Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/69be21-8f43-4bb7-94bf-2314148c15dc/1/2ASJJdYWG7SWfWIuMcR6fMUQ7bo.roa
File: 2ASJJdYWG7SWfWIuMcR6fMUQ7bo.roa (raw, json)
Hash identifier: ynFZuicv+4XS7fD5a+klgQtYXMQA+0PD9FhBADIGAMY=
Subject key identifier: D8:04:89:25:D6:16:1B:B4:96:7D:62:2E:31:C4:7A:7C:C5:10:ED:BA
Certificate issuer: /CN=daa27995228f4f8176637aacc3a16471a88d8423
Certificate serial: 01856D41AACA1C16DD74084D27E1B8013BF2
Authority key identifier: DA:A2:79:95:22:8F:4F:81:76:63:7A:AC:C3:A1:64:71:A8:8D:84:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2qJ5lSKPT4F2Y3qsw6FkcaiNhCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/69be21-8f43-4bb7-94bf-2314148c15dc/1/2ASJJdYWG7SWfWIuMcR6fMUQ7bo.roa
Signing time: Sun 01 Jan 2023 12:14:58 +0000
ROA not before: Sun 01 Jan 2023 12:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34761
IP address blocks: 217.194.80.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:41:aa:ca:1c:16:dd:74:08:4d:27:e1:b8:01:3b:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daa27995228f4f8176637aacc3a16471a88d8423
Validity
Not Before: Jan 1 12:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8048925d6161bb4967d622e31c47a7cc510edba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:45:aa:15:81:f5:4f:d4:79:0d:b2:3f:23:19:
43:ae:64:16:79:66:2a:70:b7:b8:ac:0b:45:5b:e2:
75:73:8e:08:0a:5c:21:46:a1:1c:c4:b8:a3:81:74:
84:3b:2e:08:6b:eb:2e:35:21:18:7e:ed:f9:04:ed:
fe:bd:ea:aa:c0:7a:e6:60:39:0b:b7:ce:b8:af:f1:
60:c8:65:48:1c:c8:d7:8f:6c:f5:ec:b7:37:ca:8f:
c3:88:c0:0b:5d:bf:e1:19:a5:00:92:27:c8:b0:ae:
ef:61:c8:54:c5:30:7a:30:d9:28:43:ff:cc:69:5c:
36:92:b9:21:d2:83:11:aa:25:e9:c9:dc:29:e1:22:
79:55:65:7e:b2:a3:70:17:e5:87:36:53:9f:93:9a:
73:62:6a:9d:b5:85:71:e4:00:44:26:a7:30:ab:f0:
30:ea:a3:37:d1:c8:a8:3b:4c:2d:78:9e:40:37:09:
31:2f:d0:bc:06:eb:f0:8a:84:d5:8b:18:2e:5d:67:
c8:f9:2e:d2:5f:35:96:6d:73:e3:7e:5a:31:08:67:
07:e4:93:3f:e2:e4:2d:d8:ae:32:4a:dc:fe:12:96:
c5:e5:17:53:e3:71:e5:8a:b7:df:0a:57:f9:2f:05:
67:2e:3d:fd:5d:81:ee:30:77:fa:a1:42:f9:fe:1c:
8a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:04:89:25:D6:16:1B:B4:96:7D:62:2E:31:C4:7A:7C:C5:10:ED:BA
X509v3 Authority Key Identifier:
keyid:DA:A2:79:95:22:8F:4F:81:76:63:7A:AC:C3:A1:64:71:A8:8D:84:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2qJ5lSKPT4F2Y3qsw6FkcaiNhCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/69be21-8f43-4bb7-94bf-2314148c15dc/1/2ASJJdYWG7SWfWIuMcR6fMUQ7bo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/69be21-8f43-4bb7-94bf-2314148c15dc/1/2qJ5lSKPT4F2Y3qsw6FkcaiNhCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.194.80.0/20
Signature Algorithm: sha256WithRSAEncryption
2f:59:ea:c1:e1:8a:de:54:04:23:00:4f:c8:a9:fa:46:5a:1d:
dd:00:d5:11:9b:e3:a6:38:ad:9e:15:32:fe:f4:c8:41:9f:84:
e2:1d:76:bc:09:2a:75:64:f7:c6:95:75:12:c0:d8:f2:f6:bc:
58:a8:ba:4a:26:05:85:f0:85:ab:5a:54:34:0e:8f:37:f1:73:
ec:c5:7a:fb:94:96:4f:e9:40:ec:17:bf:a3:c4:c2:39:50:45:
33:21:11:ae:fc:55:7e:fb:74:41:db:f6:75:53:f6:a8:51:ba:
c4:48:96:89:45:f9:d0:b9:50:de:ab:77:2e:8b:9a:51:56:e6:
ce:89:a0:e6:c5:8e:28:c9:81:af:d5:37:89:23:84:d5:db:1f:
11:b1:47:60:74:06:62:b6:87:85:69:d1:a1:fc:1e:58:62:69:
6a:f6:18:c9:45:f6:2c:f1:04:e6:c6:1d:cc:d3:f0:c3:25:9f:
91:7c:2f:8c:96:39:76:e2:9a:e3:24:75:1b:99:16:b6:67:a7:
60:48:25:4e:c6:27:28:d9:07:05:db:e7:85:1c:53:79:52:01:
62:30:fd:32:a4:c4:9d:ac:0a:95:67:5d:41:b2:65:86:1e:b4:
7c:69:c4:49:53:c9:ab:b1:46:cf:51:d9:db:d8:90:fa:49:6c:
d8:e7:1f:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:13 2023 by rpki-client on console-fra.rpki-client.org