Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/2fc150-ad36-4fe7-a6b0-d63b98ce1dd6/1/aQW0O5qVJGFZwnXllkDdg_RFUkE.roa
File: aQW0O5qVJGFZwnXllkDdg_RFUkE.roa (raw, json)
Hash identifier: vTGLW0CFN0UbJA7JzqJ7L4uTgz62s5c2BE0IunDxSBo=
Subject key identifier: 69:05:B4:3B:9A:95:24:61:59:C2:75:E5:96:40:DD:83:F4:45:52:41
Certificate issuer: /CN=1d7c51255cb0653562fb869911f05d45414e61c5
Certificate serial: F64C0E
Authority key identifier: 1D:7C:51:25:5C:B0:65:35:62:FB:86:99:11:F0:5D:45:41:4E:61:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HXxRJVywZTVi-4aZEfBdRUFOYcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/2fc150-ad36-4fe7-a6b0-d63b98ce1dd6/1/aQW0O5qVJGFZwnXllkDdg_RFUkE.roa
Signing time: Sat 01 Jan 2022 05:53:12 +0000
ROA not before: Sat 01 Jan 2022 05:53:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 188.95.67.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16141326 (0xf64c0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d7c51255cb0653562fb869911f05d45414e61c5
Validity
Not Before: Jan 1 05:53:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6905b43b9a95246159c275e59640dd83f4455241
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:24:d4:a9:4f:4e:87:b6:e1:f1:c1:23:26:6e:
43:78:03:b0:07:a6:83:72:e7:ec:74:cc:81:11:e7:
7d:3b:67:a2:40:8b:a2:e9:84:76:7f:81:91:5b:92:
83:d3:9d:79:e0:2d:26:13:79:20:9e:53:4d:1a:da:
cb:f7:a0:3e:69:86:e0:30:ba:b7:f9:7b:9f:3f:cc:
39:11:a3:bb:79:5a:f1:a7:6d:4f:4a:cb:3a:c4:a4:
58:99:af:eb:75:c6:cd:d2:b1:1f:73:68:f2:20:2d:
af:23:11:ee:69:2a:ed:a3:6c:61:06:c0:40:1b:7f:
16:8f:e0:6e:ba:b1:93:cb:fc:38:eb:2d:f0:5a:1f:
3f:d0:27:9f:94:97:1e:c2:6a:57:68:f9:fe:73:a4:
9a:96:33:d0:93:47:fb:75:42:67:f1:25:a2:9b:7d:
4c:90:f6:da:33:31:1b:65:a9:ad:88:2c:8b:65:05:
13:1a:b0:6a:34:d0:73:a5:fb:af:2b:58:c3:2e:39:
c7:f6:b1:b0:35:a4:21:8e:8b:28:1d:7f:ad:12:16:
5f:3b:e0:d1:3c:ba:34:2d:69:bd:96:b6:06:74:b0:
8e:be:ab:c1:7c:a6:46:a3:fe:d3:3d:8b:41:ec:59:
81:36:87:90:17:75:e0:f2:28:e1:2f:a3:7a:a5:23:
9c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:05:B4:3B:9A:95:24:61:59:C2:75:E5:96:40:DD:83:F4:45:52:41
X509v3 Authority Key Identifier:
keyid:1D:7C:51:25:5C:B0:65:35:62:FB:86:99:11:F0:5D:45:41:4E:61:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HXxRJVywZTVi-4aZEfBdRUFOYcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/2fc150-ad36-4fe7-a6b0-d63b98ce1dd6/1/aQW0O5qVJGFZwnXllkDdg_RFUkE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/2fc150-ad36-4fe7-a6b0-d63b98ce1dd6/1/HXxRJVywZTVi-4aZEfBdRUFOYcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.95.67.0/24
Signature Algorithm: sha256WithRSAEncryption
34:b4:67:63:d0:77:70:a6:56:e6:11:0e:42:93:8f:d6:cd:48:
dc:39:79:d4:67:fa:4f:93:ab:5c:11:bb:25:a7:c1:cf:73:64:
27:af:f3:22:11:37:f3:cf:d6:9b:38:d2:08:12:0c:69:ad:23:
b8:bb:ba:3e:0e:68:3c:ef:36:7e:57:20:1b:09:36:b1:c6:cf:
d4:0e:71:da:c6:23:c1:1a:85:79:67:b3:4b:41:3a:96:7b:2c:
b5:da:0a:ba:36:7a:fa:43:ef:4d:07:86:c8:f1:6e:c2:c4:fa:
8c:a8:fd:1d:23:2f:bd:49:c0:6b:72:95:36:40:7a:30:f8:37:
20:9c:fa:65:66:4f:9b:dd:d8:2a:52:c3:5f:ec:64:7f:e1:46:
d0:e3:3d:59:3c:a5:05:ed:89:05:bb:7a:0f:be:96:a8:4f:1c:
74:fa:d1:0b:20:e3:10:1f:be:08:25:cf:c5:82:e2:a5:0c:f5:
c1:42:96:3a:49:56:03:0d:78:d0:3c:9f:5f:82:4c:c8:df:3e:
ed:70:98:b9:f2:a7:18:4e:ec:cf:8a:1b:a6:de:2f:fc:76:c1:
63:ab:a2:d5:83:60:3c:19:56:d6:dd:06:f0:7e:a7:3a:28:3c:
dd:12:cd:e1:ba:16:4d:ff:8c:0d:3e:ba:eb:4a:16:34:81:35:
d9:94:f2:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:21 2024 by rpki-client on console-fra.rpki-client.org