Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/4a11ef-764f-4283-81ff-05acfacac844/1/o_H-GvwWLujLRYuMayVSDupyAU0.roa
File: o_H-GvwWLujLRYuMayVSDupyAU0.roa (raw, json)
Hash identifier: Lq8Gpgsab7pMhmiVteQtDF9GFBvQtqSkGKUonBL6MjA=
Subject key identifier: A3:F1:FE:1A:FC:16:2E:E8:CB:45:8B:8C:6B:25:52:0E:EA:72:01:4D
Certificate issuer: /CN=e927fdc63d310d3d231b4a7553ae4e4158025e9f
Certificate serial: 0185723A26FD49A00ACF2959A381ED4FCE84
Authority key identifier: E9:27:FD:C6:3D:31:0D:3D:23:1B:4A:75:53:AE:4E:41:58:02:5E:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6Sf9xj0xDT0jG0p1U65OQVgCXp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/4a11ef-764f-4283-81ff-05acfacac844/1/o_H-GvwWLujLRYuMayVSDupyAU0.roa
Signing time: Mon 02 Jan 2023 11:24:51 +0000
ROA not before: Mon 02 Jan 2023 11:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48918
IP address blocks: 195.20.20.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:3a:26:fd:49:a0:0a:cf:29:59:a3:81:ed:4f:ce:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e927fdc63d310d3d231b4a7553ae4e4158025e9f
Validity
Not Before: Jan 2 11:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a3f1fe1afc162ee8cb458b8c6b25520eea72014d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6d:f2:d4:d1:67:d0:cd:11:d0:81:29:08:23:
a0:b2:79:59:8b:cf:a2:ee:0e:09:f0:90:b0:47:d7:
58:12:54:a8:2f:fd:11:ae:92:bd:9f:1b:88:14:33:
0d:2b:51:f4:63:e6:4d:91:a4:c8:48:9b:b7:18:ea:
61:2c:1c:3e:50:6c:d4:c4:83:5f:c7:c5:e5:8e:d2:
d9:c4:b6:68:49:da:8a:01:b1:83:de:54:9a:90:97:
e1:60:1d:ed:9c:84:09:ff:b7:23:35:84:b9:36:fc:
3a:6f:4d:ac:39:e9:02:05:43:a6:59:29:a9:a1:56:
69:a2:6e:4f:4b:a6:b5:bd:17:d3:00:8c:e9:f4:be:
b3:97:30:44:23:79:e1:af:3d:cb:4f:b6:27:e0:fd:
01:67:b2:ce:84:ac:4e:e1:42:b3:47:ea:bb:f3:f3:
0c:f0:df:8c:f2:73:2e:aa:51:47:1d:21:6b:d8:26:
cd:79:65:e4:d4:aa:ff:96:54:90:d8:d4:d3:ec:98:
03:80:24:26:29:c6:21:f4:93:7f:68:2d:d1:58:93:
49:53:15:ff:c1:09:5c:19:f0:68:35:6d:f9:72:3e:
8a:81:ee:e9:4e:23:67:34:e6:b9:82:27:a9:23:0f:
b5:f5:1a:0f:26:e5:b9:b0:76:7f:5d:00:40:24:6b:
f0:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:F1:FE:1A:FC:16:2E:E8:CB:45:8B:8C:6B:25:52:0E:EA:72:01:4D
X509v3 Authority Key Identifier:
keyid:E9:27:FD:C6:3D:31:0D:3D:23:1B:4A:75:53:AE:4E:41:58:02:5E:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6Sf9xj0xDT0jG0p1U65OQVgCXp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4a11ef-764f-4283-81ff-05acfacac844/1/o_H-GvwWLujLRYuMayVSDupyAU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4a11ef-764f-4283-81ff-05acfacac844/1/6Sf9xj0xDT0jG0p1U65OQVgCXp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.20.20.0/22
Signature Algorithm: sha256WithRSAEncryption
40:e4:04:d3:3a:09:e0:66:f4:ca:f1:0d:b1:80:c6:fc:36:11:
bb:63:e4:1b:e2:35:ed:3f:57:39:fd:39:dc:73:42:7b:d5:ab:
c0:37:e4:f3:34:79:38:73:ba:bb:52:09:04:e3:2d:8e:ac:15:
bf:c1:c9:a6:b5:a9:c8:e3:72:54:bc:fc:12:f0:f3:7d:bd:e7:
9f:df:da:99:1d:d3:01:9f:73:42:fc:75:e2:2e:b6:10:75:01:
0d:70:29:10:97:27:0f:e1:60:d7:93:6b:4f:c2:98:94:14:9a:
8d:ed:59:22:05:15:72:3c:65:9f:f8:19:00:c0:6e:63:79:c1:
44:91:34:ec:42:68:f2:4f:0e:08:97:78:d9:d2:10:17:11:b8:
cd:a2:7e:fb:5c:f4:8f:6a:77:72:bc:5c:ed:f9:3a:fe:8a:17:
24:15:28:88:1b:0e:3c:32:26:40:4a:a3:ef:5f:92:70:d8:69:
f7:67:ac:b1:f7:fb:3f:e2:45:14:16:da:9f:f8:e6:bd:ec:47:
05:5f:4f:64:e3:63:7c:89:56:d9:d3:05:f5:b0:ff:d6:2c:e9:
8c:1b:38:e8:bd:d2:d0:fc:60:d3:8f:2e:af:12:9c:ba:2b:ad:
f8:01:00:62:e2:71:54:39:57:84:f3:78:0c:b2:29:2c:6c:bd:
92:14:11:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 24 06:53:00 2023 by rpki-client on console-ams.rpki-client.org