Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/cbd4c0-728b-43cc-82ed-16878abd1a9f/1/jPuYnVipd2i1ptI9Q9TRY6-k6Rw.roa
File: jPuYnVipd2i1ptI9Q9TRY6-k6Rw.roa (raw, json)
Hash identifier: MxpB503Lt5MiQOjRsttFELN3HYl/6+uFLRoLgbiFDjQ=
Subject key identifier: 8C:FB:98:9D:58:A9:77:68:B5:A6:D2:3D:43:D4:D1:63:AF:A4:E9:1C
Certificate issuer: /CN=d220740dd8da306f214b4fe8ce1185b5d5ff3b78
Certificate serial: 35493ADD
Authority key identifier: D2:20:74:0D:D8:DA:30:6F:21:4B:4F:E8:CE:11:85:B5:D5:FF:3B:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0iB0DdjaMG8hS0_ozhGFtdX_O3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/cbd4c0-728b-43cc-82ed-16878abd1a9f/1/jPuYnVipd2i1ptI9Q9TRY6-k6Rw.roa
Signing time: Sat 01 Jan 2022 06:59:41 +0000
ROA not before: Sat 01 Jan 2022 06:59:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44419
IP address blocks: 188.127.128.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 893991645 (0x35493add)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d220740dd8da306f214b4fe8ce1185b5d5ff3b78
Validity
Not Before: Jan 1 06:59:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8cfb989d58a97768b5a6d23d43d4d163afa4e91c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:be:3d:1c:89:bb:61:10:4e:38:ba:16:db:59:
65:58:f9:11:88:82:7e:3e:8c:30:11:9d:04:34:bd:
83:61:1b:f3:2e:ae:76:9d:a3:c7:a7:e5:3a:85:f7:
6e:42:67:fb:eb:0e:3b:6b:08:ce:aa:3a:89:1a:7a:
ea:11:3f:19:e6:76:bb:da:5d:56:b2:2f:d0:6a:73:
5d:d1:21:ec:f5:5f:da:df:42:d1:3b:5a:5f:36:a9:
bf:6a:fd:75:77:ba:1e:9e:ec:e5:60:75:0b:8a:b9:
b1:8c:c3:cb:45:c9:19:59:60:73:b0:2e:b8:48:4e:
d8:bc:fe:95:23:48:46:29:5b:61:6f:e7:b9:f3:76:
70:7d:d3:27:33:8d:47:7d:3f:eb:63:04:ba:33:ee:
7d:80:e2:ce:ed:06:85:1f:93:69:55:40:ad:70:f2:
e9:ca:46:a2:97:b3:88:7c:71:dd:13:7b:4a:b4:40:
94:d5:91:1b:fa:3d:cf:48:24:f3:91:77:fa:41:66:
a7:6e:07:44:6a:31:62:41:3c:44:ee:0c:94:13:2d:
40:52:a5:cd:17:3b:b4:9e:73:ee:60:e3:2f:fb:b4:
c4:db:ee:f3:40:49:0e:16:ac:4f:2a:84:5a:36:fc:
0e:49:f4:1f:d4:5d:e1:61:50:ef:c9:6b:79:38:26:
45:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:FB:98:9D:58:A9:77:68:B5:A6:D2:3D:43:D4:D1:63:AF:A4:E9:1C
X509v3 Authority Key Identifier:
keyid:D2:20:74:0D:D8:DA:30:6F:21:4B:4F:E8:CE:11:85:B5:D5:FF:3B:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0iB0DdjaMG8hS0_ozhGFtdX_O3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/cbd4c0-728b-43cc-82ed-16878abd1a9f/1/jPuYnVipd2i1ptI9Q9TRY6-k6Rw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/cbd4c0-728b-43cc-82ed-16878abd1a9f/1/0iB0DdjaMG8hS0_ozhGFtdX_O3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.127.128.0/19
Signature Algorithm: sha256WithRSAEncryption
7e:25:da:c2:81:e5:36:48:e0:08:5a:eb:88:cb:8b:94:d2:58:
a0:33:53:44:06:47:4c:38:cd:f6:9e:b2:d3:f6:11:7b:30:6b:
96:e1:6f:c2:ec:01:43:bc:7f:f2:c2:3d:a8:33:ec:20:f6:0f:
e5:e5:a8:2e:cb:a9:63:06:4b:59:69:1f:19:24:55:1d:12:7b:
06:45:75:0c:fe:f6:67:56:b3:f7:ff:92:e6:34:55:1f:b8:11:
4a:18:31:6c:ef:35:f5:a3:6a:fa:b5:68:db:1f:6f:4a:50:36:
45:5b:ec:8b:0a:7b:65:48:1e:a2:2f:70:8f:83:78:21:3d:62:
50:70:df:c9:51:56:bc:0e:bf:1d:a6:ec:81:f3:a3:7e:a4:88:
56:1f:a5:3e:42:f1:70:55:19:d4:0c:c9:a2:7f:72:71:67:5f:
af:7b:3c:10:05:9b:5a:36:00:37:fb:22:fb:ca:13:2e:51:9a:
2d:47:bd:64:c9:c6:75:55:81:08:2e:c1:cd:1d:e7:ea:8e:cc:
5b:5c:cf:bd:c7:2b:91:ce:78:a5:83:9c:67:38:88:83:d6:c3:
60:f3:3a:dd:20:c7:b0:6b:5f:04:5f:cd:12:ba:58:bf:3c:6a:
50:b7:e1:dd:d4:f6:c6:63:9d:db:15:ed:5f:41:58:c7:bc:6d:
cd:6a:5f:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:40 2023 by rpki-client on console-fra.rpki-client.org