Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/353bfa-abdb-444a-8154-4fc54b0baa78/1/qQd3Sdax8tUdzK1aUylAz2G4XSU.roa
File: qQd3Sdax8tUdzK1aUylAz2G4XSU.roa (raw, json)
Hash identifier: BnB3xpwjHvzfLgyCebAswRfXBRO04uA+L4PS23LStwo=
Subject key identifier: A9:07:77:49:D6:B1:F2:D5:1D:CC:AD:5A:53:29:40:CF:61:B8:5D:25
Certificate issuer: /CN=5ef104fc4b0b5c08272e3ae783b8cd777ba2aa90
Certificate serial: 0184A415B2617C97A4B214F3F704E8DB317A
Authority key identifier: 5E:F1:04:FC:4B:0B:5C:08:27:2E:3A:E7:83:B8:CD:77:7B:A2:AA:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XvEE_EsLXAgnLjrng7jNd3uiqpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/353bfa-abdb-444a-8154-4fc54b0baa78/1/qQd3Sdax8tUdzK1aUylAz2G4XSU.roa
Signing time: Wed 23 Nov 2022 10:43:16 +0000
ROA not before: Wed 23 Nov 2022 10:43:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 130.255.174.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a4:15:b2:61:7c:97:a4:b2:14:f3:f7:04:e8:db:31:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ef104fc4b0b5c08272e3ae783b8cd777ba2aa90
Validity
Not Before: Nov 23 10:43:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a9077749d6b1f2d51dccad5a532940cf61b85d25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3f:3c:17:a2:21:be:90:00:0d:e1:b3:88:2b:
56:06:64:58:aa:34:67:28:e1:68:4b:94:bd:d1:6a:
2e:f5:a7:ac:40:ae:a9:e9:01:84:01:1b:0b:be:05:
75:5e:e4:24:ad:8f:db:d5:92:a8:3f:0b:11:1c:b1:
88:54:a2:6c:30:3b:8d:87:47:f5:04:bf:62:9b:67:
8f:90:f2:84:61:3c:ab:69:c8:7c:aa:91:a4:17:a6:
9a:c1:90:f0:c8:c5:fe:ca:e9:dc:1f:9b:b5:10:f5:
0b:b4:de:29:aa:f7:b3:05:6c:d0:fc:fb:b2:66:02:
d5:31:fa:27:62:9b:dd:87:56:a0:48:dd:5e:ac:ee:
cb:9a:0a:23:17:2c:f7:3b:4c:06:4b:49:0f:bc:82:
49:1c:be:eb:30:fd:b7:43:f2:7a:e8:88:39:65:26:
17:56:39:be:7c:2c:cb:67:05:6d:25:15:bf:34:82:
65:33:40:01:f7:3a:7c:0a:d4:cf:72:d0:6a:82:15:
ab:da:85:42:0c:e5:42:ec:4b:97:f2:8f:cf:e0:d6:
ef:90:a6:76:c5:6a:55:fc:80:c1:49:a4:98:29:12:
58:3d:75:28:47:69:1a:8a:a8:80:a3:83:f2:71:76:
1e:c5:d5:0d:c9:53:a1:88:4d:92:09:51:0d:2f:ce:
95:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:07:77:49:D6:B1:F2:D5:1D:CC:AD:5A:53:29:40:CF:61:B8:5D:25
X509v3 Authority Key Identifier:
keyid:5E:F1:04:FC:4B:0B:5C:08:27:2E:3A:E7:83:B8:CD:77:7B:A2:AA:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XvEE_EsLXAgnLjrng7jNd3uiqpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/353bfa-abdb-444a-8154-4fc54b0baa78/1/qQd3Sdax8tUdzK1aUylAz2G4XSU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/353bfa-abdb-444a-8154-4fc54b0baa78/1/XvEE_EsLXAgnLjrng7jNd3uiqpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.255.174.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:53:14:18:17:fd:1f:73:38:0f:a6:af:6d:47:97:d7:75:62:
b9:6a:28:3e:39:6d:49:0b:6b:2f:91:ef:43:33:fa:17:be:40:
0d:57:73:31:b5:89:fb:86:c4:b7:4f:af:0e:3f:7b:0a:d5:f0:
47:25:bc:de:95:70:cc:d6:d9:82:c3:61:50:bc:fb:64:47:e2:
f7:d5:f4:fe:24:24:c3:02:f7:38:f8:60:76:92:e1:09:66:be:
30:cd:6d:4e:38:4e:7f:29:d6:a5:80:bc:17:39:d2:ee:0f:23:
22:8c:8f:61:68:93:a9:42:a7:4b:2d:28:17:36:b8:0c:f8:9d:
fc:0c:08:d2:20:d3:ea:e3:e9:44:2b:26:81:d4:f4:ab:39:e7:
7e:aa:db:07:01:87:1b:65:1f:56:3b:76:84:02:cf:38:51:73:
6e:e7:88:34:d4:74:f2:d7:3a:01:8b:84:29:9b:6a:ee:d5:2e:
d9:7c:27:37:4e:0b:47:98:cf:ae:09:35:cc:34:a4:02:20:5f:
b7:64:b2:ab:a1:62:9e:ba:85:03:0e:d6:d4:39:59:91:32:b5:
12:e0:09:0f:8b:3f:3d:74:39:4d:70:82:6c:32:15:62:92:e4:
f5:e6:92:09:bc:98:1d:4e:c2:a3:d6:a7:bd:eb:14:b8:b2:a5:
78:df:94:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:04 2024 by rpki-client on console-fra.rpki-client.org