Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/e2cc90-971f-4957-ae39-9e72a29de9e2/1/TSuDXySeqCfvvdAXTpU2McQk98E.roa
File: TSuDXySeqCfvvdAXTpU2McQk98E.roa (raw, json)
Hash identifier: /zytMHddKxfAqzQSuF/RTVdnLq1s3V6F3v6rBQgc90A=
Subject key identifier: 4D:2B:83:5F:24:9E:A8:27:EF:BD:D0:17:4E:95:36:31:C4:24:F7:C1
Certificate issuer: /CN=28e1f42c53f31d75d16156adba0fae02bf917a44
Certificate serial: 0939EF9F
Authority key identifier: 28:E1:F4:2C:53:F3:1D:75:D1:61:56:AD:BA:0F:AE:02:BF:91:7A:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KOH0LFPzHXXRYVatug-uAr-RekQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/e2cc90-971f-4957-ae39-9e72a29de9e2/1/TSuDXySeqCfvvdAXTpU2McQk98E.roa
Signing time: Sat 01 Jan 2022 04:00:58 +0000
ROA not before: Sat 01 Jan 2022 04:00:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30722
IP address blocks: 212.78.8.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154791839 (0x939ef9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28e1f42c53f31d75d16156adba0fae02bf917a44
Validity
Not Before: Jan 1 04:00:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d2b835f249ea827efbdd0174e953631c424f7c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:22:e8:71:bb:8e:06:08:49:ec:9a:7d:e1:78:
f7:7f:8b:10:32:8c:9a:52:42:1f:02:1a:d8:59:56:
52:0f:a3:3d:73:e2:a4:37:5a:59:d3:49:d9:93:d7:
f5:f7:54:74:42:fe:e2:57:86:bd:96:ff:53:9c:2f:
70:81:22:b0:c9:a6:08:17:c8:d5:b3:a6:f8:b4:4d:
ad:07:e9:2e:e3:88:44:fc:aa:34:65:e9:35:67:6b:
89:65:ca:f0:c0:4b:a1:12:f1:5e:84:b2:bc:87:61:
e5:7e:22:02:f7:77:b6:35:1a:f7:dd:e6:8b:bf:a6:
3e:4f:bd:76:3a:e0:99:a4:b3:f6:53:76:40:c0:51:
e5:cb:67:3a:07:ed:2a:b9:cd:85:95:ef:4f:06:00:
e1:9a:c3:cc:fd:17:01:03:7a:1c:cb:37:c7:d9:a3:
6e:00:f0:20:0a:cc:4e:c2:69:5e:fa:4b:bc:8c:65:
b3:ce:e7:3f:94:ee:80:ec:66:22:c6:35:e2:f7:c4:
8a:43:ca:93:02:47:87:ed:89:f1:98:19:03:63:fe:
99:c0:d4:6a:f4:37:2b:01:7b:59:f7:6c:1d:97:85:
6b:67:72:f3:5c:87:9d:14:5a:2e:68:e3:f0:24:ba:
33:47:f6:26:48:27:55:a3:94:00:0b:ce:5c:3b:fe:
c1:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:2B:83:5F:24:9E:A8:27:EF:BD:D0:17:4E:95:36:31:C4:24:F7:C1
X509v3 Authority Key Identifier:
keyid:28:E1:F4:2C:53:F3:1D:75:D1:61:56:AD:BA:0F:AE:02:BF:91:7A:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KOH0LFPzHXXRYVatug-uAr-RekQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/e2cc90-971f-4957-ae39-9e72a29de9e2/1/TSuDXySeqCfvvdAXTpU2McQk98E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/e2cc90-971f-4957-ae39-9e72a29de9e2/1/KOH0LFPzHXXRYVatug-uAr-RekQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.78.8.0/24
Signature Algorithm: sha256WithRSAEncryption
22:53:0b:65:c0:fc:1e:0d:31:bd:8c:46:4c:57:bb:82:b4:b8:
26:a4:88:9a:f8:b0:58:63:a5:31:de:99:41:61:e1:c7:4c:2f:
da:80:e1:20:ed:77:16:80:b9:3c:c3:66:cc:70:aa:f7:a1:ad:
9b:5b:af:82:c2:4c:53:09:d6:e9:6e:a2:4b:9f:25:0e:56:c8:
d5:3d:79:df:ff:9e:be:33:f1:d6:4f:6b:56:34:ae:f8:56:69:
58:a9:ff:a6:52:05:38:6a:35:bb:92:76:0f:48:73:75:ce:16:
c9:b4:24:94:eb:5a:32:f9:0f:3c:53:38:c5:33:62:fb:15:4f:
d6:b1:42:38:1f:eb:a8:3e:5f:42:4f:06:9a:fa:4c:db:de:91:
11:3a:42:1d:38:bc:71:7d:c1:11:34:0f:3f:8a:ec:ac:46:75:
82:eb:f9:2a:d5:bf:30:d6:6b:8b:3c:42:a9:a6:f1:e3:0c:b1:
6c:7d:d8:68:5a:ed:ec:1a:4b:d0:5b:e3:a2:13:e8:9a:be:1f:
cd:3d:b1:76:09:db:f6:61:3e:b0:ab:d1:96:f4:48:24:a8:18:
95:d1:d0:da:24:e8:fb:a1:76:15:22:33:dd:6b:40:ed:d5:21:
38:b8:89:db:38:df:1f:c3:e5:25:08:29:cb:94:f5:ed:65:2d:
5a:d4:0c:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:31 2024 by rpki-client on console-fra.rpki-client.org