Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/51fd5a-9bc9-4dfd-9d73-7148e2bcd16c/1/qui_CbrZa8Dluwp-DPjZnGwuZZo.roa
File: qui_CbrZa8Dluwp-DPjZnGwuZZo.roa (raw, json)
Hash identifier: eebqey/EhcC46TUC9gKK+s8AYzBDq1fEOrbOEg3eMn4=
Subject key identifier: AA:E8:BF:09:BA:D9:6B:C0:E5:BB:0A:7E:0C:F8:D9:9C:6C:2E:65:9A
Certificate issuer: /CN=e3f669166fc6c62c28c066196bb226a1c5955fdb
Certificate serial: A9D1
Authority key identifier: E3:F6:69:16:6F:C6:C6:2C:28:C0:66:19:6B:B2:26:A1:C5:95:5F:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4_ZpFm_GxiwowGYZa7ImocWVX9s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/51fd5a-9bc9-4dfd-9d73-7148e2bcd16c/1/qui_CbrZa8Dluwp-DPjZnGwuZZo.roa
Signing time: Wed 19 Jan 2022 13:50:30 +0000
ROA not before: Wed 19 Jan 2022 13:50:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 176.53.145.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43473 (0xa9d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3f669166fc6c62c28c066196bb226a1c5955fdb
Validity
Not Before: Jan 19 13:50:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aae8bf09bad96bc0e5bb0a7e0cf8d99c6c2e659a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:1a:88:5d:92:61:33:94:06:a7:8f:bb:83:d5:
21:8d:4c:3a:46:19:9a:c0:24:a3:84:01:c0:f0:30:
a1:07:d4:a8:d5:d0:8d:14:ce:71:6d:19:0d:a5:19:
21:7a:42:08:fe:31:26:08:c8:82:1c:62:d9:d4:80:
2b:40:5f:ff:18:b5:12:ad:f2:47:1d:36:f4:92:c8:
0d:03:6f:a0:0b:e6:41:0f:1d:26:87:92:4b:77:30:
92:e2:29:51:23:45:65:c9:43:a6:07:ba:f8:5f:47:
e7:b4:3b:ca:f2:02:ee:46:79:1d:ad:36:23:fe:a3:
a4:03:3c:7e:43:91:e3:98:46:bc:2b:79:b1:a3:b2:
fd:9d:a2:2d:1f:0e:23:ed:2a:58:bd:a2:5e:ad:f6:
2d:60:3d:ed:8d:12:93:f2:cc:35:66:3c:2b:e0:96:
97:ba:74:5e:5d:21:d6:35:8c:fc:e5:db:f2:76:75:
d2:92:52:de:54:11:39:e8:3d:68:7e:57:1b:e0:cd:
1b:c7:46:d4:2e:e3:56:11:af:e6:88:f1:9b:26:59:
76:80:6a:6d:9d:bf:84:da:92:ea:41:7e:5e:59:f6:
f8:5c:7e:4b:35:ff:85:00:25:c1:df:34:02:7b:cd:
04:e0:7a:1a:10:fd:7a:b6:bf:59:35:00:c9:4f:2b:
20:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:E8:BF:09:BA:D9:6B:C0:E5:BB:0A:7E:0C:F8:D9:9C:6C:2E:65:9A
X509v3 Authority Key Identifier:
keyid:E3:F6:69:16:6F:C6:C6:2C:28:C0:66:19:6B:B2:26:A1:C5:95:5F:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4_ZpFm_GxiwowGYZa7ImocWVX9s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/51fd5a-9bc9-4dfd-9d73-7148e2bcd16c/1/qui_CbrZa8Dluwp-DPjZnGwuZZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/51fd5a-9bc9-4dfd-9d73-7148e2bcd16c/1/4_ZpFm_GxiwowGYZa7ImocWVX9s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.53.145.0/24
Signature Algorithm: sha256WithRSAEncryption
22:17:b6:75:43:08:e4:0b:7d:15:cc:fc:7f:58:7c:ab:f6:79:
2f:dc:3f:ff:d5:b4:8b:e2:a8:5e:1b:67:49:f4:ec:94:90:29:
28:0d:44:2e:ef:dc:b0:61:0a:5b:70:96:da:26:2e:6b:18:da:
cf:2f:d4:d6:36:73:3e:dc:e9:ee:bd:17:51:cf:62:6c:fc:f4:
ff:e7:3b:b4:5d:5a:0b:8b:c8:8f:2f:c8:30:2d:b7:29:b4:8a:
cc:a5:98:60:fc:58:a3:41:5d:bc:f1:67:1b:12:6b:ca:f4:19:
d8:e6:48:cf:41:3d:59:41:88:f0:14:01:9f:ca:15:cb:bd:ef:
f3:14:34:77:13:73:67:3f:f0:41:19:2f:a8:fe:6e:1e:fd:4b:
0d:85:9a:ad:37:73:d3:65:e5:3d:99:14:e4:75:11:04:2e:80:
56:df:86:e3:2e:fa:cd:75:34:39:78:44:31:5f:f9:1f:d7:68:
f4:d8:48:b0:2c:a6:59:96:60:12:f7:2e:38:79:9d:45:78:4c:
12:83:33:63:f0:0f:4a:91:c1:0d:1e:ab:8e:e8:59:53:83:1a:
df:bf:d4:fa:9a:0f:80:da:2e:25:02:f2:4f:bd:59:dc:56:da:
3b:44:10:97:1f:a8:9a:67:8a:ac:61:69:55:4b:45:11:20:ac:
3f:e6:30:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:49 2023 by rpki-client on console-fra.rpki-client.org