Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/a44fdd-0dbb-4857-b102-29973b4e342f/1/AqMh69p_HlqFPDbowUGdRuix1Ak.roa
File: AqMh69p_HlqFPDbowUGdRuix1Ak.roa (raw, json)
Hash identifier: Dd4ON/B/IJabhsIB/eILiyBZm0N5p4GJUn/XWvHthAI=
Subject key identifier: 02:A3:21:EB:DA:7F:1E:5A:85:3C:36:E8:C1:41:9D:46:E8:B1:D4:09
Certificate issuer: /CN=e7c84a48be16fc0deb4fde11869237e64954874d
Certificate serial: 01983098
Authority key identifier: E7:C8:4A:48:BE:16:FC:0D:EB:4F:DE:11:86:92:37:E6:49:54:87:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/58hKSL4W_A3rT94RhpI35klUh00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/a44fdd-0dbb-4857-b102-29973b4e342f/1/AqMh69p_HlqFPDbowUGdRuix1Ak.roa
Signing time: Sat 01 Jan 2022 09:02:23 +0000
ROA not before: Sat 01 Jan 2022 09:02:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 84.54.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26751128 (0x1983098)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7c84a48be16fc0deb4fde11869237e64954874d
Validity
Not Before: Jan 1 09:02:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02a321ebda7f1e5a853c36e8c1419d46e8b1d409
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:de:34:08:f3:49:cc:cf:a4:e8:32:0b:03:00:
e8:9b:0c:13:a8:85:c9:91:32:d6:d3:56:fe:93:0e:
44:c2:f0:7c:eb:0d:fe:64:b8:f9:e3:ae:be:df:38:
0b:06:c9:7d:0e:6f:6c:0a:da:20:c4:29:b2:33:67:
43:d0:0d:39:23:e9:0e:66:99:ed:87:27:97:d2:da:
4a:2e:bc:b6:29:58:9d:f4:85:8e:45:bf:d5:e1:33:
63:e4:3c:dc:01:f5:eb:93:be:90:30:4d:e1:06:a2:
cb:03:4f:44:1b:83:51:87:23:aa:72:af:1e:f1:54:
61:e4:57:51:ea:3f:7e:df:3e:21:0d:66:67:1a:00:
d9:5a:f7:56:c7:68:8c:2e:82:8b:6a:b4:5e:4d:f0:
a6:0a:54:f1:a3:77:53:9e:c9:f4:8e:d8:b6:6d:57:
8d:21:18:c2:c0:87:5a:47:11:a1:c4:aa:e9:64:15:
9f:ed:79:a0:61:a2:d2:3a:c3:03:2d:e4:38:71:ec:
42:a1:c8:b9:00:08:c1:c2:84:16:51:04:09:b8:5a:
da:d8:91:a8:08:62:aa:65:10:d8:17:33:04:74:51:
34:3a:7a:57:ab:e0:1c:a3:dc:0b:e6:8a:93:9d:ca:
bb:90:f2:48:1f:e3:27:90:22:da:a9:d6:57:3a:57:
15:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:A3:21:EB:DA:7F:1E:5A:85:3C:36:E8:C1:41:9D:46:E8:B1:D4:09
X509v3 Authority Key Identifier:
keyid:E7:C8:4A:48:BE:16:FC:0D:EB:4F:DE:11:86:92:37:E6:49:54:87:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/58hKSL4W_A3rT94RhpI35klUh00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/a44fdd-0dbb-4857-b102-29973b4e342f/1/AqMh69p_HlqFPDbowUGdRuix1Ak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/a44fdd-0dbb-4857-b102-29973b4e342f/1/58hKSL4W_A3rT94RhpI35klUh00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.54.33.0/24
Signature Algorithm: sha256WithRSAEncryption
39:6b:30:2c:a4:11:2a:22:b2:65:a6:22:fb:c2:53:07:f5:09:
c4:72:b1:56:c5:42:7a:8d:d8:85:99:0b:f5:8c:5a:30:f0:29:
d6:b6:4b:01:1c:3f:47:6d:73:62:58:33:5e:e8:17:e4:49:a0:
a4:84:ad:80:06:1c:dc:2a:88:1b:9e:98:e2:af:5c:c5:39:85:
79:c9:61:05:53:01:ce:73:b2:5c:e8:bd:ea:25:0f:93:a0:49:
a2:10:ae:8e:4b:4d:b0:8c:be:bb:cd:50:43:b0:b9:0f:d6:89:
95:10:f1:4c:a6:0a:32:c1:c2:dd:01:84:92:97:4f:5c:3c:e4:
17:b6:45:95:03:cb:93:86:ad:0b:a0:02:77:cc:52:b7:a1:38:
dd:71:fa:c1:8b:8e:da:ef:11:36:8f:7f:10:01:3a:d9:fd:5e:
de:01:ee:a6:0c:95:16:dd:ff:b2:66:36:62:ed:aa:88:b4:3b:
47:c6:13:23:cb:2c:cf:a2:e8:df:c4:11:03:52:92:eb:c9:7e:
b8:b0:44:0a:98:98:8e:de:e5:68:a2:46:db:a6:6b:f5:09:23:
c7:a1:09:5d:2b:fb:33:b1:7c:e8:6c:4b:2a:24:b1:32:d4:38:
5e:c2:93:1d:a1:80:87:23:c3:42:8c:b7:63:98:3f:04:b2:b4:
3c:18:9b:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:56 2023 by rpki-client on console-fra.rpki-client.org