Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/a4ae7b-6963-477b-a47f-e6abfea83043/1/tdjAN8Efb_F0MLFlWh3gAJup76Y.roa
File: tdjAN8Efb_F0MLFlWh3gAJup76Y.roa (raw, json)
Hash identifier: GVELldxw91IzLrY0VNbBBpMs2QOi4WsfpFFldvhzBsc=
Subject key identifier: B5:D8:C0:37:C1:1F:6F:F1:74:30:B1:65:5A:1D:E0:00:9B:A9:EF:A6
Certificate issuer: /CN=829bfa079e9ff9cf102631ea9a2c253576dc2b79
Certificate serial: 018570704C60766767AB159B79EEDB9733B9
Authority key identifier: 82:9B:FA:07:9E:9F:F9:CF:10:26:31:EA:9A:2C:25:35:76:DC:2B:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gpv6B56f-c8QJjHqmiwlNXbcK3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/a4ae7b-6963-477b-a47f-e6abfea83043/1/tdjAN8Efb_F0MLFlWh3gAJup76Y.roa
Signing time: Mon 02 Jan 2023 03:04:45 +0000
ROA not before: Mon 02 Jan 2023 03:04:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57752
IP address blocks: 176.118.172.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:4c:60:76:67:67:ab:15:9b:79:ee:db:97:33:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=829bfa079e9ff9cf102631ea9a2c253576dc2b79
Validity
Not Before: Jan 2 03:04:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b5d8c037c11f6ff17430b1655a1de0009ba9efa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:33:bc:f7:c0:46:7b:2d:fe:ed:ca:fe:a8:99:
7a:7f:47:5c:d2:c4:c0:b0:82:ff:3c:e0:bc:ea:21:
ba:ef:c3:46:63:a6:c9:4a:66:7f:29:c5:9c:8b:00:
12:e5:a6:07:d6:ec:68:ba:81:41:1d:12:6e:9e:a8:
35:db:46:4e:3a:50:28:cf:d8:0e:ce:38:9e:2a:1b:
dc:69:31:15:c0:d4:ed:24:1b:eb:67:20:08:4b:50:
34:ac:63:d6:2b:db:ab:60:e1:29:a0:f9:11:05:dc:
78:74:89:51:cf:ce:80:03:6d:21:ab:01:4d:01:51:
a6:01:07:bd:9b:fd:5a:d4:2a:9c:54:5d:fd:5b:e1:
0b:aa:2a:26:00:03:63:5a:fe:bc:35:fc:4e:4c:3f:
d4:59:90:c4:1d:d2:6e:68:0c:a0:da:a0:49:7c:d5:
5b:39:c4:0f:f1:1c:c6:8b:6b:6a:be:33:f5:0a:66:
97:4c:d1:a1:3f:c2:28:fa:b1:05:56:1c:87:ce:6c:
35:48:79:2c:3b:78:9b:52:13:12:c9:de:1b:55:59:
6b:d8:47:9d:c0:f6:d4:ec:1c:20:e1:aa:8f:dc:70:
be:0c:74:ea:0c:2f:51:22:9e:89:23:97:8e:e7:57:
85:d9:86:a6:be:90:52:67:9e:74:57:31:9f:29:d3:
c3:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:D8:C0:37:C1:1F:6F:F1:74:30:B1:65:5A:1D:E0:00:9B:A9:EF:A6
X509v3 Authority Key Identifier:
keyid:82:9B:FA:07:9E:9F:F9:CF:10:26:31:EA:9A:2C:25:35:76:DC:2B:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gpv6B56f-c8QJjHqmiwlNXbcK3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/a4ae7b-6963-477b-a47f-e6abfea83043/1/tdjAN8Efb_F0MLFlWh3gAJup76Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/a4ae7b-6963-477b-a47f-e6abfea83043/1/gpv6B56f-c8QJjHqmiwlNXbcK3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.118.172.0/22
Signature Algorithm: sha256WithRSAEncryption
82:a1:99:26:24:a3:a3:93:2b:bf:a0:b3:aa:bb:f6:cc:16:b4:
18:b1:09:d5:ac:12:14:f6:87:d0:e0:b1:e2:fe:89:2c:7b:cc:
6b:ae:fb:bf:e3:a2:a2:bc:3c:ba:93:45:50:12:f9:72:7f:a7:
2b:de:cf:20:e5:62:58:bd:4b:30:86:ef:9b:e3:6f:39:2f:43:
24:43:eb:c1:3d:e1:80:61:57:e9:5f:44:97:54:5b:f1:2b:7f:
60:b6:f9:69:25:f8:1d:19:4b:c8:cd:e3:dc:ed:8f:e5:1b:8c:
e7:e1:5d:b1:1e:57:36:1f:ba:d7:5f:b0:0e:5c:56:64:68:4b:
c7:8f:b8:57:d2:56:fd:dd:3b:96:04:9a:c2:cf:4a:73:da:ad:
bf:95:98:9e:32:33:45:91:f4:59:ed:fe:77:e1:8c:01:d6:3c:
f3:fb:c1:0a:4f:43:c5:b8:64:3c:e5:55:0b:fa:8b:6f:31:1d:
97:4d:15:e9:f6:78:81:33:e4:9e:6a:c5:a2:93:1a:ed:5f:b5:
4a:17:80:fb:37:73:2f:b8:57:f5:4b:32:ea:08:80:f3:e4:8c:
76:0b:e7:4d:32:cf:ad:e0:fe:e9:c1:6e:31:b7:c3:3d:aa:46:
5b:b4:82:ce:d8:40:e4:c6:94:84:67:a5:43:a4:bb:ff:76:43:
0e:15:8d:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:39 2024 by rpki-client on console-fra.rpki-client.org