Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/7e5552-0b7d-400c-95fd-856f43f69aa3/1/fReoKmT613nV_wsRzXNkpBW7D7Y.roa
File: fReoKmT613nV_wsRzXNkpBW7D7Y.roa (raw, json)
Hash identifier: 1IbILBKM0lxGCsJMHptz+KNXi20xbTQQqZHf06Wb2dQ=
Subject key identifier: 7D:17:A8:2A:64:FA:D7:79:D5:FF:0B:11:CD:73:64:A4:15:BB:0F:B6
Certificate issuer: /CN=2cf3834cdab5abbcdb6bc5cf4e5503d16e84623a
Certificate serial: EC71
Authority key identifier: 2C:F3:83:4C:DA:B5:AB:BC:DB:6B:C5:CF:4E:55:03:D1:6E:84:62:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LPODTNq1q7zba8XPTlUD0W6EYjo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/7e5552-0b7d-400c-95fd-856f43f69aa3/1/fReoKmT613nV_wsRzXNkpBW7D7Y.roa
Signing time: Tue 08 Feb 2022 18:37:51 +0000
ROA not before: Tue 08 Feb 2022 18:37:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48031
IP address blocks: 217.198.178.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60529 (0xec71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cf3834cdab5abbcdb6bc5cf4e5503d16e84623a
Validity
Not Before: Feb 8 18:37:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d17a82a64fad779d5ff0b11cd7364a415bb0fb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:77:31:17:65:47:03:64:11:97:71:ee:bd:4f:
c3:36:2f:2a:6a:c6:e2:3a:39:11:2c:91:e4:b1:9f:
46:7e:56:4d:2c:5a:4b:ac:11:95:55:85:f8:31:df:
6f:1f:cc:dc:79:c1:32:f2:30:2c:c1:08:49:31:ad:
bb:b8:ff:18:4c:37:71:39:aa:22:65:52:64:68:72:
0e:f0:52:6d:c0:74:ac:0d:8a:de:c2:4e:9f:ca:f8:
7c:32:f9:b7:5d:b4:6c:27:c4:57:aa:8c:a1:f8:a5:
91:06:7b:c6:a7:6d:60:b7:07:01:20:87:c2:23:b3:
88:96:43:6a:64:61:4d:d9:c7:d2:b9:2a:5e:16:0a:
c2:15:6f:8a:d7:45:d6:1e:4f:b2:01:18:5a:93:3a:
72:07:f3:d4:3b:44:68:1c:a6:bb:58:8c:35:7b:7a:
0e:e1:3c:6b:31:fa:18:fb:58:92:89:22:db:a3:00:
42:5a:e1:60:9b:da:31:06:10:04:ac:d3:eb:68:55:
35:98:91:17:66:88:ba:30:12:c0:26:90:4c:b4:7c:
94:36:8a:62:ae:de:25:7f:6c:7b:bc:43:b1:09:3b:
30:bb:95:b0:6d:7b:e7:bf:60:40:93:db:81:53:c6:
fe:0a:d2:16:d5:ed:fd:f6:7c:eb:f3:46:bf:70:ae:
b6:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:17:A8:2A:64:FA:D7:79:D5:FF:0B:11:CD:73:64:A4:15:BB:0F:B6
X509v3 Authority Key Identifier:
keyid:2C:F3:83:4C:DA:B5:AB:BC:DB:6B:C5:CF:4E:55:03:D1:6E:84:62:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LPODTNq1q7zba8XPTlUD0W6EYjo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/7e5552-0b7d-400c-95fd-856f43f69aa3/1/fReoKmT613nV_wsRzXNkpBW7D7Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/7e5552-0b7d-400c-95fd-856f43f69aa3/1/LPODTNq1q7zba8XPTlUD0W6EYjo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.198.178.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:86:d8:da:5d:17:9c:9a:f3:b5:0c:3b:89:ce:21:e8:92:ad:
8f:0a:f8:5d:35:4e:51:6c:87:c5:a5:ab:f7:12:04:91:8d:9e:
9e:c9:ee:8c:f4:ff:2e:ad:bb:4f:43:ac:64:15:52:03:ad:c2:
40:0d:61:e7:17:51:b4:40:e4:f5:cb:b3:70:f4:db:2a:1a:6d:
05:13:47:c1:8e:24:66:64:1c:d8:6c:6f:08:ec:fb:9a:93:d6:
cf:22:fa:5d:58:fb:9f:46:0b:f5:60:e1:99:7c:95:13:1c:4a:
9a:ae:09:e1:26:bd:89:0c:5f:4d:bd:97:5d:49:01:ac:09:58:
02:53:24:9d:f3:cd:dc:e1:12:10:0b:a2:11:a2:a3:64:93:c9:
35:82:e7:36:63:d8:c0:51:1b:08:f6:55:25:16:21:f1:f1:37:
70:af:e2:20:fc:82:b9:d7:7a:26:fa:99:f7:e2:b1:60:c1:0d:
53:d3:1f:21:14:45:c9:de:74:78:c7:6e:ca:f6:95:18:05:d6:
b9:86:16:38:b7:13:6b:b8:39:e0:d2:dc:36:fc:0c:94:af:6c:
47:47:e0:b8:9d:a4:db:7d:48:26:6c:c5:22:ec:8f:25:af:34:
8a:c2:11:9b:64:c9:f7:5b:20:ac:12:38:83:59:57:69:04:2f:
1f:b9:59:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:45 2024 by rpki-client on console-ams.rpki-client.org