Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/3547ff-202c-492f-9699-b27c80107861/1/pKjTVwvpcHT1y6V7eIaB-vfgNas.roa
File: pKjTVwvpcHT1y6V7eIaB-vfgNas.roa (raw, json)
Hash identifier: Lwq97Ar1zVnQw9mDtnd+5mxNpcm3QKmBdtRQhPoLyJk=
Subject key identifier: A4:A8:D3:57:0B:E9:70:74:F5:CB:A5:7B:78:86:81:FA:F7:E0:35:AB
Certificate issuer: /CN=947b9c9d1c1bebca2605323946c809887be90871
Certificate serial: 02C27391
Authority key identifier: 94:7B:9C:9D:1C:1B:EB:CA:26:05:32:39:46:C8:09:88:7B:E9:08:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lHucnRwb68omBTI5RsgJiHvpCHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/3547ff-202c-492f-9699-b27c80107861/1/pKjTVwvpcHT1y6V7eIaB-vfgNas.roa
Signing time: Sat 01 Jan 2022 00:50:30 +0000
ROA not before: Sat 01 Jan 2022 00:50:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201178
IP address blocks: 193.148.252.0/24 maxlen: 24
193.148.253.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46298001 (0x2c27391)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=947b9c9d1c1bebca2605323946c809887be90871
Validity
Not Before: Jan 1 00:50:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4a8d3570be97074f5cba57b788681faf7e035ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:da:36:ec:61:c5:0e:65:33:15:b4:3b:65:0c:
80:9a:ec:94:0b:be:5d:54:ee:91:74:45:f6:96:46:
67:d0:15:f1:9f:ec:b9:c4:a8:1c:8e:64:81:3e:27:
72:0d:44:9d:56:ba:02:13:80:7d:b8:8f:03:1a:17:
20:b0:e5:54:a3:ea:62:09:37:85:25:84:c0:5b:23:
d9:bf:91:15:bb:78:54:27:60:0e:9c:50:48:ea:cb:
82:b6:a2:ba:46:bf:49:7d:60:ed:14:9c:6a:8e:e1:
e6:d6:45:01:eb:d3:27:2d:df:ef:35:4b:8c:e9:33:
2a:a9:e3:ea:0f:16:d3:f1:af:a5:69:70:3f:89:da:
a8:2d:9e:7b:e5:62:28:60:1a:41:4d:9d:15:2a:80:
26:f6:fa:44:72:2b:cd:b3:8d:e4:33:d8:b7:a1:c4:
e4:3e:20:78:c6:50:e3:72:9e:95:cb:dc:fd:0f:16:
82:71:54:86:b1:55:db:58:0c:a3:32:4a:0c:19:07:
42:2a:d2:af:f0:ac:a7:ed:3e:80:4d:29:4a:6a:b1:
b4:ff:e4:01:3c:d0:cd:e4:2d:a6:f1:e4:e6:e1:99:
a6:d5:4d:e7:b9:46:ef:ba:b5:b1:f5:f3:fa:b4:c0:
63:7c:6e:eb:91:6a:2b:60:72:57:aa:2b:35:fc:4f:
0a:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:A8:D3:57:0B:E9:70:74:F5:CB:A5:7B:78:86:81:FA:F7:E0:35:AB
X509v3 Authority Key Identifier:
keyid:94:7B:9C:9D:1C:1B:EB:CA:26:05:32:39:46:C8:09:88:7B:E9:08:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lHucnRwb68omBTI5RsgJiHvpCHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3547ff-202c-492f-9699-b27c80107861/1/pKjTVwvpcHT1y6V7eIaB-vfgNas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3547ff-202c-492f-9699-b27c80107861/1/lHucnRwb68omBTI5RsgJiHvpCHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.148.252.0/23
Signature Algorithm: sha256WithRSAEncryption
97:f0:81:0a:91:46:0c:51:ce:6e:44:dc:22:c6:19:cd:06:80:
b8:ad:b8:9d:c5:ad:39:55:9a:61:91:ed:88:08:08:c8:fa:04:
5a:7e:d3:1e:87:dd:04:01:26:ad:34:d8:1a:24:8b:32:9a:6b:
7c:f7:64:6e:0e:78:b8:c9:a6:9b:fd:15:33:d3:8e:2c:48:45:
32:c6:8d:79:dd:60:60:8d:c9:e8:57:31:a4:24:23:90:d9:dc:
80:44:75:66:fc:6c:35:ec:41:a5:b7:ce:e9:63:11:55:f7:b1:
ee:18:14:4d:59:c1:2e:d0:2b:2e:fe:61:ec:7b:42:32:bb:d5:
7a:02:c5:64:4f:72:78:3a:7a:6b:72:e3:fe:fb:60:cf:21:a8:
8e:d1:0d:d6:99:76:12:f2:9d:68:9b:74:24:56:68:76:23:38:
17:24:e8:60:b7:31:11:ad:9d:7d:27:4b:04:53:1c:88:6b:5f:
51:ee:f7:f9:22:22:82:7d:ec:55:4e:c8:c4:5b:95:cb:53:5d:
fb:35:c1:e0:16:1b:36:20:39:cb:96:50:06:d3:c3:fd:ca:4b:
ed:82:38:ba:e4:8d:ad:38:4d:3e:47:4d:0d:38:2b:86:1b:25:
fd:83:c8:ab:a3:6d:ff:a5:b8:80:83:d9:56:f0:e4:fd:8a:f1:
73:9c:3f:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:30 2024 by rpki-client on console-fra.rpki-client.org