Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/aefe47-30d7-4440-944a-5eb36b16c938/1/Dh-GJThnZBUmBEAU_C7QHPIkUns.roa
File: Dh-GJThnZBUmBEAU_C7QHPIkUns.roa (raw, json)
Hash identifier: N5TB5SHqn6PnRiHPdKmPvNKMvp9cu2Z9wsKZM+sBU0k=
Subject key identifier: 0E:1F:86:25:38:67:64:15:26:04:40:14:FC:2E:D0:1C:F2:24:52:7B
Certificate issuer: /CN=3f0e49eb450708cf64740baa8ce2d1987d22c915
Certificate serial: 018AB1CB76F0A3C32E4E5A1837E953970EEF
Authority key identifier: 3F:0E:49:EB:45:07:08:CF:64:74:0B:AA:8C:E2:D1:98:7D:22:C9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pw5J60UHCM9kdAuqjOLRmH0iyRU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/aefe47-30d7-4440-944a-5eb36b16c938/1/Dh-GJThnZBUmBEAU_C7QHPIkUns.roa
Signing time: Wed 20 Sep 2023 08:53:36 +0000
ROA not before: Wed 20 Sep 2023 08:53:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 185.53.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b1:cb:76:f0:a3:c3:2e:4e:5a:18:37:e9:53:97:0e:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f0e49eb450708cf64740baa8ce2d1987d22c915
Validity
Not Before: Sep 20 08:53:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e1f86253867641526044014fc2ed01cf224527b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:f4:01:c3:ad:18:b0:cd:41:54:86:38:d2:48:
57:a6:3a:a0:69:7f:92:20:06:5f:e0:d2:78:59:15:
1a:62:2f:5f:70:9f:55:2a:b8:81:16:e4:53:04:68:
d5:40:25:26:37:7f:6b:f0:c6:f9:e8:94:52:d2:4a:
81:ea:de:c7:fc:ea:47:04:34:c8:c5:6e:41:3a:23:
c1:53:14:60:3b:18:25:4c:16:c9:bb:b3:58:a4:86:
3f:39:78:cd:b3:91:46:f3:c3:57:f8:2b:b2:15:04:
38:2d:dd:6f:7c:1f:1a:d6:2b:b2:bd:f6:c1:1c:4a:
ca:94:aa:69:86:03:06:35:7b:05:ab:7c:16:a6:78:
74:ef:32:16:4c:bb:6d:3c:19:46:dc:f0:3b:99:36:
95:86:8e:27:83:86:90:36:64:de:40:a7:f9:21:35:
2b:73:20:7a:81:17:52:ba:dc:5f:48:37:e0:51:62:
a9:cc:8d:d5:a9:a0:2f:f9:39:7a:00:fd:55:36:c5:
05:ca:76:04:c6:ac:bb:a7:83:f3:c5:e0:4c:08:c4:
a8:66:55:3a:dc:17:00:1b:e3:fe:1c:eb:fe:99:f0:
9f:e7:1b:11:52:e0:9a:9d:7f:b2:89:a9:fe:06:0a:
73:66:c6:27:bb:a4:bf:5b:8e:51:94:5c:e4:79:18:
4d:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:1F:86:25:38:67:64:15:26:04:40:14:FC:2E:D0:1C:F2:24:52:7B
X509v3 Authority Key Identifier:
keyid:3F:0E:49:EB:45:07:08:CF:64:74:0B:AA:8C:E2:D1:98:7D:22:C9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pw5J60UHCM9kdAuqjOLRmH0iyRU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/aefe47-30d7-4440-944a-5eb36b16c938/1/Dh-GJThnZBUmBEAU_C7QHPIkUns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/aefe47-30d7-4440-944a-5eb36b16c938/1/Pw5J60UHCM9kdAuqjOLRmH0iyRU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.53.33.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:26:bb:80:68:e1:18:04:81:2b:a8:ff:71:c2:56:ae:80:08:
cb:d8:05:d0:ba:12:d5:c6:75:80:2b:03:92:9b:9b:7e:50:65:
db:c5:3f:1d:8c:24:43:5a:71:26:f5:8b:1f:38:b1:bb:da:16:
83:c1:1c:f5:f0:58:c0:d2:91:9b:7e:be:4f:be:8f:45:5a:07:
cb:8a:3d:d0:3c:d5:e5:99:48:18:0d:a0:24:c2:2b:05:73:88:
b0:69:3c:30:a3:4c:92:28:d3:14:93:ef:97:17:8b:87:69:f6:
e0:2c:ab:c8:f9:b2:e4:76:3e:50:47:08:fd:54:91:3c:26:4a:
56:6e:16:fa:76:22:e2:d0:f4:1f:9e:d8:bc:4a:9e:63:f8:cb:
cf:4a:28:24:e1:46:b8:30:a1:4b:84:83:5c:a3:79:78:9a:d4:
8c:fb:f6:d9:9d:9d:fc:51:03:22:8f:e6:3e:cb:e5:30:b3:8c:
e3:e5:3d:1b:a7:5a:7f:34:fe:a8:ff:73:6e:20:76:04:92:95:
9a:18:9f:4f:08:0f:7e:13:11:b1:0c:cd:a9:0f:7a:a6:d0:05:
2c:f4:ca:d9:fa:98:37:43:c3:63:cc:7d:98:ee:04:19:56:d2:
dd:dc:ba:ac:03:23:ee:19:77:86:70:ba:c8:61:bf:b2:d5:3f:
79:cc:c8:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 1 14:16:48 2023 by rpki-client on console-fra.rpki-client.org