Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/38b542-4677-4a7e-b212-c8acce156f0d/1/w7Y7l3njWFB5GSOXDK6JiC8OBRA.roa
File: w7Y7l3njWFB5GSOXDK6JiC8OBRA.roa (raw, json)
Hash identifier: J1X27aHtdPxgeenLw0fMaT47uFHhuFXcKZj5J/4KDJU=
Subject key identifier: C3:B6:3B:97:79:E3:58:50:79:19:23:97:0C:AE:89:88:2F:0E:05:10
Certificate issuer: /CN=60c9aa8b71e548bd7565ba663fa32f7d1aec41ab
Certificate serial: 01835321CBE511E7F86BCDADD51CFBEACE18
Authority key identifier: 60:C9:AA:8B:71:E5:48:BD:75:65:BA:66:3F:A3:2F:7D:1A:EC:41:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YMmqi3HlSL11ZbpmP6MvfRrsQas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/38b542-4677-4a7e-b212-c8acce156f0d/1/w7Y7l3njWFB5GSOXDK6JiC8OBRA.roa
Signing time: Mon 19 Sep 2022 00:24:27 +0000
ROA not before: Mon 19 Sep 2022 00:24:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 149457
IP address blocks: 194.76.0.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:53:21:cb:e5:11:e7:f8:6b:cd:ad:d5:1c:fb:ea:ce:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60c9aa8b71e548bd7565ba663fa32f7d1aec41ab
Validity
Not Before: Sep 19 00:24:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c3b63b9779e35850791923970cae89882f0e0510
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:60:0a:28:1f:6a:78:58:41:b0:3f:14:c2:f5:
34:b4:a8:d7:08:a3:d7:c0:fb:fc:b4:4c:91:e4:25:
ae:22:76:a5:65:f5:d2:ce:76:69:2b:8d:e8:a3:d0:
89:fa:4e:f7:6e:5d:21:a1:de:9b:f9:c4:ea:a8:f3:
59:9f:18:7e:d7:4f:df:73:c4:36:0e:05:1e:53:8a:
72:90:01:89:8c:d9:66:4c:41:59:04:7a:50:18:cd:
81:fc:c1:f0:59:77:13:21:3b:f1:32:94:55:ef:63:
6d:2c:1d:f0:69:0a:12:68:87:dd:cd:57:ac:8b:22:
2d:50:fa:57:be:08:3f:6a:a2:f9:f1:61:6f:35:76:
62:4b:ba:b2:31:c7:57:79:5e:4b:b7:da:91:8b:5f:
c9:88:9e:ce:ed:34:5b:db:76:90:ed:ce:25:70:1b:
6f:b5:8c:3e:56:c7:b2:2e:54:6d:b8:8f:89:2c:69:
fa:02:8f:59:b7:2c:4b:e7:92:d1:d3:73:be:1f:86:
0c:c0:9d:94:9c:e6:e6:c7:2f:57:bf:43:ee:15:48:
14:fd:7b:72:4e:68:84:82:fd:ef:f3:b5:88:d3:e0:
14:bf:10:5e:c3:e0:e4:c4:84:53:7f:63:db:2c:5c:
af:1d:2b:1b:3a:2e:67:72:ba:ff:cf:71:2d:a8:c7:
b3:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:B6:3B:97:79:E3:58:50:79:19:23:97:0C:AE:89:88:2F:0E:05:10
X509v3 Authority Key Identifier:
keyid:60:C9:AA:8B:71:E5:48:BD:75:65:BA:66:3F:A3:2F:7D:1A:EC:41:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YMmqi3HlSL11ZbpmP6MvfRrsQas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/38b542-4677-4a7e-b212-c8acce156f0d/1/w7Y7l3njWFB5GSOXDK6JiC8OBRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/38b542-4677-4a7e-b212-c8acce156f0d/1/YMmqi3HlSL11ZbpmP6MvfRrsQas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.76.0.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:ff:e6:a2:00:01:5c:77:ff:cd:9d:ab:74:80:c3:16:94:a2:
48:f3:a9:55:61:9b:38:11:53:2d:05:59:fb:85:34:cb:8b:84:
d6:4a:97:27:10:1f:3a:4c:a6:05:ee:46:00:77:3f:51:09:a3:
19:b9:aa:de:92:98:91:88:60:b7:be:ee:50:ed:1f:bb:67:b0:
89:c3:d1:f0:b9:fc:c9:4e:6d:f5:30:fd:6c:ad:f8:9e:cf:bc:
7d:3d:3f:c4:26:ec:4c:ad:9f:f7:d1:21:2a:7d:9e:58:0e:65:
d8:de:1b:df:5a:fb:ae:98:44:95:64:d8:27:bd:ce:3b:46:28:
0a:1b:20:bc:f7:6f:85:6f:54:fc:c9:5b:37:fe:45:80:0a:f9:
5c:dd:eb:d1:3e:50:64:30:6c:ac:b8:42:fd:b7:14:44:71:cd:
44:31:cc:95:f2:98:53:5d:67:bc:5f:3d:d9:b0:97:be:a1:77:
b3:2c:c3:b6:7b:a0:78:23:5a:a7:2a:96:d4:69:b4:34:77:bb:
cd:89:31:21:e0:e9:dd:06:56:ad:2d:09:b2:fa:2e:47:ef:9b:
fa:47:7b:f7:f6:bb:f3:7f:9e:4a:6a:a9:c8:1a:e6:93:a1:43:
16:6d:46:fd:74:33:93:9a:cd:51:21:e5:d5:80:85:3d:44:81:
f0:95:01:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:10 2024 by rpki-client on console-fra.rpki-client.org