Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/ccb9bd-fec4-4cf7-9fe4-e193a28f6838/1/Gm3ijc49k0gzSHKh5lQI-9wNdwQ.roa
File: Gm3ijc49k0gzSHKh5lQI-9wNdwQ.roa (raw, json)
Hash identifier: hfmManW2PQetGl3ubnhzX8rsY4JxMzwPEMr5kwqdWgw=
Subject key identifier: 1A:6D:E2:8D:CE:3D:93:48:33:48:72:A1:E6:54:08:FB:DC:0D:77:04
Certificate issuer: /CN=5a81f54036aef754ad94130072ab0879d83a0c74
Certificate serial: 01856D8ABFDC6C02F9E2A2A9CA4BAC5A30C0
Authority key identifier: 5A:81:F5:40:36:AE:F7:54:AD:94:13:00:72:AB:08:79:D8:3A:0C:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WoH1QDau91StlBMAcqsIedg6DHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/ccb9bd-fec4-4cf7-9fe4-e193a28f6838/1/Gm3ijc49k0gzSHKh5lQI-9wNdwQ.roa
Signing time: Sun 01 Jan 2023 13:34:47 +0000
ROA not before: Sun 01 Jan 2023 13:34:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34471
IP address blocks: 195.177.88.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8a:bf:dc:6c:02:f9:e2:a2:a9:ca:4b:ac:5a:30:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a81f54036aef754ad94130072ab0879d83a0c74
Validity
Not Before: Jan 1 13:34:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a6de28dce3d9348334872a1e65408fbdc0d7704
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:7c:36:9a:09:ce:07:6e:aa:0e:6f:6a:4a:32:
a4:65:d4:9e:33:d9:12:68:0a:a2:6a:86:6e:01:d3:
10:b6:7e:b9:65:7d:63:b7:40:dd:02:8d:0e:65:4e:
ea:bb:13:4a:3b:d4:31:37:79:11:d5:15:8f:2a:24:
f5:76:ca:52:8a:60:54:53:ff:24:79:9f:aa:32:4a:
33:77:16:07:b7:cb:d4:b6:df:90:4b:8a:1d:ab:35:
bc:f6:43:fc:e1:b2:43:2b:77:eb:4f:e9:83:25:66:
14:84:62:62:60:ea:f5:77:10:b1:23:79:1f:f6:ed:
74:47:06:54:90:c9:a5:ea:a6:74:93:38:e2:81:6c:
9d:73:c3:fb:33:da:b3:26:36:46:94:ad:ec:a1:88:
b7:e9:b5:be:3c:b7:18:a4:13:16:fc:7a:d5:89:59:
bb:9f:4f:30:61:68:2a:6e:1f:95:8c:48:49:f9:08:
09:5a:69:d1:d4:83:5e:44:a2:ae:fa:ce:3d:c5:75:
39:2e:c6:9d:fe:50:f2:6e:a5:60:ba:c8:ba:c3:ca:
69:a4:8c:68:f2:26:d8:98:32:02:50:32:8a:79:82:
d9:70:5e:64:0f:d9:ef:d3:99:2d:52:61:14:22:af:
8a:91:21:d1:2b:2f:a4:89:40:2a:b4:b2:22:f3:98:
b7:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:6D:E2:8D:CE:3D:93:48:33:48:72:A1:E6:54:08:FB:DC:0D:77:04
X509v3 Authority Key Identifier:
keyid:5A:81:F5:40:36:AE:F7:54:AD:94:13:00:72:AB:08:79:D8:3A:0C:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WoH1QDau91StlBMAcqsIedg6DHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/ccb9bd-fec4-4cf7-9fe4-e193a28f6838/1/Gm3ijc49k0gzSHKh5lQI-9wNdwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/ccb9bd-fec4-4cf7-9fe4-e193a28f6838/1/WoH1QDau91StlBMAcqsIedg6DHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.177.88.0/22
Signature Algorithm: sha256WithRSAEncryption
83:fa:7b:60:03:84:c9:28:1b:87:6b:4d:1c:c6:7b:9f:bf:67:
5c:63:bd:dd:f1:51:61:90:d3:41:88:a6:40:96:8b:60:df:7a:
62:ec:03:82:48:99:39:0f:fe:0a:01:33:c0:b4:c3:51:4f:a7:
8f:17:bb:5e:27:8d:d2:bc:63:34:27:75:38:a9:51:8f:d7:85:
2b:a0:8e:de:af:a9:e1:35:55:e8:30:03:03:c7:ae:90:f5:30:
2d:e8:b9:12:90:f7:a6:fa:a4:6c:80:9a:04:8e:8e:3c:88:a2:
f1:49:c5:e0:e3:da:7b:56:2d:d1:85:03:d2:5c:19:10:c8:4c:
06:4e:88:a1:4e:44:b5:26:16:41:df:1d:8c:6e:80:36:0b:a2:
ba:02:d9:7f:56:21:f7:4b:3a:ff:de:52:20:0f:2b:2f:b4:60:
78:cf:66:cb:e1:93:fa:b6:0d:59:d0:85:d6:2b:db:b0:c7:5c:
5a:2e:f6:1e:73:7d:2f:94:c0:0c:16:1d:44:0b:51:b1:4a:cf:
93:b1:53:b6:6d:99:24:0f:42:c4:f7:bd:87:7b:c0:a2:f0:ee:
4a:7c:d8:ac:d0:cf:54:fd:27:00:85:c6:11:dc:35:ef:6d:6e:
c3:35:39:ae:e6:e4:01:bc:48:27:c6:df:85:8d:d3:38:34:de:
e2:0c:12:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:12 2024 by rpki-client on console-ams.rpki-client.org