Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/9e2fcb-5bbe-4417-9656-bd90f79745ca/1/Kuw3dmbwBhlgTPFrnxUiPpfhito.roa
File: Kuw3dmbwBhlgTPFrnxUiPpfhito.roa (raw, json)
Hash identifier: A92EDjns2DnWl/72oOjHhGbUWf9QT/+wrtxxCd6wT9k=
Subject key identifier: 2A:EC:37:76:66:F0:06:19:60:4C:F1:6B:9F:15:22:3E:97:E1:8A:DA
Certificate issuer: /CN=371e04ff185b50b9e61ec5f46e2b10877491d882
Certificate serial: 0AB9C223
Authority key identifier: 37:1E:04:FF:18:5B:50:B9:E6:1E:C5:F4:6E:2B:10:87:74:91:D8:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nx4E_xhbULnmHsX0bisQh3SR2II.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/9e2fcb-5bbe-4417-9656-bd90f79745ca/1/Kuw3dmbwBhlgTPFrnxUiPpfhito.roa
Signing time: Sat 01 Jan 2022 07:56:52 +0000
ROA not before: Sat 01 Jan 2022 07:56:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202932
IP address blocks: 188.244.104.0/22 maxlen: 22
2a0d:58c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179946019 (0xab9c223)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=371e04ff185b50b9e61ec5f46e2b10877491d882
Validity
Not Before: Jan 1 07:56:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2aec377666f00619604cf16b9f15223e97e18ada
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:f2:5a:4b:bc:35:89:b8:93:b4:98:0b:f6:7c:
84:71:2a:df:e2:a4:37:44:13:df:6a:28:9f:88:5d:
d5:69:69:5f:56:e8:eb:f4:b3:9c:d4:ca:8f:c8:71:
0b:1f:47:e1:3d:82:29:69:1e:7c:f9:05:a0:3f:2e:
3a:dc:84:0c:61:bf:99:13:96:51:a8:dc:de:63:2b:
10:10:a9:1a:0a:8c:74:23:9d:f9:1d:30:5e:68:7b:
dc:68:30:90:7c:64:45:d2:46:9c:17:b9:97:7c:c0:
ee:a8:e8:b9:72:6c:39:b7:48:88:a5:5f:62:5c:26:
3f:e0:8a:bf:a6:14:ba:28:8c:f6:62:f4:a6:2f:fb:
cc:e2:e6:6e:39:75:19:02:b0:31:7f:fe:23:d7:43:
d3:e8:07:c9:98:aa:11:2e:df:06:55:a0:d8:9a:9e:
88:16:a3:2d:ff:c0:1e:c8:7b:f0:b7:7f:0a:29:f6:
13:88:f9:82:bf:ae:1e:03:e6:86:01:28:f7:23:bf:
67:6a:da:9b:6b:e8:dd:33:0b:f5:68:98:72:7f:37:
2e:6a:fe:99:e7:6a:0b:85:61:b1:cd:50:a7:e0:6c:
65:af:99:2a:8e:7e:3e:53:55:bc:4a:9b:48:49:eb:
e8:ae:e2:56:ab:25:57:a0:f4:5c:a3:d5:9a:89:cd:
7c:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:EC:37:76:66:F0:06:19:60:4C:F1:6B:9F:15:22:3E:97:E1:8A:DA
X509v3 Authority Key Identifier:
keyid:37:1E:04:FF:18:5B:50:B9:E6:1E:C5:F4:6E:2B:10:87:74:91:D8:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nx4E_xhbULnmHsX0bisQh3SR2II.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/9e2fcb-5bbe-4417-9656-bd90f79745ca/1/Kuw3dmbwBhlgTPFrnxUiPpfhito.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/9e2fcb-5bbe-4417-9656-bd90f79745ca/1/Nx4E_xhbULnmHsX0bisQh3SR2II.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.244.104.0/22
IPv6:
2a0d:58c0::/29
Signature Algorithm: sha256WithRSAEncryption
3b:01:50:a3:f8:c7:0a:67:3f:4b:ba:eb:e4:75:e3:ab:1e:4f:
ff:08:91:3f:53:2b:1b:1a:03:51:3c:48:71:ba:41:4b:5c:29:
cd:97:c5:c8:e3:c0:8a:f8:04:82:87:cd:0e:b0:73:82:ef:1c:
b0:33:06:35:06:4e:a1:5b:36:60:a5:c6:3d:ad:08:9d:c7:ff:
cf:d8:a8:21:11:8a:75:4d:9e:a1:92:da:b3:e1:9e:00:2d:43:
be:9c:03:4a:8c:b0:ae:2f:06:f1:54:b4:9e:24:44:f9:5b:94:
39:f9:97:b7:02:d8:ee:43:64:9a:d0:f0:72:92:12:f1:e8:b6:
02:a0:a0:d8:ea:f6:02:cf:28:47:69:de:37:1b:55:72:08:1f:
a8:31:f1:e7:c3:16:f1:cd:cf:8e:99:2f:2e:f7:63:17:9a:de:
70:d5:51:13:e7:6b:10:0f:d0:83:dc:50:25:f6:6b:fa:10:95:
bf:cf:11:dc:03:b2:df:2c:00:fa:44:00:a9:ea:6f:21:fe:86:
cb:7c:31:24:3f:27:6d:c4:64:5b:17:45:77:08:ca:c8:b3:68:
f0:44:6a:e9:c8:63:69:78:5c:aa:f3:91:8b:53:d6:5e:60:41:
59:10:27:37:d7:d2:c3:d2:3a:ea:f4:85:50:db:82:4c:9f:df:
a0:10:a6:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:42 2024 by rpki-client on console-fra.rpki-client.org