Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/9a708a-6434-46e9-a335-fd1f36e8b5b3/1/1uiHflbjpT5MPlh-K9cgWEEk8Fo.roa
File: 1uiHflbjpT5MPlh-K9cgWEEk8Fo.roa (raw, json)
Hash identifier: h0rDvIGUd2h2VuTOIY8KwDxlxCbv9L10lmKkW+DY/v0=
Subject key identifier: D6:E8:87:7E:56:E3:A5:3E:4C:3E:58:7E:2B:D7:20:58:41:24:F0:5A
Certificate issuer: /CN=d4df420af45da27789ef1729e25035c427717257
Certificate serial: 01856EA6BCD7BDEEE0996EE6F589BBB4D76E
Authority key identifier: D4:DF:42:0A:F4:5D:A2:77:89:EF:17:29:E2:50:35:C4:27:71:72:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1N9CCvRdoneJ7xcp4lA1xCdxclc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/9a708a-6434-46e9-a335-fd1f36e8b5b3/1/1uiHflbjpT5MPlh-K9cgWEEk8Fo.roa
Signing time: Sun 01 Jan 2023 18:44:59 +0000
ROA not before: Sun 01 Jan 2023 18:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 194.39.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:bc:d7:bd:ee:e0:99:6e:e6:f5:89:bb:b4:d7:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4df420af45da27789ef1729e25035c427717257
Validity
Not Before: Jan 1 18:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d6e8877e56e3a53e4c3e587e2bd720584124f05a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:86:dd:ef:60:81:bb:b7:ab:b8:23:3f:87:9d:
86:8b:08:37:5d:d4:51:26:b9:97:83:77:2d:6c:41:
29:a4:72:2b:06:fc:58:4b:a7:d1:e7:a7:df:9b:38:
29:ff:60:75:58:c3:43:e4:d2:ed:26:15:c9:1b:1f:
74:5d:9d:99:c3:2f:10:a0:43:05:9e:99:d7:8f:f3:
7e:21:4c:ca:a9:79:95:46:ca:7b:87:db:e2:f6:d5:
7a:92:88:51:0b:98:d4:1e:51:31:b6:aa:4c:01:19:
84:04:55:df:4a:17:d7:f9:f6:87:39:af:6d:a5:ec:
64:b5:4a:22:7f:fa:b1:95:f9:31:6c:b9:b8:94:f8:
a7:de:17:cb:79:2f:df:34:75:1e:af:15:12:e0:9a:
ff:a1:a5:f0:51:2d:6a:22:20:1a:47:63:dc:d7:be:
97:44:89:a2:8f:fe:bd:7e:6c:bf:14:71:59:ab:87:
ce:52:33:ed:18:77:00:52:72:11:6a:04:cd:d5:62:
86:1c:f8:fd:3b:88:2e:e2:7d:c7:70:d4:52:c2:3b:
53:ec:7c:c8:b4:67:d9:48:ae:b4:22:35:fd:65:14:
15:cb:f9:28:51:d1:00:e2:92:91:ec:31:7d:2d:e6:
5f:36:f6:89:75:2e:09:a5:0a:2d:63:6c:85:e3:8e:
90:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:E8:87:7E:56:E3:A5:3E:4C:3E:58:7E:2B:D7:20:58:41:24:F0:5A
X509v3 Authority Key Identifier:
keyid:D4:DF:42:0A:F4:5D:A2:77:89:EF:17:29:E2:50:35:C4:27:71:72:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1N9CCvRdoneJ7xcp4lA1xCdxclc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/9a708a-6434-46e9-a335-fd1f36e8b5b3/1/1uiHflbjpT5MPlh-K9cgWEEk8Fo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/9a708a-6434-46e9-a335-fd1f36e8b5b3/1/1N9CCvRdoneJ7xcp4lA1xCdxclc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.39.189.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:9a:1b:31:60:ff:b9:b1:bd:f7:59:16:f3:8a:37:8e:77:21:
a6:f6:fe:db:18:70:09:2c:40:43:b5:62:28:43:3f:6b:aa:c7:
98:65:f0:02:73:ca:f2:f4:b5:11:f2:17:e0:b5:db:6d:c1:4a:
36:76:fa:b5:5f:a1:da:53:38:49:78:25:09:1f:c0:b7:df:b7:
c0:d6:96:d1:18:fa:c1:b7:a5:1c:63:25:a4:1e:d3:b2:c1:1a:
e6:40:20:c4:8e:98:67:fd:19:74:ad:42:14:92:0e:92:20:f6:
0a:d6:b7:d8:e2:e5:69:fa:e2:d1:8d:03:1d:0e:ae:3f:d8:79:
0a:0c:68:64:45:c5:9e:32:f9:bc:c4:81:b4:ec:60:88:cf:86:
66:02:17:59:32:91:77:67:bc:c3:e8:0f:b6:6f:2f:33:60:a2:
8c:a4:96:8f:26:d5:c9:5f:2b:01:63:10:c7:d0:25:db:10:6d:
66:54:29:86:c7:d2:ba:6a:f5:dc:53:81:0f:12:6a:b6:7e:08:
9a:4d:83:a1:61:8e:5f:90:fc:a9:5a:c2:a8:cc:29:05:1e:70:
07:e3:3b:aa:42:5f:eb:34:dc:d9:5e:7f:43:71:24:06:04:18:
f1:8b:1a:f3:28:13:1a:95:93:67:6e:dd:26:3a:7e:33:e4:fe:
61:f6:81:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:45 2024 by rpki-client on console-ams.rpki-client.org