Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/3407b2-aee4-4b4b-9f60-1a3780026ddb/1/7HEatq25z49qUypNm3etlxI6caw.roa
File: 7HEatq25z49qUypNm3etlxI6caw.roa (raw, json)
Hash identifier: 9lOujSv9WEn5CLSjJ/GwMcchJppGKVYiBSlx3Ytqdzc=
Subject key identifier: EC:71:1A:B6:AD:B9:CF:8F:6A:53:2A:4D:9B:77:AD:97:12:3A:71:AC
Certificate issuer: /CN=494404eedc92a7a952319451fff27b87e7cdb024
Certificate serial: 02805CBB
Authority key identifier: 49:44:04:EE:DC:92:A7:A9:52:31:94:51:FF:F2:7B:87:E7:CD:B0:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SUQE7tySp6lSMZRR__J7h-fNsCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/3407b2-aee4-4b4b-9f60-1a3780026ddb/1/7HEatq25z49qUypNm3etlxI6caw.roa
Signing time: Sat 01 Jan 2022 00:53:59 +0000
ROA not before: Sat 01 Jan 2022 00:53:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199146
IP address blocks: 195.114.112.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41966779 (0x2805cbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=494404eedc92a7a952319451fff27b87e7cdb024
Validity
Not Before: Jan 1 00:53:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec711ab6adb9cf8f6a532a4d9b77ad97123a71ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d2:f0:81:98:83:11:a6:66:cd:4a:73:80:4a:
83:bc:47:da:fd:46:7b:f8:1a:98:d4:4d:f2:07:2b:
ec:1f:5e:c6:4e:51:74:a1:b8:88:0f:d7:44:61:7b:
c9:99:d7:aa:86:be:56:69:e1:6e:55:0d:b2:08:7b:
70:7b:2c:3c:56:5f:a6:97:4c:97:27:45:05:24:76:
fa:bc:b8:98:c7:ae:90:aa:65:38:36:16:91:1d:ec:
2c:6b:b3:44:1a:e0:db:8a:e9:47:eb:d7:32:1c:de:
a7:3c:39:b0:40:06:93:b5:9a:ba:a5:d3:c9:3c:77:
17:9f:69:9e:16:8c:a3:9f:ce:83:44:f2:12:f7:7e:
84:f3:60:0f:9b:c9:96:67:97:2b:8e:77:6f:39:b9:
7e:12:c9:10:20:be:94:16:2f:17:4e:3d:3e:e4:78:
b9:cc:38:66:aa:9f:2d:7f:52:87:6b:37:42:76:31:
71:e5:4b:c9:f8:31:37:5c:f2:3d:77:ec:05:cf:12:
d1:fa:3a:94:c0:5b:79:af:e3:b0:d9:92:3f:53:dd:
28:fd:04:42:c3:35:24:bb:c3:a9:66:51:d8:c7:36:
41:42:3a:a1:b6:49:2e:24:55:a9:06:2c:6c:75:81:
cc:b9:f4:ba:69:18:af:17:7d:36:0a:56:c1:f6:dd:
cc:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:71:1A:B6:AD:B9:CF:8F:6A:53:2A:4D:9B:77:AD:97:12:3A:71:AC
X509v3 Authority Key Identifier:
keyid:49:44:04:EE:DC:92:A7:A9:52:31:94:51:FF:F2:7B:87:E7:CD:B0:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SUQE7tySp6lSMZRR__J7h-fNsCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/3407b2-aee4-4b4b-9f60-1a3780026ddb/1/7HEatq25z49qUypNm3etlxI6caw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/3407b2-aee4-4b4b-9f60-1a3780026ddb/1/SUQE7tySp6lSMZRR__J7h-fNsCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.114.112.0/24
Signature Algorithm: sha256WithRSAEncryption
25:e8:05:91:f1:aa:b8:9e:e4:e1:d6:f8:d1:85:d9:b4:1d:84:
c6:a3:58:b4:38:27:18:86:16:7b:99:ef:d9:86:0d:2a:39:f6:
e3:90:33:cb:a9:eb:e1:23:eb:09:23:a5:b6:5b:57:a9:01:87:
f8:55:c1:a1:4a:00:cc:3a:ec:be:fd:e8:93:58:b5:49:ca:ea:
a0:52:a4:e7:98:0c:de:18:23:68:3a:67:da:4f:32:d4:52:ee:
70:b6:79:a7:55:c0:ee:cd:0d:2c:1c:c3:b8:1a:b7:e5:b7:cf:
4f:c2:f6:dc:9a:b4:5f:18:81:cc:53:bf:8c:e0:05:53:8e:8c:
d7:56:4b:ff:6c:5c:c4:4d:48:27:2e:a9:ef:a6:ab:46:84:0c:
3d:bd:a3:30:cf:58:ae:7c:32:11:71:c2:67:73:19:79:26:7f:
43:c4:1b:3d:f3:8d:b2:90:eb:ba:45:75:c9:91:29:0e:db:cc:
a6:67:d6:51:47:1f:75:f7:b8:b2:50:80:28:85:90:1e:80:78:
4a:60:3c:ab:1a:ce:d3:29:ee:21:2b:7a:3c:99:a2:35:3f:8b:
41:71:d2:78:40:65:4b:07:f1:48:96:a5:6d:e7:ad:ff:5c:00:
b7:4a:6d:a5:8c:fc:37:20:a9:1a:28:eb:64:d0:cb:40:49:3e:
c7:af:b4:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:25 2023 by rpki-client on console-ams.rpki-client.org