Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/986efb-a10c-491c-816e-663d87f4351d/1/HQZRtwXZOMw4oBP7Kfp3bIxZFow.roa
File: HQZRtwXZOMw4oBP7Kfp3bIxZFow.roa (raw, json)
Hash identifier: pe1q2jqWaOLyytMQUoVTd1frrlwN29/wRE7hR5j67ms=
Subject key identifier: 1D:06:51:B7:05:D9:38:CC:38:A0:13:FB:29:FA:77:6C:8C:59:16:8C
Certificate issuer: /CN=68c12ffa627f0d1b834c1bc91e476dce5a955dbc
Certificate serial: 01821CFE50D7B233C7C6F79B4DADA9E45B0E
Authority key identifier: 68:C1:2F:FA:62:7F:0D:1B:83:4C:1B:C9:1E:47:6D:CE:5A:95:5D:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMEv-mJ_DRuDTBvJHkdtzlqVXbw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/986efb-a10c-491c-816e-663d87f4351d/1/HQZRtwXZOMw4oBP7Kfp3bIxZFow.roa
Signing time: Wed 20 Jul 2022 19:03:25 +0000
ROA not before: Wed 20 Jul 2022 19:03:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 996
IP address blocks: 94.103.184.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1c:fe:50:d7:b2:33:c7:c6:f7:9b:4d:ad:a9:e4:5b:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c12ffa627f0d1b834c1bc91e476dce5a955dbc
Validity
Not Before: Jul 20 19:03:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d0651b705d938cc38a013fb29fa776c8c59168c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:49:db:a6:2f:b6:30:6e:67:eb:da:11:72:46:
71:8b:01:e8:6a:9c:dd:21:fb:ee:57:f3:f8:83:18:
31:2d:f2:ca:df:f1:bd:24:e8:66:7a:c9:37:14:a9:
a4:bf:2a:be:51:ec:46:22:1f:2b:cd:90:6d:97:97:
d3:ad:1d:fe:5f:e7:a2:bf:bf:6e:79:62:58:02:6a:
c4:6a:aa:9e:76:8d:14:be:33:60:ba:1f:52:32:22:
c3:4d:08:08:5b:68:e9:cb:a1:f3:cd:40:2f:22:14:
b4:f3:d4:4c:c2:38:54:b5:be:7a:a8:e6:79:ec:5d:
d4:0f:36:70:55:49:4e:09:1d:1d:dc:3c:70:6a:76:
f7:72:58:c6:82:2d:e3:5a:71:fc:8c:3e:fe:e3:da:
84:dd:51:4a:de:ba:96:36:45:7e:46:fd:96:90:56:
64:cb:c3:a1:0d:2f:e7:4c:75:90:b4:44:6c:c8:16:
a3:36:87:c6:5c:86:40:16:d1:87:3c:87:6d:98:09:
7f:cf:ed:15:f8:2b:16:04:ba:e2:62:86:bc:05:2e:
3f:2d:37:3d:3c:1b:4f:d5:d5:a7:b7:5f:68:32:33:
b9:81:6d:4d:e4:d0:7e:1e:a3:4c:e6:40:d7:90:4b:
5f:09:f3:a2:39:7e:69:a3:86:ac:6b:9b:a1:f4:b4:
f1:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:06:51:B7:05:D9:38:CC:38:A0:13:FB:29:FA:77:6C:8C:59:16:8C
X509v3 Authority Key Identifier:
keyid:68:C1:2F:FA:62:7F:0D:1B:83:4C:1B:C9:1E:47:6D:CE:5A:95:5D:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMEv-mJ_DRuDTBvJHkdtzlqVXbw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/986efb-a10c-491c-816e-663d87f4351d/1/HQZRtwXZOMw4oBP7Kfp3bIxZFow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/986efb-a10c-491c-816e-663d87f4351d/1/aMEv-mJ_DRuDTBvJHkdtzlqVXbw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.103.184.0/24
Signature Algorithm: sha256WithRSAEncryption
81:0d:ab:8f:a4:bf:5c:5a:f1:46:f0:49:b3:37:47:13:da:88:
a9:25:7d:0a:b1:7d:f1:3c:fa:5e:ba:c7:b3:21:61:85:64:3c:
af:02:a4:b7:ae:ef:87:64:e4:64:30:66:9a:91:ec:d7:5f:45:
5e:8c:ad:82:ac:f3:f1:48:eb:38:98:7c:ab:37:cd:60:82:dc:
6e:a2:c9:c4:da:12:58:d5:fa:3c:c4:6c:95:ed:b7:02:33:2e:
d4:c4:57:40:21:f2:ff:0f:7c:b5:55:c1:20:50:29:78:99:e6:
06:93:04:66:87:da:5a:10:58:86:5c:f6:7c:7d:5e:c2:f6:6b:
cc:bb:d7:97:e6:83:26:33:72:0d:0e:cc:05:d3:38:49:e9:d9:
a9:25:01:a9:c6:f0:c3:94:1d:e3:24:0a:10:a7:6c:18:13:61:
6c:14:02:51:39:41:7f:70:54:ea:9f:71:41:2f:a2:0e:0f:73:
37:e4:ff:60:07:76:4a:fd:e8:2a:7f:34:f1:6b:69:04:84:92:
28:81:63:57:67:86:ee:1f:6f:8e:8a:ec:9b:91:03:b6:76:b0:
bb:f6:24:ac:8b:6e:6d:80:37:45:f5:78:e0:cd:76:c2:3b:d3:
aa:39:76:e6:ea:92:ed:ce:fe:dc:7a:e8:8a:2f:48:6e:43:b8:
b0:d4:c7:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:47 2024 by rpki-client on console-ams.rpki-client.org