Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/cd7bdf-2f6c-4402-95d7-c3d18b275465/1/_2B6bdnQCdNg1wChHmUCrmGtgos.roa
File: _2B6bdnQCdNg1wChHmUCrmGtgos.roa (raw, json)
Hash identifier: LSMwrOrWl5sAKysLt1dE+Jzt28KW38f0kQau0OU8U+Y=
Subject key identifier: FF:60:7A:6D:D9:D0:09:D3:60:D7:00:A1:1E:65:02:AE:61:AD:82:8B
Certificate issuer: /CN=9a7582c014f26d23b6ef9c2e82f48570c0b67868
Certificate serial: 01869DEAE6EE9FEE9A206B734D3210CD76B8
Authority key identifier: 9A:75:82:C0:14:F2:6D:23:B6:EF:9C:2E:82:F4:85:70:C0:B6:78:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mnWCwBTybSO275wugvSFcMC2eGg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/cd7bdf-2f6c-4402-95d7-c3d18b275465/1/_2B6bdnQCdNg1wChHmUCrmGtgos.roa
Signing time: Wed 01 Mar 2023 16:04:22 +0000
ROA not before: Wed 01 Mar 2023 16:04:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8100
IP address blocks: 193.3.171.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9d:ea:e6:ee:9f:ee:9a:20:6b:73:4d:32:10:cd:76:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a7582c014f26d23b6ef9c2e82f48570c0b67868
Validity
Not Before: Mar 1 16:04:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff607a6dd9d009d360d700a11e6502ae61ad828b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:89:74:e2:5d:c8:0c:c0:16:eb:f8:76:fc:0e:
5c:d5:88:17:74:1a:21:73:da:cf:ef:3c:82:0f:90:
db:95:8f:39:ee:4c:fd:79:a6:58:3f:31:63:e8:b7:
d5:ad:a1:90:eb:ee:e6:92:fc:68:56:1e:11:64:7f:
cd:13:75:b5:a6:9f:95:c1:09:d8:bd:d6:df:2c:c2:
b8:c7:7a:0e:d0:36:8d:69:47:c4:4a:20:f6:6f:38:
cd:e3:e2:5b:9a:5b:d4:0a:97:6a:16:54:7c:33:a2:
fd:cd:b5:cb:99:47:7d:af:8a:1e:ae:aa:9d:a7:83:
57:62:96:89:b6:98:46:6e:6c:1a:fd:da:4d:95:90:
a0:ac:6e:53:f9:3c:4d:89:8c:c0:3e:fe:a4:47:db:
f1:8d:b5:41:f2:4a:e0:ae:1a:6b:83:2d:66:91:be:
2e:aa:c7:bf:47:75:4b:ae:e1:3e:03:4d:04:7b:05:
53:5a:28:e6:2d:7e:33:fb:55:61:de:af:66:cc:0f:
c3:d3:2a:6f:f3:b6:10:93:b1:94:1c:7b:f1:5d:e7:
a1:5f:20:60:1b:23:43:69:96:2b:81:e8:12:3e:a0:
2c:8a:13:92:5d:2f:83:74:1a:d8:89:a0:b8:08:66:
13:a9:04:92:2f:de:f9:c9:25:bf:dd:68:2c:d6:f8:
e1:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:60:7A:6D:D9:D0:09:D3:60:D7:00:A1:1E:65:02:AE:61:AD:82:8B
X509v3 Authority Key Identifier:
keyid:9A:75:82:C0:14:F2:6D:23:B6:EF:9C:2E:82:F4:85:70:C0:B6:78:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mnWCwBTybSO275wugvSFcMC2eGg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/cd7bdf-2f6c-4402-95d7-c3d18b275465/1/_2B6bdnQCdNg1wChHmUCrmGtgos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/cd7bdf-2f6c-4402-95d7-c3d18b275465/1/mnWCwBTybSO275wugvSFcMC2eGg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.171.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:5c:b2:ef:90:d6:32:57:71:45:1c:e4:41:03:6b:00:9c:4f:
0a:e0:b9:12:b2:9e:5f:5f:e0:29:f3:60:05:db:33:e9:11:48:
6b:9d:9c:49:9d:58:1c:96:47:2c:3a:b4:ed:00:72:8b:b1:79:
7c:aa:3d:cd:b1:05:8f:6d:47:cb:26:42:19:70:e7:10:07:52:
bc:b8:c0:88:d1:f5:58:5d:57:10:12:6b:32:fb:85:86:a1:a3:
fd:82:81:12:3b:1d:08:d8:00:82:a0:77:5a:aa:b5:df:c6:d7:
64:7a:ad:78:ae:af:88:4d:69:8f:a3:74:02:df:40:a5:b5:63:
92:c5:07:8a:1f:a8:a3:4e:e1:a0:52:4d:41:19:c8:f4:4b:18:
0a:83:51:79:5c:58:a1:da:7f:16:ae:2c:bf:7b:12:9b:a8:7e:
09:f9:69:de:a3:fd:d0:c2:bc:c8:da:00:88:a3:0c:3f:ea:34:
e1:02:87:78:4e:fa:12:37:3e:39:98:c8:32:89:69:12:11:48:
b3:6d:00:72:b8:05:1c:da:af:c8:7b:e4:a5:13:2b:e3:3b:5f:
da:f3:30:d5:81:3a:a6:f6:20:2f:d3:67:e1:58:0b:a9:c9:98:
05:1c:62:1a:17:a6:e2:25:11:08:f8:da:c7:9b:e1:df:d7:a3:
4b:df:7c:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:04 2024 by rpki-client on console-fra.rpki-client.org