Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/cab3d1-d978-4b84-bfa6-1e7cb3618e44/1/XmfVMF9FsIb8tkKHQ4VA42n7ido.roa
File: XmfVMF9FsIb8tkKHQ4VA42n7ido.roa (raw, json)
Hash identifier: xIO30Z8OLK8xupwvWK1/s5JQ1XjHAfM0ArJDIg1z9Vk=
Subject key identifier: 5E:67:D5:30:5F:45:B0:86:FC:B6:42:87:43:85:40:E3:69:FB:89:DA
Certificate issuer: /CN=dd85ab3c139a72d8993c9ad4ad941377481ffbbc
Certificate serial: 055A88
Authority key identifier: DD:85:AB:3C:13:9A:72:D8:99:3C:9A:D4:AD:94:13:77:48:1F:FB:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YWrPBOactiZPJrUrZQTd0gf-7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/cab3d1-d978-4b84-bfa6-1e7cb3618e44/1/XmfVMF9FsIb8tkKHQ4VA42n7ido.roa
Signing time: Fri 08 Apr 2022 09:41:25 +0000
ROA not before: Fri 08 Apr 2022 09:41:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 194.49.1.0/24 maxlen: 24
194.49.0.0/24 maxlen: 24
194.49.2.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 350856 (0x55a88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd85ab3c139a72d8993c9ad4ad941377481ffbbc
Validity
Not Before: Apr 8 09:41:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e67d5305f45b086fcb64287438540e369fb89da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:3a:a2:6d:03:45:3c:7d:c6:29:7d:80:95:42:
87:12:c2:99:80:ba:3c:aa:ee:9a:f3:2d:b8:ea:d8:
d0:d8:f7:64:c2:da:67:34:fb:7e:b4:34:21:01:20:
b7:7b:27:c9:35:0a:1f:4b:72:28:60:e3:2d:44:89:
ce:06:73:b3:10:fb:72:a2:c4:9a:af:f6:ef:ee:1d:
1b:96:84:0b:d7:63:47:c4:89:b0:9d:ac:89:1b:2e:
9e:3e:e4:40:04:da:c8:cb:92:28:ac:ff:b4:41:aa:
e4:21:f4:d0:0f:cb:1c:7e:cb:a9:c1:83:3c:86:be:
11:21:88:8f:c6:49:b7:12:c3:d5:50:a6:3e:6f:b7:
f6:e1:9b:19:fe:34:88:f1:ba:a3:82:07:98:ab:ea:
06:5d:6b:b4:83:e1:64:60:ed:57:9e:ec:a5:0d:69:
66:d8:d2:20:17:96:6e:1a:e6:3a:c0:c4:66:77:6f:
59:b1:ac:f1:1e:20:b7:dd:c1:d4:f8:62:b5:38:95:
90:fb:94:db:6d:43:f8:11:fe:96:53:ee:5e:bf:a2:
4e:de:44:bb:77:28:a8:e8:9b:eb:06:c2:81:d2:82:
e8:d2:63:a3:18:66:71:dc:86:8e:e7:70:a7:6d:e6:
db:a6:d2:b1:ac:7e:e3:61:9a:69:9b:a0:67:95:b8:
ee:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:67:D5:30:5F:45:B0:86:FC:B6:42:87:43:85:40:E3:69:FB:89:DA
X509v3 Authority Key Identifier:
keyid:DD:85:AB:3C:13:9A:72:D8:99:3C:9A:D4:AD:94:13:77:48:1F:FB:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YWrPBOactiZPJrUrZQTd0gf-7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/cab3d1-d978-4b84-bfa6-1e7cb3618e44/1/XmfVMF9FsIb8tkKHQ4VA42n7ido.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/cab3d1-d978-4b84-bfa6-1e7cb3618e44/1/3YWrPBOactiZPJrUrZQTd0gf-7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.49.0.0/22
Signature Algorithm: sha256WithRSAEncryption
98:27:c3:f4:ee:6c:43:1c:8b:6d:1a:b1:71:af:32:7e:36:d0:
9b:46:7e:17:ed:0d:96:59:95:58:67:fd:9e:cf:e5:9f:50:f0:
a2:b9:36:b1:e9:be:33:b5:67:ae:b0:9f:38:3f:f2:1f:14:3f:
c7:bf:cc:b3:08:df:61:e5:50:7f:52:4f:84:71:80:0c:40:03:
f5:f9:d2:eb:90:40:3d:d9:5b:20:c6:d7:0d:5f:8a:bb:57:86:
7a:ef:ca:94:9b:20:52:5d:4e:30:c6:76:94:ba:da:9b:aa:28:
f3:8c:fe:f4:89:86:8c:ac:14:42:2b:6d:7d:c2:af:33:93:b7:
c3:8f:c9:91:a0:15:2b:06:e6:71:f5:17:c1:d8:e0:7c:7d:c1:
37:c4:c1:91:41:0f:04:40:7e:e0:8e:d1:a9:c1:c1:78:bf:98:
69:e8:36:d6:a0:af:14:1c:44:1a:be:3c:03:20:ed:1c:21:66:
bd:7e:36:68:df:56:bb:0f:fb:34:bf:1f:18:7c:66:8a:25:72:
27:4e:1a:2f:f3:ec:1d:fd:92:6b:b9:88:29:ee:3b:18:57:0f:
54:45:d1:60:c9:a1:6e:cf:47:ca:9e:1e:d3:46:cb:3d:9f:89:
19:98:85:51:a7:22:12:03:e2:22:44:9d:96:3b:33:69:8b:58:
84:16:d7:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:36 2023 by rpki-client on console-fra.rpki-client.org