Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/cd3dd7-b6bc-4a00-a64a-c376bc532e65/1/stHoot9Ng7hC0x9jsUNCl2jKc9I.roa
File: stHoot9Ng7hC0x9jsUNCl2jKc9I.roa (raw, json)
Hash identifier: +1m1BG/bvLyvLvWXR76mTrON/Ir3Jm2erh0iksCNZpY=
Subject key identifier: B2:D1:E8:A2:DF:4D:83:B8:42:D3:1F:63:B1:43:42:97:68:CA:73:D2
Certificate issuer: /CN=ca9a85c552fcc60839059feadb0519c65c1bdf54
Certificate serial: 0186751F65886A92196F1A2EE210B0660628
Authority key identifier: CA:9A:85:C5:52:FC:C6:08:39:05:9F:EA:DB:05:19:C6:5C:1B:DF:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypqFxVL8xgg5BZ_q2wUZxlwb31Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/cd3dd7-b6bc-4a00-a64a-c376bc532e65/1/stHoot9Ng7hC0x9jsUNCl2jKc9I.roa
Signing time: Tue 21 Feb 2023 17:57:17 +0000
ROA not before: Tue 21 Feb 2023 17:57:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199785
IP address blocks: 217.114.43.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:75:1f:65:88:6a:92:19:6f:1a:2e:e2:10:b0:66:06:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca9a85c552fcc60839059feadb0519c65c1bdf54
Validity
Not Before: Feb 21 17:57:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b2d1e8a2df4d83b842d31f63b143429768ca73d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:86:c0:18:4e:71:46:c5:0a:2f:96:1c:58:1d:
f8:b7:f7:00:42:23:ec:c1:83:a5:09:77:88:23:3d:
c8:ae:85:91:25:08:1b:85:95:7a:f2:f8:b5:d5:bc:
7d:18:0b:a5:2a:bd:38:c2:ea:85:f0:8a:b7:6d:cd:
1f:18:93:79:eb:c4:f9:a7:03:b0:ed:d7:d6:39:13:
24:1c:24:5d:ca:57:ee:a6:7c:ac:78:27:7b:3c:9d:
03:39:50:d0:1d:f1:68:7b:b9:0a:88:09:65:b1:7a:
2a:eb:3c:3c:05:38:c3:c1:5b:36:3d:5d:43:bb:92:
e3:d4:b0:07:b1:ca:e4:30:5b:ef:94:12:d8:40:d1:
10:fb:02:e3:bc:8d:fb:e9:af:01:a5:8e:39:9a:0f:
a3:e4:e5:a1:16:84:e4:60:bb:ac:35:ba:cf:f7:56:
87:c5:2a:ce:c3:1f:22:08:d9:cc:7e:e0:00:84:46:
6e:21:c6:45:5c:85:1f:e2:1a:a1:c9:ac:f5:27:a7:
78:1c:d1:66:1b:90:23:7f:de:e4:70:57:e2:37:db:
00:90:e5:4f:f9:1f:9d:1e:11:8b:81:4c:25:0b:b5:
29:db:b8:1e:89:98:46:36:84:9d:05:f8:d9:48:33:
28:39:20:7f:f7:51:f3:43:b5:b8:5d:9a:26:f2:da:
f4:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:D1:E8:A2:DF:4D:83:B8:42:D3:1F:63:B1:43:42:97:68:CA:73:D2
X509v3 Authority Key Identifier:
keyid:CA:9A:85:C5:52:FC:C6:08:39:05:9F:EA:DB:05:19:C6:5C:1B:DF:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypqFxVL8xgg5BZ_q2wUZxlwb31Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/cd3dd7-b6bc-4a00-a64a-c376bc532e65/1/stHoot9Ng7hC0x9jsUNCl2jKc9I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/cd3dd7-b6bc-4a00-a64a-c376bc532e65/1/ypqFxVL8xgg5BZ_q2wUZxlwb31Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.114.43.0/24
Signature Algorithm: sha256WithRSAEncryption
66:b5:76:e9:ad:70:76:31:75:9b:89:4f:ea:02:8c:82:be:aa:
07:ec:c6:37:6d:56:cc:de:1d:74:7c:35:57:5d:08:4a:da:b0:
b9:18:84:20:8d:51:b5:cc:5c:cf:fe:b4:b8:25:42:24:67:c1:
10:16:13:c6:d4:42:2e:a2:e5:17:54:13:02:78:e7:fb:0a:21:
ab:56:1a:e3:4e:b1:5c:6f:6e:7b:04:d0:dd:7e:87:21:fc:9f:
00:31:88:ff:2e:70:94:f5:dd:92:1c:0a:c1:49:1b:4d:95:24:
6c:06:5f:d5:c7:a0:aa:dc:47:14:6b:16:45:3f:d0:e1:07:28:
53:5f:c5:f2:99:a9:6b:0f:e8:ef:ee:fa:69:12:f5:a5:4a:81:
29:e2:a2:78:8e:dc:db:bc:64:8f:09:68:e0:1c:f5:7e:21:d9:
42:5f:ce:a4:9e:d7:32:c2:47:00:3b:73:c0:42:43:a4:de:d1:
06:a3:d6:3b:bc:63:54:5d:4e:dc:38:95:16:ee:8a:17:3e:c1:
f0:02:ff:e1:6c:dd:ba:c4:2e:25:24:d9:f0:a9:5d:7f:61:0c:
c6:e0:6e:d4:55:de:03:01:0f:2d:20:e2:35:6b:5f:fe:ea:cf:
1d:95:d1:51:d8:75:49:67:7b:91:a8:30:4c:be:da:15:04:a9:
51:df:80:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:13 2024 by rpki-client on console-fra.rpki-client.org