Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/608fcf-c0f0-43d6-b5a6-dd521481ff5c/1/3WqcvjDrZBvXMnEvWnLxPcdFLcs.roa
File: 3WqcvjDrZBvXMnEvWnLxPcdFLcs.roa (raw, json)
Hash identifier: VdctlDpPJiV0tRkmNv5PwxZoXhncoEiYMy22Ovj9KwI=
Subject key identifier: DD:6A:9C:BE:30:EB:64:1B:D7:32:71:2F:5A:72:F1:3D:C7:45:2D:CB
Certificate issuer: /CN=520af4f26564ce4d817809e0e6e9b311c3f3bab4
Certificate serial: 01856EF8E6080E7B9A9AD4A1164B0F954898
Authority key identifier: 52:0A:F4:F2:65:64:CE:4D:81:78:09:E0:E6:E9:B3:11:C3:F3:BA:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ugr08mVkzk2BeAng5umzEcPzurQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/608fcf-c0f0-43d6-b5a6-dd521481ff5c/1/3WqcvjDrZBvXMnEvWnLxPcdFLcs.roa
Signing time: Sun 01 Jan 2023 20:14:43 +0000
ROA not before: Sun 01 Jan 2023 20:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43201
IP address blocks: 194.56.180.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:f8:e6:08:0e:7b:9a:9a:d4:a1:16:4b:0f:95:48:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=520af4f26564ce4d817809e0e6e9b311c3f3bab4
Validity
Not Before: Jan 1 20:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dd6a9cbe30eb641bd732712f5a72f13dc7452dcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:26:e7:15:98:83:6a:2e:73:61:cf:95:62:1a:
61:37:70:a2:c4:1f:58:79:13:48:eb:78:88:82:5e:
93:a0:c3:e8:b7:bd:db:fe:86:e9:93:40:1e:33:0b:
89:19:2d:26:cc:57:3f:fd:bf:81:05:bf:42:a8:81:
00:19:c4:71:ee:30:50:51:08:ae:9e:16:49:9e:4f:
61:6b:93:0c:df:78:92:19:48:b8:70:e1:59:b2:29:
de:7f:03:f1:06:26:52:2d:cf:39:21:13:dc:12:99:
ca:bf:f8:69:1b:0d:bc:4e:3a:31:b2:d1:7f:ca:51:
8b:0f:c2:d0:36:f2:8e:11:a6:c5:da:f9:2c:da:f0:
3e:64:f2:42:3d:12:a8:d2:77:31:3f:6f:3f:ea:da:
be:b8:0f:d9:27:0c:98:48:7c:23:1b:d7:26:ff:62:
b4:ca:a5:ec:53:fc:f5:f2:bd:0d:30:6e:07:14:67:
a8:33:f3:26:39:38:c2:6d:29:e6:b8:86:65:18:26:
ce:20:4d:62:4d:dd:2d:75:e3:44:9e:b5:d4:e1:f8:
4d:5d:5f:31:38:07:f5:b9:ac:42:71:26:bf:be:89:
f7:cf:68:c7:52:07:1d:4c:b1:33:41:78:96:45:c1:
14:54:0e:c5:54:32:bf:f8:54:c5:c7:69:23:9e:8c:
b4:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:6A:9C:BE:30:EB:64:1B:D7:32:71:2F:5A:72:F1:3D:C7:45:2D:CB
X509v3 Authority Key Identifier:
keyid:52:0A:F4:F2:65:64:CE:4D:81:78:09:E0:E6:E9:B3:11:C3:F3:BA:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ugr08mVkzk2BeAng5umzEcPzurQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/608fcf-c0f0-43d6-b5a6-dd521481ff5c/1/3WqcvjDrZBvXMnEvWnLxPcdFLcs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/608fcf-c0f0-43d6-b5a6-dd521481ff5c/1/Ugr08mVkzk2BeAng5umzEcPzurQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.56.180.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:99:1d:da:3b:3b:70:35:c5:ec:a4:07:f2:42:0f:3d:b5:5d:
33:e6:e3:3d:1a:58:2d:3d:95:84:52:e0:0e:d6:a6:3a:3a:ab:
08:9d:b6:b1:28:7a:6d:01:2f:66:7b:e0:f1:e4:e9:71:c5:6a:
d4:b1:31:94:f5:5a:e0:cb:26:70:27:af:f9:ad:a8:bb:6a:08:
42:c5:e1:dd:a9:f6:83:f9:99:4e:49:25:ce:7c:7f:b0:5a:7c:
6c:c5:c0:a1:e5:43:09:26:a8:ae:81:a7:f9:8a:f7:80:b1:1c:
10:49:e8:ea:71:98:cc:61:29:c7:98:73:2a:b2:3d:4e:28:fa:
39:85:21:73:95:b0:c9:78:7b:f0:d6:8e:ce:88:e2:02:df:e3:
04:1f:8d:fe:f5:64:4e:aa:ad:e1:43:6a:e3:3c:64:52:11:4d:
88:ff:af:a9:5b:3b:22:cc:c0:74:04:7c:89:b0:40:cf:40:f1:
aa:ff:b0:1e:8f:75:8c:f5:d0:5f:70:73:56:83:83:bb:c5:13:
8b:73:c7:30:97:4f:d7:ef:78:a2:7e:80:5b:2c:89:9c:b4:7a:
62:23:92:66:30:eb:bd:4c:3c:7d:c1:57:46:ba:c0:1a:67:a3:
c6:fc:e2:df:63:81:70:a8:72:23:a4:da:dd:fd:48:89:11:48:
00:a1:9b:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 25 09:54:09 2023 by rpki-client on console-fra.rpki-client.org