:e0:6c:f9:01:1c:8c:0d:4c:d0:f3:b3:4f:9c:ac:fc:
38:57:df:1f:3e:20:5b:46:3f:67:0c:06:94:8c:bc:51:0a:07:
17:41:b1:45:4d:8f:d0:db:d4:13:17:ae:e1:b9:fb:f6:d4:c2:
65:c6:c2:2c:30:91:48:0b:8d:8b:60:da:7c:86:cf:ef:e5:a9:
e2:2c:32:2a:fa:da:6a:b6:0e:ed:0b:94:fa:95:96:9c:ba:39:
18:ba:0e:ce:9a:24:eb:39:90:ba:0e:f5:bd:4b:1a:bb:95:1a:
e5:12:13:1f:c9:d6:f3:29:d6:8f:69:41:64:55:32:be:4b:d7:
6f:f0:be:bb:96:ae:51:74:e3:f0:4e:da:85:bc:35:6e:a2:81:
31:2d:25:29:66:b5:56:14:08:76:b0:23:87:07:a3:24:60:47:
a1:30:6c:1f:8f:44:0c:bd:20:a5:19:39:07:70:07:9c:86:a6:
ea:5e:9a:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:22 2024 by rpki-client on console-fra.rpki-client.org