Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/c67904-4f38-4a2a-96e2-23aa142444e1/1/02QYHRFZljFR3ixH9H2qlUbkJJI.roa
File: 02QYHRFZljFR3ixH9H2qlUbkJJI.roa (raw, json)
Hash identifier: zmP9aBEZhPlnxhSK11itfQnD0WTlSDqYvjLG0iMHaTE=
Subject key identifier: D3:64:18:1D:11:59:96:31:51:DE:2C:47:F4:7D:AA:95:46:E4:24:92
Certificate issuer: /CN=ff7997ef7f7f1e1da10e5c1d98ea31474b6dbb11
Certificate serial: 01869635FAF6BADD6CF3F49453453947FFA2
Authority key identifier: FF:79:97:EF:7F:7F:1E:1D:A1:0E:5C:1D:98:EA:31:47:4B:6D:BB:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_3mX739_Hh2hDlwdmOoxR0ttuxE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/c67904-4f38-4a2a-96e2-23aa142444e1/1/02QYHRFZljFR3ixH9H2qlUbkJJI.roa
Signing time: Tue 28 Feb 2023 04:09:25 +0000
ROA not before: Tue 28 Feb 2023 04:09:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 193.163.127.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:96:35:fa:f6:ba:dd:6c:f3:f4:94:53:45:39:47:ff:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff7997ef7f7f1e1da10e5c1d98ea31474b6dbb11
Validity
Not Before: Feb 28 04:09:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d364181d1159963151de2c47f47daa9546e42492
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:79:b2:3c:83:2f:dd:f4:58:2f:a8:4e:4f:46:
ec:7a:b1:84:13:c4:4a:87:19:77:67:f5:ef:85:09:
91:75:c7:a8:cd:c6:05:e9:5a:1b:33:5a:c5:7b:eb:
19:5a:6d:df:9f:2e:2d:51:0b:cb:bb:da:4d:56:9f:
ba:ac:22:70:81:0b:f9:d5:d1:19:cb:ed:8a:d5:84:
65:c1:45:0e:3f:39:8e:bc:ec:a6:67:82:db:cc:ab:
fc:60:1c:36:08:45:42:86:30:38:8e:b6:75:11:78:
48:62:a0:e2:b6:d1:b7:e6:e2:61:8b:75:4a:e2:db:
43:1a:bb:d6:36:bc:fa:01:3e:ec:67:85:08:cc:70:
60:66:b9:da:eb:97:03:6c:6e:30:b7:f1:0a:af:3e:
ab:a5:92:88:e5:ed:7a:09:06:35:3c:15:ca:b4:53:
c0:ae:17:ad:59:8b:4d:66:7f:13:98:4b:b0:ad:6f:
db:65:34:e9:58:63:16:90:2b:65:17:08:89:f6:a8:
0d:0f:aa:f3:46:95:78:3a:43:ff:5c:24:0e:7d:56:
fe:4a:36:56:11:2d:bd:4f:1d:3f:5f:70:bc:95:b2:
52:3a:50:8f:75:5a:e3:f7:ba:10:56:76:df:a9:b6:
15:4c:fa:89:a4:88:9c:3e:c2:fb:ce:f5:31:2b:b3:
3e:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:64:18:1D:11:59:96:31:51:DE:2C:47:F4:7D:AA:95:46:E4:24:92
X509v3 Authority Key Identifier:
keyid:FF:79:97:EF:7F:7F:1E:1D:A1:0E:5C:1D:98:EA:31:47:4B:6D:BB:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_3mX739_Hh2hDlwdmOoxR0ttuxE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/c67904-4f38-4a2a-96e2-23aa142444e1/1/02QYHRFZljFR3ixH9H2qlUbkJJI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/c67904-4f38-4a2a-96e2-23aa142444e1/1/_3mX739_Hh2hDlwdmOoxR0ttuxE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.127.0/24
Signature Algorithm: sha256WithRSAEncryption
d6:1e:be:6e:58:d8:68:4e:c1:1e:43:89:dc:b4:88:90:8d:4e:
b6:e3:01:49:84:0f:79:d3:42:ae:35:39:83:02:c1:a7:96:fe:
3b:89:2e:4d:b5:03:4e:2b:9b:75:8e:77:5a:7e:15:4f:24:e4:
7e:74:11:d0:cc:d1:f5:bd:a6:1c:ee:0b:72:2b:2b:f5:28:03:
ce:13:8c:bb:bb:62:7a:05:8f:42:ff:28:d8:41:11:34:da:e7:
56:a1:6d:e3:e4:ce:a2:d8:92:a0:37:b3:2d:30:34:6c:68:64:
3d:9d:a8:48:eb:2c:7c:7d:db:e8:e3:79:8c:b0:88:41:b0:5b:
10:00:4e:23:c7:7d:ec:3b:e0:00:c6:80:c8:39:ad:04:3b:95:
c9:61:58:ad:b5:85:3a:63:23:54:6a:18:a1:27:57:64:02:ad:
d9:cb:90:37:29:46:ab:0f:da:68:e9:0b:1a:05:e5:5d:54:45:
a4:f7:c7:c3:87:27:a0:b4:8c:75:46:aa:2a:41:23:5f:39:12:
54:86:65:72:f9:14:9d:5b:54:fb:f6:e9:73:0d:8d:2c:01:f7:
39:35:8f:28:e7:0a:88:88:c8:7e:77:2a:69:53:f3:ce:b4:24:
04:42:ee:b0:bf:fb:52:b4:b7:81:65:98:d2:ef:ad:6b:7f:8a:
a5:75:15:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:05 2024 by rpki-client on console-fra.rpki-client.org