Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/923ae4-af95-4a72-9c1f-6f97cfe54540/1/YXElSodp5SJa2zg_qp9tAluj69w.roa
File: YXElSodp5SJa2zg_qp9tAluj69w.roa (raw, json)
Hash identifier: KbaHqxkDqF5Q8aRdhhQuGBISXyglGCUaR+FSqisjV18=
Subject key identifier: 61:71:25:4A:87:69:E5:22:5A:DB:38:3F:AA:9F:6D:02:5B:A3:EB:DC
Certificate issuer: /CN=d8454dc97809cfff2f2a9ab9fdb0a6fd336103ce
Certificate serial: 01882086B2C53103B2C4D6EB1937F9A865B3
Authority key identifier: D8:45:4D:C9:78:09:CF:FF:2F:2A:9A:B9:FD:B0:A6:FD:33:61:03:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2EVNyXgJz_8vKpq5_bCm_TNhA84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/923ae4-af95-4a72-9c1f-6f97cfe54540/1/YXElSodp5SJa2zg_qp9tAluj69w.roa
Signing time: Mon 15 May 2023 17:47:58 +0000
ROA not before: Mon 15 May 2023 17:47:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7393
IP address blocks: 193.163.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:20:86:b2:c5:31:03:b2:c4:d6:eb:19:37:f9:a8:65:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8454dc97809cfff2f2a9ab9fdb0a6fd336103ce
Validity
Not Before: May 15 17:47:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6171254a8769e5225adb383faa9f6d025ba3ebdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f8:16:f5:27:6f:da:62:a2:68:27:e3:46:f3:
79:44:0c:d8:92:fb:e9:d4:0d:dd:47:0a:16:3d:67:
3a:6b:c5:88:a2:ae:df:fb:de:f7:b1:e5:19:1f:d0:
6b:3e:e9:47:6b:fb:f7:13:a8:51:8a:6f:c6:7f:09:
6e:32:e7:1b:32:8b:e3:aa:42:60:bf:23:26:67:85:
b3:a9:ff:71:70:81:19:f5:4f:f2:f4:0d:42:fd:b0:
67:71:c4:36:9f:d4:7b:a4:fe:d4:a0:2b:a0:57:1c:
d6:cb:58:ee:73:79:5e:d7:13:2c:62:66:67:bb:5b:
ab:66:64:13:cc:22:a0:3f:bc:18:a6:ef:ec:6e:ed:
38:58:23:d3:d3:67:f2:56:46:b9:c7:22:9b:58:14:
e8:d9:eb:04:fe:4f:d6:95:e8:3c:22:7f:91:09:91:
00:47:27:74:4a:a6:07:44:c6:4c:4e:50:af:f7:4d:
d3:9e:7f:43:c5:e7:5d:7f:a4:ce:6f:65:6b:93:1d:
d2:19:ef:cf:41:b3:02:88:52:24:29:4e:0d:34:28:
c1:41:e2:6b:39:50:30:41:b3:c0:3c:63:9a:ac:96:
e1:8f:27:fe:55:1d:ee:f8:81:d0:7b:44:9a:03:24:
57:a0:aa:6f:9e:b3:9b:93:01:52:0a:25:a8:69:f4:
d4:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:71:25:4A:87:69:E5:22:5A:DB:38:3F:AA:9F:6D:02:5B:A3:EB:DC
X509v3 Authority Key Identifier:
keyid:D8:45:4D:C9:78:09:CF:FF:2F:2A:9A:B9:FD:B0:A6:FD:33:61:03:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2EVNyXgJz_8vKpq5_bCm_TNhA84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/923ae4-af95-4a72-9c1f-6f97cfe54540/1/YXElSodp5SJa2zg_qp9tAluj69w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/923ae4-af95-4a72-9c1f-6f97cfe54540/1/2EVNyXgJz_8vKpq5_bCm_TNhA84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.195.0/24
Signature Algorithm: sha256WithRSAEncryption
75:be:41:36:89:e7:d9:1c:5e:b3:55:8f:11:fe:a9:e9:26:32:
28:6c:9f:60:a8:3a:d9:be:8d:8d:a4:fc:b0:ef:e7:86:bd:84:
be:4c:c5:cf:ec:91:dd:75:3b:b5:aa:04:ff:43:f8:67:fd:57:
75:5d:d4:8f:a1:2a:27:31:bd:6c:a1:b7:e4:22:ba:67:db:aa:
4e:86:be:9d:5f:ea:70:68:c9:2d:db:b7:13:19:ce:33:4f:37:
15:82:0a:8e:f0:70:f6:9f:dd:a1:c0:07:23:30:73:a2:91:5e:
8f:40:75:8c:bf:a3:12:ee:57:1c:00:d3:aa:3d:c8:92:1e:ee:
61:e7:08:ca:eb:f3:b1:63:5a:06:9d:0f:cd:ed:05:fc:5b:55:
61:a2:8f:5e:46:17:58:1a:b2:4d:b3:60:dd:31:1a:e8:99:2d:
bb:0a:13:d5:e0:cc:22:b9:9f:f3:7f:66:1c:1f:2e:9d:fd:c5:
89:a1:e4:1a:74:3d:aa:0a:41:08:90:7a:a0:2c:c2:3c:6b:f6:
80:d1:c6:44:8d:ed:df:2e:bc:0d:d2:3d:72:d6:94:31:16:46:
82:8c:dd:2e:7d:04:ab:2f:b2:13:6a:cf:21:37:28:9e:0a:3d:
48:12:df:3b:15:12:f4:db:4b:e4:c7:27:72:8c:c9:0c:72:49:
0c:eb:49:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 1 13:51:51 2023 by rpki-client on console-fra.rpki-client.org