Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/be4e31-3dbe-4130-b452-017eb5735b13/1/IQPTroHWzNFpYZ0s0neS2nlIKPo.roa
File: IQPTroHWzNFpYZ0s0neS2nlIKPo.roa (raw, json)
Hash identifier: P1GMDce4zOB7ywk6lVW8fJeCwDuRfpV575GF35r1y00=
Subject key identifier: 21:03:D3:AE:81:D6:CC:D1:69:61:9D:2C:D2:77:92:DA:79:48:28:FA
Certificate issuer: /CN=79065ccf1ebe555b3752717e595c275bcad00b4e
Certificate serial: 018B75850E01909E6D9246E77F16F8DD0271
Authority key identifier: 79:06:5C:CF:1E:BE:55:5B:37:52:71:7E:59:5C:27:5B:CA:D0:0B:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eQZczx6-VVs3UnF-WVwnW8rQC04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/be4e31-3dbe-4130-b452-017eb5735b13/1/IQPTroHWzNFpYZ0s0neS2nlIKPo.roa
Signing time: Sat 28 Oct 2023 09:02:16 +0000
ROA not before: Sat 28 Oct 2023 09:02:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 194.59.6.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:75:85:0e:01:90:9e:6d:92:46:e7:7f:16:f8:dd:02:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79065ccf1ebe555b3752717e595c275bcad00b4e
Validity
Not Before: Oct 28 09:02:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2103d3ae81d6ccd169619d2cd27792da794828fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:bc:c5:81:f0:3f:78:d1:75:28:a0:01:be:59:
70:1d:a3:80:e1:09:f4:46:6e:06:0c:b9:9f:b6:f7:
3d:66:d5:85:0b:b5:3d:f2:d8:eb:e4:fc:f0:81:29:
62:b7:a3:25:1e:94:e3:a0:0d:14:fd:e1:15:bb:60:
42:16:ae:b0:a1:e3:2b:5e:9e:b9:c2:70:88:84:69:
30:52:2a:f1:ee:36:fd:a2:9a:85:38:2f:b0:3b:f7:
9b:9d:7f:61:fe:cf:70:b5:85:9a:fd:51:8f:cf:55:
26:5a:81:51:6d:d1:2a:4b:25:d8:84:98:b8:ff:3d:
08:e1:e3:ba:0f:a6:12:9a:86:7e:3b:46:53:9a:39:
44:3d:5c:2e:56:dd:6e:6b:5d:62:88:5e:ab:d4:51:
ab:90:45:2f:0b:47:b4:51:75:1d:1d:71:01:16:e2:
f6:41:d5:5b:70:df:ae:2c:b5:21:af:1b:fe:a3:40:
c8:b0:c6:b9:11:e3:c9:e9:d8:95:4c:78:d2:08:4a:
23:f8:52:e9:7f:90:bb:fe:ab:45:90:fe:3e:1c:e5:
84:ec:35:93:25:59:b0:9d:78:6b:56:2c:23:19:75:
39:a6:40:00:6f:4f:d2:e5:69:1a:fb:6d:cd:78:c0:
5d:2a:28:3a:66:50:3f:e4:57:a5:64:21:f0:b1:80:
20:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:03:D3:AE:81:D6:CC:D1:69:61:9D:2C:D2:77:92:DA:79:48:28:FA
X509v3 Authority Key Identifier:
keyid:79:06:5C:CF:1E:BE:55:5B:37:52:71:7E:59:5C:27:5B:CA:D0:0B:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eQZczx6-VVs3UnF-WVwnW8rQC04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/be4e31-3dbe-4130-b452-017eb5735b13/1/IQPTroHWzNFpYZ0s0neS2nlIKPo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/be4e31-3dbe-4130-b452-017eb5735b13/1/eQZczx6-VVs3UnF-WVwnW8rQC04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.6.0/24
Signature Algorithm: sha256WithRSAEncryption
80:54:a8:36:02:42:2d:03:6a:87:d5:35:55:82:ce:11:8b:68:
14:ed:6b:c4:bc:e6:2d:61:29:ce:9d:16:28:22:47:b2:93:f0:
f2:db:46:cb:43:26:ab:5a:1c:f6:27:46:53:05:69:ae:39:80:
01:9d:c4:1c:b9:d6:86:95:c1:c1:1c:d6:fc:67:ee:45:98:ff:
98:14:36:7e:05:99:2b:1b:7b:d3:61:ff:7f:ef:71:d5:84:67:
d9:23:d8:c5:48:45:eb:a1:58:fc:f8:b9:e5:e3:08:31:d0:ea:
cd:7c:02:d2:7c:a3:2f:b4:76:09:a9:c6:57:e2:c8:4a:0b:b4:
8a:77:32:c8:32:50:08:ce:cf:fe:01:65:57:2c:35:4f:b7:12:
f7:52:2a:5b:ca:02:44:c7:08:5e:db:aa:0e:84:4f:4f:de:9e:
7c:c9:52:28:72:de:96:9a:6e:68:ea:0b:8b:55:b4:36:ae:a8:
cb:d7:ed:52:3d:19:d7:ea:f7:e1:5d:24:7a:ce:97:5c:37:2b:
fa:a8:04:85:7d:ed:98:1e:8f:60:df:23:0a:d2:95:ef:a9:2b:
fc:9c:7f:1f:41:19:1f:91:42:43:22:8b:f4:42:c9:47:77:61:
dc:af:c8:53:56:20:3d:27:74:29:bb:49:43:10:3d:5b:33:51:
e2:d4:53:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:30 2024 by rpki-client on console-ams.rpki-client.org