Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/a6eadd-1cdf-45c4-9832-10e64824bbb7/1/qPByctRkaKni4seqo9qZDMgaFFg.roa
File: qPByctRkaKni4seqo9qZDMgaFFg.roa (raw, json)
Hash identifier: rRtdnlHPoBz9kCQZ7kovXaJ6P1HzhxWgV+P53Te3zls=
Subject key identifier: A8:F0:72:72:D4:64:68:A9:E2:E2:C7:AA:A3:DA:99:0C:C8:1A:14:58
Certificate issuer: /CN=25cf506866d7b85f7ef688abd8306c24969cfece
Certificate serial: 0188303D75B25D462E00FC5BD5F5D8D73346
Authority key identifier: 25:CF:50:68:66:D7:B8:5F:7E:F6:88:AB:D8:30:6C:24:96:9C:FE:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jc9QaGbXuF9-9oir2DBsJJac_s4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/a6eadd-1cdf-45c4-9832-10e64824bbb7/1/qPByctRkaKni4seqo9qZDMgaFFg.roa
Signing time: Thu 18 May 2023 19:01:54 +0000
ROA not before: Thu 18 May 2023 19:01:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202656
IP address blocks: 176.116.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:30:3d:75:b2:5d:46:2e:00:fc:5b:d5:f5:d8:d7:33:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25cf506866d7b85f7ef688abd8306c24969cfece
Validity
Not Before: May 18 19:01:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a8f07272d46468a9e2e2c7aaa3da990cc81a1458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:04:b7:e6:82:0f:04:5f:6b:06:d1:46:a5:3b:
bd:88:f9:81:78:47:d2:73:1d:b2:65:cb:45:de:3e:
51:09:2b:e1:23:a1:3d:e7:63:f8:ef:41:53:b6:04:
f9:30:00:57:0e:47:76:5e:33:fb:df:5b:78:71:48:
db:95:40:e9:f2:f8:67:1d:ab:86:da:6e:c1:ce:c8:
d4:1f:87:47:ff:f1:b0:1e:ee:4d:82:6d:94:47:88:
0a:44:27:b3:8c:bb:8a:1b:a4:e3:b5:0d:df:74:f4:
cc:29:34:e2:0c:21:bf:1a:43:0a:76:b1:b8:b8:b0:
24:50:59:f7:1e:64:ae:af:8d:d1:fd:ec:5a:96:01:
44:f3:ba:f2:5d:e7:b8:a7:23:df:3a:7e:43:b2:ff:
69:40:1d:8d:5b:85:27:27:3d:ca:de:4f:81:8c:2f:
59:a3:34:8a:1f:ee:fe:b9:04:c7:55:46:6e:e9:f0:
dc:47:38:2a:26:6a:d3:4c:5a:47:bb:74:0c:3c:9e:
47:98:83:6d:8d:8c:2a:81:c1:de:cb:d7:0c:15:5f:
3b:16:c4:89:20:10:b9:46:3d:f4:c4:1b:a3:c3:82:
ce:13:7d:41:f5:c3:55:40:a6:21:de:21:17:32:f3:
a1:29:8e:47:88:5c:ed:d9:2b:f9:e6:87:6f:99:16:
c5:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:F0:72:72:D4:64:68:A9:E2:E2:C7:AA:A3:DA:99:0C:C8:1A:14:58
X509v3 Authority Key Identifier:
keyid:25:CF:50:68:66:D7:B8:5F:7E:F6:88:AB:D8:30:6C:24:96:9C:FE:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jc9QaGbXuF9-9oir2DBsJJac_s4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/a6eadd-1cdf-45c4-9832-10e64824bbb7/1/qPByctRkaKni4seqo9qZDMgaFFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/a6eadd-1cdf-45c4-9832-10e64824bbb7/1/Jc9QaGbXuF9-9oir2DBsJJac_s4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.9.0/24
Signature Algorithm: sha256WithRSAEncryption
69:2f:0b:43:85:92:fb:ca:b2:48:72:79:3c:bf:27:96:1d:13:
d5:ee:02:b8:52:a5:32:9b:f5:0d:c1:65:55:98:34:b9:6e:c1:
dc:32:53:f8:af:67:cc:f9:2c:17:48:f3:15:b2:78:99:29:b5:
08:53:8b:99:2d:82:1d:48:91:39:ee:e6:d1:42:6d:69:e3:9b:
cc:40:a0:13:7c:17:2b:b7:7a:a6:48:c6:f6:1d:12:2f:cc:c6:
c5:28:5f:10:27:90:46:01:df:97:04:8d:64:f1:6e:17:5f:b0:
c1:08:20:bb:94:2e:f5:bc:56:7d:55:b1:78:44:77:d7:8c:80:
53:63:d5:5a:be:5e:5c:4e:8a:93:80:40:09:90:3f:bd:48:f7:
32:2c:00:f1:bf:99:b7:f7:9e:c9:92:6f:fd:e2:25:3d:72:59:
2d:51:26:03:94:82:06:e6:0d:e2:c6:a3:18:f7:53:66:b5:09:
09:2b:52:c3:ba:c4:aa:54:2a:31:be:7d:5c:f7:b3:88:b9:25:
9e:bf:a0:92:2b:40:d5:ad:73:08:8c:69:34:d0:e7:d3:e3:f6:
98:56:31:ee:d6:a6:c5:38:2b:7b:e5:c7:e9:4c:b3:07:2b:be:
49:ce:66:0a:00:d0:b8:6a:04:4d:07:2f:b3:11:19:e6:ec:2c:
da:45:50:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:40 2024 by rpki-client on console-fra.rpki-client.org