Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/353bfa-abdb-444a-8154-4fc54b0baa78/1/_hxv-UUscIxpQewYSbkOzKaLatw.roa
File: _hxv-UUscIxpQewYSbkOzKaLatw.roa (raw, json)
Hash identifier: bEpOFRgO6jiLumrvvTx/WWMNkZAUFSnz7nu69q1tnc4=
Subject key identifier: FE:1C:6F:F9:45:2C:70:8C:69:41:EC:18:49:B9:0E:CC:A6:8B:6A:DC
Certificate issuer: /CN=5ef104fc4b0b5c08272e3ae783b8cd777ba2aa90
Certificate serial: 01856EC20D6177441E196DDC7472F1D43D76
Authority key identifier: 5E:F1:04:FC:4B:0B:5C:08:27:2E:3A:E7:83:B8:CD:77:7B:A2:AA:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XvEE_EsLXAgnLjrng7jNd3uiqpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/353bfa-abdb-444a-8154-4fc54b0baa78/1/_hxv-UUscIxpQewYSbkOzKaLatw.roa
Signing time: Sun 01 Jan 2023 19:14:49 +0000
ROA not before: Sun 01 Jan 2023 19:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208046
IP address blocks: 130.255.174.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:c2:0d:61:77:44:1e:19:6d:dc:74:72:f1:d4:3d:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ef104fc4b0b5c08272e3ae783b8cd777ba2aa90
Validity
Not Before: Jan 1 19:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe1c6ff9452c708c6941ec1849b90ecca68b6adc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:9a:87:a9:db:13:cd:8b:a0:be:94:8e:b5:eb:
98:69:e4:0b:93:38:4c:ec:76:8f:fa:7b:60:3b:87:
98:3a:ba:76:72:6f:b0:c0:8c:81:ee:03:7a:79:69:
47:20:1a:6a:8d:c2:1c:99:b4:38:1e:91:e1:df:53:
4b:e5:03:23:84:66:17:a4:e5:0e:dc:a0:d7:c3:4f:
f9:b7:9b:01:13:45:f2:cf:1c:9f:56:a5:58:d5:3d:
73:63:5d:fd:4d:58:69:5d:8b:df:65:94:f8:50:d1:
14:1a:0d:1a:9c:01:ef:9a:50:4a:2b:4e:74:bf:fb:
e8:01:41:8d:99:4a:5d:e1:ce:30:1d:93:03:34:aa:
d6:df:18:b4:9b:77:75:42:59:81:59:9e:71:79:c4:
69:c4:73:0e:54:4f:43:07:4e:c3:ab:86:47:2b:5e:
76:e9:6c:14:0f:dc:ac:64:17:d3:be:86:5d:e7:9f:
3a:ac:0b:5b:e1:87:59:5e:7a:b9:7b:16:d5:41:6e:
2b:d9:bb:ec:4f:46:26:e8:72:91:dc:50:c1:e7:8b:
62:1a:1a:b8:bd:57:00:f7:f6:dc:24:90:ba:f3:e7:
2b:ca:7e:c9:6f:3d:11:1e:16:ae:90:b5:d0:3f:e3:
f0:81:0b:e4:1f:62:86:81:47:c6:52:18:27:6e:49:
7d:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:1C:6F:F9:45:2C:70:8C:69:41:EC:18:49:B9:0E:CC:A6:8B:6A:DC
X509v3 Authority Key Identifier:
keyid:5E:F1:04:FC:4B:0B:5C:08:27:2E:3A:E7:83:B8:CD:77:7B:A2:AA:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XvEE_EsLXAgnLjrng7jNd3uiqpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/353bfa-abdb-444a-8154-4fc54b0baa78/1/_hxv-UUscIxpQewYSbkOzKaLatw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/353bfa-abdb-444a-8154-4fc54b0baa78/1/XvEE_EsLXAgnLjrng7jNd3uiqpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.255.174.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:63:a1:dd:bb:d9:a1:43:02:9d:52:c4:5e:5d:50:57:fd:45:
d2:f0:96:0e:3a:01:49:a1:4c:7b:42:40:b3:90:5d:7e:02:60:
bf:e3:5c:3e:36:fc:c6:0d:44:50:60:fb:02:81:e7:d7:f5:70:
26:27:65:c3:5b:5f:ff:a4:f8:b7:f3:bc:09:78:17:72:35:a7:
3d:2f:ce:23:aa:83:c2:cd:7c:1b:63:11:08:94:76:89:bb:e2:
95:53:14:5a:e3:10:c9:94:08:90:61:60:7b:95:35:90:a4:07:
dd:25:8e:9c:32:ca:08:e4:d6:02:74:a0:cf:34:0e:10:5d:cf:
76:51:70:53:84:e8:b7:4d:da:a3:a4:db:7b:8e:29:ee:85:76:
f1:28:a1:27:74:39:30:b6:64:15:23:80:37:ca:fe:5a:a5:17:
b2:59:0d:21:6f:15:83:62:b3:b6:19:f3:43:70:b9:1a:aa:e8:
52:dc:cf:86:ea:a9:74:26:a7:06:a6:f5:de:0e:03:ef:12:a4:
7b:15:91:80:f3:de:e4:56:45:3d:79:13:7b:8b:20:bf:db:75:
32:85:54:4a:be:15:78:59:99:37:b7:21:aa:b6:f9:56:0b:19:
4b:bc:9c:0a:70:b8:cc:0f:7b:c2:41:23:9d:5c:5b:98:50:4d:
c4:6c:95:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:04 2024 by rpki-client on console-fra.rpki-client.org