Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/cd7bdf-2f6c-4402-95d7-c3d18b275465/1/hS8aBzOcPIbFr6-uD0hNaaLdleU.roa
File: hS8aBzOcPIbFr6-uD0hNaaLdleU.roa (raw, json)
Hash identifier: KvtsWMdPZGOhdeVsKqny6pfdGUdUkWKf72HdLbDW7sY=
Subject key identifier: 85:2F:1A:07:33:9C:3C:86:C5:AF:AF:AE:0F:48:4D:69:A2:DD:95:E5
Certificate issuer: /CN=9a7582c014f26d23b6ef9c2e82f48570c0b67868
Certificate serial: 01869DEAE7664F94B2E550447F4E94F5FF33
Authority key identifier: 9A:75:82:C0:14:F2:6D:23:B6:EF:9C:2E:82:F4:85:70:C0:B6:78:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mnWCwBTybSO275wugvSFcMC2eGg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/cd7bdf-2f6c-4402-95d7-c3d18b275465/1/hS8aBzOcPIbFr6-uD0hNaaLdleU.roa
Signing time: Wed 01 Mar 2023 16:04:22 +0000
ROA not before: Wed 01 Mar 2023 16:04:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200010
IP address blocks: 193.3.171.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9d:ea:e7:66:4f:94:b2:e5:50:44:7f:4e:94:f5:ff:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a7582c014f26d23b6ef9c2e82f48570c0b67868
Validity
Not Before: Mar 1 16:04:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=852f1a07339c3c86c5afafae0f484d69a2dd95e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:0e:58:f1:d2:4e:5f:5f:bf:35:90:e2:c7:03:
1a:a8:cc:dc:01:e2:ba:94:eb:a1:ed:c7:e0:92:c5:
10:ea:36:0a:6c:c0:c0:cb:d4:c9:e8:c8:b0:f0:02:
2a:c7:b0:d1:1f:f0:64:57:c9:1d:cf:9f:6e:cf:26:
9a:1a:bb:67:b9:9d:01:52:a9:73:8f:9a:85:c6:0f:
8e:67:75:e4:49:43:4a:e7:f0:2d:23:ef:6d:c8:79:
59:23:11:02:71:16:98:c1:b6:ab:db:57:e8:1d:aa:
39:79:72:48:6b:fe:e8:21:63:3f:3c:7d:7a:66:43:
70:19:6b:ee:0a:37:97:d4:a1:1a:e1:78:af:20:c6:
f6:9e:28:39:c3:4b:e2:8e:5b:8d:53:d5:e5:3a:c7:
e2:10:7f:df:43:93:8b:63:30:7a:ab:4b:70:f5:fc:
e1:15:71:7b:29:83:a3:84:52:23:b3:dc:98:ef:27:
a2:5c:97:40:66:21:4e:90:0a:2a:91:46:8a:cd:94:
75:50:06:d4:40:ca:da:26:7a:ff:ad:09:f8:9c:1a:
16:7a:59:27:d1:f4:b4:04:f8:2e:68:a5:ad:1f:d2:
68:4d:3f:72:ba:03:34:3a:3f:42:1b:61:a7:a8:21:
59:19:e7:89:fe:c3:33:b0:01:f6:28:65:20:fb:55:
0c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:2F:1A:07:33:9C:3C:86:C5:AF:AF:AE:0F:48:4D:69:A2:DD:95:E5
X509v3 Authority Key Identifier:
keyid:9A:75:82:C0:14:F2:6D:23:B6:EF:9C:2E:82:F4:85:70:C0:B6:78:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mnWCwBTybSO275wugvSFcMC2eGg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/cd7bdf-2f6c-4402-95d7-c3d18b275465/1/hS8aBzOcPIbFr6-uD0hNaaLdleU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/cd7bdf-2f6c-4402-95d7-c3d18b275465/1/mnWCwBTybSO275wugvSFcMC2eGg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.171.0/24
Signature Algorithm: sha256WithRSAEncryption
70:25:9f:ba:3f:5e:6e:b1:88:a6:6d:74:80:4b:3b:a6:ae:7c:
df:58:40:a9:89:f0:42:7c:db:8f:4e:5e:d3:56:09:0a:8d:55:
f8:bd:46:ce:c1:59:40:24:6f:f3:d2:b9:1f:7f:88:25:96:43:
cb:05:26:0c:bf:de:a9:71:fc:f5:b3:a4:24:e4:64:7d:7c:e5:
ea:e0:0a:8b:27:ee:a2:f8:8d:ed:cb:68:f3:33:eb:70:34:f7:
fa:77:cf:ee:aa:20:42:58:32:6e:c6:78:c5:48:03:da:b1:67:
dd:b2:9d:59:dc:c6:ab:f9:7e:49:db:51:a7:cc:97:7e:1e:2e:
0a:d5:f4:82:6a:65:14:bf:b9:ec:a1:62:b9:0c:f5:f1:a0:b5:
79:91:4c:30:53:1a:6c:a6:7c:4b:c3:2d:c0:10:50:08:1b:b5:
84:bd:65:06:bb:7f:4d:11:e4:61:cb:57:72:81:2a:0b:28:dc:
55:09:cd:c1:4e:27:66:5d:30:96:ec:09:e3:5a:dd:1c:20:55:
88:4d:86:9c:80:f3:47:2e:4a:1e:16:df:7e:72:83:e9:3f:38:
1e:13:c6:32:73:a9:04:78:21:c4:eb:db:7c:52:84:80:32:52:
2f:cd:c1:67:cc:38:3e:eb:29:22:3d:af:df:33:68:5c:d4:a3:
07:ab:3a:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:06 2024 by rpki-client on console-ams.rpki-client.org