Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/25a8bc-57f0-43f8-bc02-f5a9c437bb28/1/hruH1Bir6MIJCD52xul7seXkiQY.roa
File: hruH1Bir6MIJCD52xul7seXkiQY.roa (raw, json)
Hash identifier: Dnu14ekuNbkiDYy6qffO/XT9v8qWHuZSlZ/D24tw+MM=
Subject key identifier: 86:BB:87:D4:18:AB:E8:C2:09:08:3E:76:C6:E9:7B:B1:E5:E4:89:06
Certificate issuer: /CN=c9a36fdfa41c7469ce73dc8bbece9462dcb8c823
Certificate serial: 0606887B
Authority key identifier: C9:A3:6F:DF:A4:1C:74:69:CE:73:DC:8B:BE:CE:94:62:DC:B8:C8:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yaNv36QcdGnOc9yLvs6UYty4yCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/25a8bc-57f0-43f8-bc02-f5a9c437bb28/1/hruH1Bir6MIJCD52xul7seXkiQY.roa
Signing time: Sat 01 Jan 2022 12:59:22 +0000
ROA not before: Sat 01 Jan 2022 12:59:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 393398
IP address blocks: 194.48.100.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101091451 (0x606887b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9a36fdfa41c7469ce73dc8bbece9462dcb8c823
Validity
Not Before: Jan 1 12:59:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86bb87d418abe8c209083e76c6e97bb1e5e48906
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:80:33:c7:bf:6e:26:26:cf:20:29:a9:33:b4:
fa:e2:31:29:91:4f:65:f3:7b:f4:0e:6d:d6:f3:d2:
2c:90:60:49:5c:51:19:8f:79:66:6b:b9:39:38:2f:
76:7e:6e:59:a9:40:98:11:8b:45:6e:50:d1:91:a3:
6f:8c:ac:48:8e:f6:5f:b4:78:98:bb:28:da:88:15:
ce:97:19:43:db:12:cd:c6:8e:82:59:3f:54:c5:28:
7b:97:6c:a7:30:55:07:f1:36:6b:fe:b0:b5:34:af:
cf:f1:a4:6a:5a:fd:4f:4d:41:85:da:df:22:fb:f9:
bd:51:ac:39:1f:1d:fc:d4:7f:c8:53:f9:88:47:0f:
a3:15:db:fe:d4:ee:00:c4:6b:76:0b:79:fc:b4:c1:
ce:5b:40:26:76:46:9f:2b:91:4d:c8:42:d1:aa:88:
8f:ef:11:c7:25:a7:3b:bd:0d:4e:52:94:cd:ae:e9:
e5:15:26:b5:7f:43:95:a5:d0:c6:78:98:e6:80:4a:
6f:03:7e:f2:78:95:3c:c3:9e:ea:3e:eb:cf:ca:03:
b0:32:2a:ea:de:79:ec:9b:bc:0c:ce:72:67:85:e5:
a4:68:19:2f:2b:e3:cd:a3:ff:c3:9f:63:4c:62:58:
b4:7e:3b:19:52:ae:da:78:c1:8c:52:f6:b6:4f:5d:
ab:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:BB:87:D4:18:AB:E8:C2:09:08:3E:76:C6:E9:7B:B1:E5:E4:89:06
X509v3 Authority Key Identifier:
keyid:C9:A3:6F:DF:A4:1C:74:69:CE:73:DC:8B:BE:CE:94:62:DC:B8:C8:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yaNv36QcdGnOc9yLvs6UYty4yCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/25a8bc-57f0-43f8-bc02-f5a9c437bb28/1/hruH1Bir6MIJCD52xul7seXkiQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/25a8bc-57f0-43f8-bc02-f5a9c437bb28/1/yaNv36QcdGnOc9yLvs6UYty4yCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.48.100.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:0a:ef:3f:bb:ac:1c:0f:4b:e3:57:bb:b4:93:a0:bd:98:af:
36:47:ca:b8:3a:e9:e1:1e:c8:ed:cd:1d:aa:d6:50:bd:06:65:
25:f9:16:ae:0a:71:f9:71:74:17:9d:da:13:af:95:2c:ab:bb:
48:72:5f:37:01:35:91:3b:50:01:f2:2a:72:89:08:d6:68:45:
87:d2:6b:d7:f9:96:46:88:0e:e4:5e:e3:dd:64:f7:dc:e5:d8:
86:3e:0f:56:96:5f:5e:c4:93:04:00:b7:21:d1:26:b7:62:cb:
b6:b8:26:87:20:b6:07:ab:c4:b5:c3:f3:71:49:23:93:b4:5a:
ab:f1:59:ef:21:a0:a7:2d:90:1e:1c:0f:7a:e5:e5:b9:78:0f:
c9:dd:dc:e7:e3:d0:b2:db:93:33:e9:98:55:04:57:6f:52:bb:
86:19:58:dc:44:87:c0:bf:9a:48:92:de:fe:2a:96:96:03:e6:
55:49:44:23:ab:9f:c8:48:69:59:ef:01:10:f0:df:ef:f2:1c:
05:06:2e:0a:ee:fc:12:4a:76:a3:86:0d:da:9e:9c:17:3e:72:
24:ec:27:ec:1a:3e:75:46:74:6c:81:11:9f:3b:d8:61:25:db:
d3:3c:9b:73:19:43:0f:87:f9:bf:64:a0:6c:9e:5f:6a:58:bb:
4d:db:62:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:56 2024 by rpki-client on console-ams.rpki-client.org