Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/6580c1-0ea6-47d5-8a7b-2522a281d1ad/1/n1ZX4HIWFyw0K5ERu4d_e4OkhHk.roa
File: n1ZX4HIWFyw0K5ERu4d_e4OkhHk.roa (raw, json)
Hash identifier: wV12P2vaTkMHXusTMgX4+VopZl27DaPkYtOqd/E35+M=
Subject key identifier: 9F:56:57:E0:72:16:17:2C:34:2B:91:11:BB:87:7F:7B:83:A4:84:79
Certificate issuer: /CN=1021cffea974353c5d5b623f5755142fadd5e2e0
Certificate serial: 0188303D76C8898066A6FF57C3A47ADACF69
Authority key identifier: 10:21:CF:FE:A9:74:35:3C:5D:5B:62:3F:57:55:14:2F:AD:D5:E2:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ECHP_ql0NTxdW2I_V1UUL63V4uA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/6580c1-0ea6-47d5-8a7b-2522a281d1ad/1/n1ZX4HIWFyw0K5ERu4d_e4OkhHk.roa
Signing time: Thu 18 May 2023 19:01:54 +0000
ROA not before: Thu 18 May 2023 19:01:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202656
IP address blocks: 176.116.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:30:3d:76:c8:89:80:66:a6:ff:57:c3:a4:7a:da:cf:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1021cffea974353c5d5b623f5755142fadd5e2e0
Validity
Not Before: May 18 19:01:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f5657e07216172c342b9111bb877f7b83a48479
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3b:96:7c:27:c3:13:be:57:41:56:5a:70:61:
69:e9:f3:92:3b:21:8c:06:95:96:df:4a:17:09:f1:
54:20:07:58:6f:5c:2e:1c:e3:7e:54:05:0b:fa:78:
cd:0d:23:87:cf:3f:e4:de:33:06:73:81:dd:b1:50:
07:c7:f5:de:76:c0:91:d8:ad:67:30:f5:ae:fa:2c:
0b:af:a1:a6:85:96:6a:24:75:bd:82:cf:1e:2c:c8:
b6:11:d8:ee:e0:3b:80:7b:13:01:a8:72:ec:f5:33:
ef:df:fd:57:a0:98:5b:75:1f:19:d3:de:34:12:f2:
c2:e5:02:40:f5:4d:22:e1:fd:2b:7c:00:a1:e9:81:
20:af:5f:c7:d4:c8:2d:0a:bc:11:63:dd:99:17:d0:
f2:63:ff:03:d0:0a:2d:07:be:c5:8b:a4:5f:e4:79:
d2:1f:b7:05:62:d3:63:2d:93:1c:70:2c:02:ea:e7:
a9:20:2a:1b:29:10:7b:e5:6f:fd:06:3d:7b:79:0b:
52:c0:18:68:37:0f:46:21:e3:69:ce:ef:60:a4:c2:
b9:d9:b0:52:a9:e0:fb:ff:45:0e:b1:b9:99:9d:67:
87:56:fc:0e:ec:fd:38:0a:ff:eb:0b:1f:e8:a6:cc:
99:60:6f:2d:09:78:76:4c:ce:10:c9:4f:f0:d4:96:
ac:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:56:57:E0:72:16:17:2C:34:2B:91:11:BB:87:7F:7B:83:A4:84:79
X509v3 Authority Key Identifier:
keyid:10:21:CF:FE:A9:74:35:3C:5D:5B:62:3F:57:55:14:2F:AD:D5:E2:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ECHP_ql0NTxdW2I_V1UUL63V4uA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/6580c1-0ea6-47d5-8a7b-2522a281d1ad/1/n1ZX4HIWFyw0K5ERu4d_e4OkhHk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/6580c1-0ea6-47d5-8a7b-2522a281d1ad/1/ECHP_ql0NTxdW2I_V1UUL63V4uA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.20.0/24
Signature Algorithm: sha256WithRSAEncryption
82:f9:f4:4b:23:fa:12:0d:74:0b:a4:1e:c6:9d:30:d4:2e:33:
60:20:10:55:2f:8a:38:bb:6f:55:1a:a3:65:ec:32:67:64:b0:
a6:07:2e:e7:43:19:37:f2:b1:cc:99:6e:bc:0b:5d:1a:28:1d:
bc:c0:2f:53:3f:d0:12:f3:39:8b:55:3d:4b:6a:d2:87:10:5c:
46:0c:9d:9c:a9:47:cf:6f:4e:8d:7c:5f:9d:d2:90:dd:f5:a8:
9b:5a:81:13:83:d8:0b:56:95:12:7c:20:2d:f7:ac:2e:a1:ff:
e5:41:1f:86:de:83:47:1a:45:5b:2b:c3:d6:98:07:0a:ea:70:
87:8d:dc:c9:e6:53:6d:1a:a8:a6:0a:00:73:e4:88:1b:c0:bf:
88:ef:96:da:93:d5:97:12:86:97:2a:b2:82:ae:3b:34:ae:e5:
4b:6c:9d:c5:14:d9:07:38:21:93:5c:84:59:21:f0:35:ff:5e:
d9:1d:27:68:21:3a:18:42:03:b3:22:c9:7d:5c:11:2f:b3:7c:
7f:4a:32:74:ce:f3:53:7b:07:9c:a5:bf:0c:08:c5:08:33:2b:
6d:b6:6d:36:90:19:a7:c8:72:94:ca:a1:61:ab:52:5f:46:4f:
65:0a:af:ce:c3:6b:98:17:9f:cb:e1:f3:d9:f2:ea:b8:d9:7d:
b6:5e:54:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 26 16:55:54 2023 by rpki-client on console-fra.rpki-client.org