Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/d1cc24-a999-40f7-bfc1-7a1e90601167/1/3Q2KuacCxx1olqw4Cv-4YmpagD8.roa
File: 3Q2KuacCxx1olqw4Cv-4YmpagD8.roa (raw, json)
Hash identifier: GrTTA3uVP4XlmDextyQcP58w0FkqfpV+5+lXGp6Lym8=
Subject key identifier: DD:0D:8A:B9:A7:02:C7:1D:68:96:AC:38:0A:FF:B8:62:6A:5A:80:3F
Certificate issuer: /CN=97d34b5d066be1dd041ecddd6a597da84c0fade3
Certificate serial: 058F2D4F
Authority key identifier: 97:D3:4B:5D:06:6B:E1:DD:04:1E:CD:DD:6A:59:7D:A8:4C:0F:AD:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l9NLXQZr4d0EHs3dall9qEwPreM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/d1cc24-a999-40f7-bfc1-7a1e90601167/1/3Q2KuacCxx1olqw4Cv-4YmpagD8.roa
Signing time: Sat 01 Jan 2022 14:00:54 +0000
ROA not before: Sat 01 Jan 2022 14:00:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203020
IP address blocks: 195.158.248.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93269327 (0x58f2d4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97d34b5d066be1dd041ecddd6a597da84c0fade3
Validity
Not Before: Jan 1 14:00:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dd0d8ab9a702c71d6896ac380affb8626a5a803f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:32:05:04:a2:bf:57:a4:13:99:57:80:ed:32:
63:33:d5:12:87:79:33:60:17:42:6d:7b:a4:e1:94:
f6:af:24:5f:50:ee:ad:c2:d5:b1:18:0a:5b:dd:58:
32:5d:a3:36:8d:fe:87:38:67:47:78:7c:59:fa:02:
8e:a9:8f:80:dd:53:49:d4:bc:64:23:de:a1:ec:a9:
ca:b5:1e:7f:55:e7:4f:93:c8:cf:d3:69:f1:0f:dc:
e5:4c:34:c2:bf:88:15:f5:56:e3:d7:16:d9:4b:e8:
0f:44:43:51:86:33:e1:f2:59:b9:09:44:54:1c:5d:
a2:6b:35:08:02:78:7e:d7:d6:80:f3:8f:dc:9d:a5:
c3:8b:d2:30:3e:bc:3a:d0:02:fd:ea:43:3c:b8:2d:
31:20:fb:48:a5:ad:90:ee:af:55:de:2b:44:3c:38:
39:d0:40:98:f9:80:0a:12:cd:d0:77:a0:0d:25:46:
91:f8:d6:18:99:30:f6:e9:c7:f5:ad:92:14:cc:90:
56:e8:1c:c1:ee:b2:47:df:60:4d:c1:f9:5a:d5:9d:
fc:90:af:a1:dc:55:50:89:37:a2:d4:d1:4c:f8:f7:
0e:46:56:21:99:02:65:83:a0:df:e7:12:7f:ff:fe:
11:68:ac:71:e4:75:f9:2a:ed:8c:4b:45:42:7d:8b:
5b:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:0D:8A:B9:A7:02:C7:1D:68:96:AC:38:0A:FF:B8:62:6A:5A:80:3F
X509v3 Authority Key Identifier:
keyid:97:D3:4B:5D:06:6B:E1:DD:04:1E:CD:DD:6A:59:7D:A8:4C:0F:AD:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l9NLXQZr4d0EHs3dall9qEwPreM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/d1cc24-a999-40f7-bfc1-7a1e90601167/1/3Q2KuacCxx1olqw4Cv-4YmpagD8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/d1cc24-a999-40f7-bfc1-7a1e90601167/1/l9NLXQZr4d0EHs3dall9qEwPreM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.158.248.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:52:f8:82:6a:15:14:56:c0:c1:a6:77:98:41:e6:29:39:9a:
1c:ed:83:2e:c3:e5:1a:0e:86:77:1a:96:e3:e8:a0:e7:1c:32:
2c:34:17:85:6d:fe:ad:b9:bd:0a:2a:a6:64:36:16:ae:f7:25:
bb:e4:43:06:61:f4:9a:e9:16:8e:88:67:cb:40:b5:ae:6e:9b:
8c:1d:3f:ac:08:ab:75:37:21:64:e7:56:04:7c:57:8e:f1:4d:
bb:01:be:5d:28:b3:a4:f6:09:34:4f:5c:e5:9f:15:d8:38:05:
35:41:57:ee:40:9d:ff:0d:98:4d:05:06:84:ca:af:ae:95:d1:
0c:06:4c:37:c9:f5:91:48:f1:7b:62:c1:c5:a4:de:07:24:cf:
3a:7a:e6:19:3f:48:6c:59:5f:73:ca:3d:09:08:b2:7a:f3:7b:
b7:2a:fe:dc:8e:94:1c:18:a4:0a:75:cc:70:61:47:87:e1:b9:
7d:b0:92:50:36:b1:a9:c6:57:4f:f6:15:dc:36:e8:13:08:bb:
58:c7:9d:d6:89:15:b0:85:65:a9:76:3a:e4:ed:0b:b6:23:27:
97:b5:45:45:f1:f1:85:63:6b:71:e3:d8:37:a7:85:3c:32:84:
e6:2b:56:e5:2d:ee:f6:23:b9:fa:01:fd:ec:49:1c:bb:70:76:
68:71:ce:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:30 2024 by rpki-client on console-fra.rpki-client.org