Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/3cdcde-2cfb-4430-bbe5-47abd76ea672/1/XtBEg0gvFit4_Fq2n8osyVY6KLs.roa
File: XtBEg0gvFit4_Fq2n8osyVY6KLs.roa (raw, json)
Hash identifier: YEvCa6xmNZrCVe8+GOSbDDsOsZw8ScB6mwEnLTrOjAY=
Subject key identifier: 5E:D0:44:83:48:2F:16:2B:78:FC:5A:B6:9F:CA:2C:C9:56:3A:28:BB
Certificate issuer: /CN=195ab84268c904c825a4f09eb040d1f72e112331
Certificate serial: 0189654AC2AA2E47B1A95853D5A267CFB5CF
Authority key identifier: 19:5A:B8:42:68:C9:04:C8:25:A4:F0:9E:B0:40:D1:F7:2E:11:23:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GVq4QmjJBMglpPCesEDR9y4RIzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/3cdcde-2cfb-4430-bbe5-47abd76ea672/1/XtBEg0gvFit4_Fq2n8osyVY6KLs.roa
Signing time: Mon 17 Jul 2023 19:19:05 +0000
ROA not before: Mon 17 Jul 2023 19:19:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 88.151.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:65:4a:c2:aa:2e:47:b1:a9:58:53:d5:a2:67:cf:b5:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=195ab84268c904c825a4f09eb040d1f72e112331
Validity
Not Before: Jul 17 19:19:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ed04483482f162b78fc5ab69fca2cc9563a28bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:92:dc:4e:60:3d:77:aa:5b:b3:58:f4:30:97:
a4:5a:65:c8:4d:48:aa:c9:91:d6:f5:f4:7c:cb:54:
5d:bc:57:bd:82:c2:6a:3c:07:53:5f:de:9d:8f:6e:
cc:4c:ff:da:cd:78:91:bd:6b:9c:c8:a0:67:cd:f1:
2e:fd:34:5e:20:41:93:3d:23:7f:08:06:f1:d6:db:
6d:c2:22:8c:1f:87:c7:55:94:5c:9f:fd:1f:48:10:
7c:f4:af:88:77:12:38:57:a0:66:8c:2b:31:8f:75:
15:54:23:3a:68:ae:4a:36:c4:c7:65:f2:7f:05:d6:
76:cd:2c:f9:3d:b8:f7:0c:3c:d0:1e:39:80:5a:a4:
ac:36:af:d3:c1:23:04:e2:9b:f9:84:f3:c0:35:52:
76:e1:3a:f8:76:38:2c:89:f6:f3:11:d4:10:d6:8c:
6b:a8:dc:47:4b:dc:31:82:63:b5:ca:31:62:c5:e5:
7b:9b:4f:e1:84:ee:3a:fd:89:96:20:5f:cf:05:fa:
d0:55:43:e1:07:d3:a6:b3:5d:d7:35:a7:69:a8:76:
44:10:d6:39:96:e2:d3:b1:18:a3:a9:ab:d5:36:66:
de:bc:eb:2c:15:82:32:f5:6f:d1:7f:5a:7f:0d:d3:
ed:43:6d:a3:bc:77:24:03:e3:10:bd:e8:02:2a:3e:
6f:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:D0:44:83:48:2F:16:2B:78:FC:5A:B6:9F:CA:2C:C9:56:3A:28:BB
X509v3 Authority Key Identifier:
keyid:19:5A:B8:42:68:C9:04:C8:25:A4:F0:9E:B0:40:D1:F7:2E:11:23:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GVq4QmjJBMglpPCesEDR9y4RIzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/3cdcde-2cfb-4430-bbe5-47abd76ea672/1/XtBEg0gvFit4_Fq2n8osyVY6KLs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/3cdcde-2cfb-4430-bbe5-47abd76ea672/1/GVq4QmjJBMglpPCesEDR9y4RIzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.151.11.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:a4:ca:4b:79:37:7f:9c:06:25:8b:e5:90:1d:7b:33:05:d0:
43:46:9d:c2:19:eb:c7:42:26:20:96:a0:64:df:16:91:95:f9:
6f:17:03:af:8f:c6:55:b5:4e:c5:35:ae:fd:b8:16:f1:8d:88:
0a:b9:89:ec:f6:05:1b:13:5c:9e:6d:61:98:96:45:59:5a:ec:
33:dc:67:f4:9a:a3:f2:98:82:41:89:51:7f:d1:c5:9d:70:fc:
4d:bc:9c:38:11:24:f6:da:2f:4b:ac:cf:ce:08:6c:01:cd:b3:
90:89:19:56:68:08:f3:ff:69:f7:de:f7:07:d6:58:52:fd:32:
eb:c0:eb:40:6e:f4:4a:46:d6:13:19:3d:05:2d:7e:49:35:9e:
60:fc:60:7e:15:a5:63:fb:bd:eb:aa:94:9a:ca:61:b9:24:cf:
54:c4:02:6e:72:15:71:ec:6d:a8:11:52:fb:84:05:a8:59:ad:
c5:ea:69:9f:15:b8:f8:33:7a:1e:ce:6c:a3:26:06:4d:5a:a3:
ff:dd:4e:f9:e2:49:31:ee:d6:ed:30:d9:27:e2:53:90:fc:87:
4e:43:76:ad:78:35:26:4c:0c:c4:32:76:7b:5b:8c:d9:c0:8a:
99:84:18:e3:fc:3a:05:e0:2d:60:0d:93:4a:b8:42:74:7f:64:
04:3d:7c:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:58 2024 by rpki-client on console-fra.rpki-client.org