Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/9a708a-6434-46e9-a335-fd1f36e8b5b3/1/2Qm9h2t5BKtJC-DF46XSjn49zMc.roa
File: 2Qm9h2t5BKtJC-DF46XSjn49zMc.roa (raw, json)
Hash identifier: +hYxUw9d8mPR0RgerbNd4Yl5dft0aJZW1U2wupeh2TY=
Subject key identifier: D9:09:BD:87:6B:79:04:AB:49:0B:E0:C5:E3:A5:D2:8E:7E:3D:CC:C7
Certificate issuer: /CN=d4df420af45da27789ef1729e25035c427717257
Certificate serial: 02C4F6
Authority key identifier: D4:DF:42:0A:F4:5D:A2:77:89:EF:17:29:E2:50:35:C4:27:71:72:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1N9CCvRdoneJ7xcp4lA1xCdxclc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/9a708a-6434-46e9-a335-fd1f36e8b5b3/1/2Qm9h2t5BKtJC-DF46XSjn49zMc.roa
Signing time: Tue 01 Feb 2022 14:40:53 +0000
ROA not before: Tue 01 Feb 2022 14:40:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 194.39.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181494 (0x2c4f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4df420af45da27789ef1729e25035c427717257
Validity
Not Before: Feb 1 14:40:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d909bd876b7904ab490be0c5e3a5d28e7e3dccc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:2f:cb:f9:ae:18:c6:da:41:6a:a3:31:00:e0:
42:62:57:c3:1e:8a:90:88:68:4a:62:cb:84:c9:96:
94:ff:2b:bd:c9:77:ee:ae:4a:89:d6:17:b9:d5:a5:
78:7b:d7:ef:3f:77:8b:f3:d4:f0:33:58:d7:f9:b1:
31:c4:f0:6a:68:9d:06:21:c6:40:d7:f6:1e:1b:9c:
0c:6d:5a:60:ee:f7:e9:6c:fc:b6:6e:54:3a:9e:01:
97:24:e4:8f:46:69:62:5c:ab:97:e3:eb:82:43:c9:
74:ba:40:9d:a4:3c:0b:63:1e:7a:d5:5e:3b:a6:9c:
94:ad:c6:4e:f0:0b:02:6b:f1:71:e2:a7:d2:2d:2c:
8c:2d:e5:26:94:1b:49:e7:23:f6:c0:eb:31:82:9d:
71:50:e8:2c:a3:05:64:fc:e0:0c:50:77:e9:37:5e:
16:d3:3f:b5:63:9d:ac:9a:c2:eb:a1:c2:26:62:74:
91:fe:47:f0:f4:be:0e:f5:ff:79:8d:9a:35:d1:be:
07:50:7b:a5:06:1c:44:75:c5:32:3a:42:0e:9f:06:
e2:1b:21:c2:84:31:60:eb:92:7a:b0:c9:99:8a:d9:
79:95:d3:20:17:0d:a5:b1:4d:cf:bb:0d:63:3d:b8:
24:9c:de:0f:ba:33:aa:2e:5a:e8:56:1c:61:5f:02:
35:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:09:BD:87:6B:79:04:AB:49:0B:E0:C5:E3:A5:D2:8E:7E:3D:CC:C7
X509v3 Authority Key Identifier:
keyid:D4:DF:42:0A:F4:5D:A2:77:89:EF:17:29:E2:50:35:C4:27:71:72:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1N9CCvRdoneJ7xcp4lA1xCdxclc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/9a708a-6434-46e9-a335-fd1f36e8b5b3/1/2Qm9h2t5BKtJC-DF46XSjn49zMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/9a708a-6434-46e9-a335-fd1f36e8b5b3/1/1N9CCvRdoneJ7xcp4lA1xCdxclc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.39.189.0/24
Signature Algorithm: sha256WithRSAEncryption
68:ab:d3:37:0e:5c:af:fb:51:bd:f9:63:ca:fa:c9:4d:84:e1:
a5:82:cb:bd:e6:7f:09:50:fa:c8:19:19:ef:76:ce:03:9c:26:
61:b0:99:c5:75:89:2b:c2:c2:77:6d:9c:6f:e1:e6:17:04:a7:
8d:37:bf:05:fe:6b:82:1f:12:ba:10:f6:21:74:4c:21:91:b8:
4c:50:5f:f0:2e:6f:4a:f7:e2:3b:58:ae:a5:25:2a:8e:f9:d0:
05:0a:dc:1b:5b:3b:ac:64:8f:e1:a4:f1:73:8c:11:9c:6a:33:
aa:c6:e4:4b:e8:0d:0c:65:34:99:fa:62:eb:45:e8:97:53:cb:
ff:6d:c0:e5:8b:c9:16:67:0f:42:65:7e:09:ea:88:0e:8f:4b:
a9:7a:ca:a0:7c:80:f3:be:c3:2a:a8:91:cf:e0:8c:c1:20:61:
25:ff:41:66:76:53:df:dc:56:56:11:d3:ba:7b:e4:97:0e:0a:
08:3b:b6:77:d4:6a:30:96:60:49:64:6f:77:5f:5b:d9:7c:3f:
15:54:f9:ec:58:fe:a0:3e:1c:23:d2:ca:d2:31:00:37:81:de:
c0:eb:e6:50:1e:5d:50:d9:df:30:cd:5d:98:4c:ca:ee:3b:49:
ba:98:8f:90:8f:6d:cc:2b:90:4d:27:8d:28:8e:39:c5:42:fe:
4a:2c:5a:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:45 2024 by rpki-client on console-ams.rpki-client.org