Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/702da5-c2cb-4b66-b299-dc5e0c46e76c/1/1skdg-hB-fOn63ErgV3TwpiRHjQ.roa
File: 1skdg-hB-fOn63ErgV3TwpiRHjQ.roa (raw, json)
Hash identifier: OdvLpoh75MYQisw1WVyd7KFXs2GX7D2xy3yoBsfxFUM=
Subject key identifier: D6:C9:1D:83:E8:41:F9:F3:A7:EB:71:2B:81:5D:D3:C2:98:91:1E:34
Certificate issuer: /CN=d997d06eda361d935588e427f3d9833f8f7d1d20
Certificate serial: 082B3358
Authority key identifier: D9:97:D0:6E:DA:36:1D:93:55:88:E4:27:F3:D9:83:3F:8F:7D:1D:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ZfQbto2HZNViOQn89mDP499HSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/702da5-c2cb-4b66-b299-dc5e0c46e76c/1/1skdg-hB-fOn63ErgV3TwpiRHjQ.roa
Signing time: Mon 16 May 2022 10:24:30 +0000
ROA not before: Mon 16 May 2022 10:24:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 328614
IP address blocks: 194.147.44.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137048920 (0x82b3358)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d997d06eda361d935588e427f3d9833f8f7d1d20
Validity
Not Before: May 16 10:24:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d6c91d83e841f9f3a7eb712b815dd3c298911e34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f7:77:b1:a9:56:9d:f8:b1:d3:13:58:09:1b:
e9:73:09:bc:fb:39:a9:71:69:3f:21:b1:e9:7f:8e:
c6:43:bb:3e:6f:46:8a:89:03:c6:b9:d6:2e:c3:4f:
dc:5f:b9:cf:dd:93:13:5b:a8:4f:8e:10:21:59:c9:
c5:96:bc:83:9c:7e:2e:2d:c5:a3:19:1a:94:7c:32:
2d:83:45:8e:f7:61:20:b6:ce:e9:57:34:dd:76:cf:
67:ee:b9:3d:c2:07:39:13:32:15:65:6c:43:9c:e3:
b8:09:b0:1c:e6:18:c4:11:a8:4c:59:86:a8:fe:09:
d2:84:d9:99:e0:b6:1d:d5:55:29:e0:ff:16:fc:17:
a3:37:27:0e:27:09:5d:21:01:47:3a:2f:ca:ee:5c:
98:ab:93:dd:a3:fe:2e:44:e6:d2:a6:b4:7c:01:c5:
6a:e5:73:bf:67:74:d5:1d:af:c2:c7:2a:f2:da:8d:
44:09:29:5c:75:cb:48:bd:ac:15:5b:bf:aa:08:46:
6d:bd:67:a7:c5:c3:d4:3a:6f:89:7d:da:f8:90:80:
c0:f5:22:6f:20:ab:5e:85:41:d6:eb:6a:d4:8a:6f:
81:78:ca:d2:f3:24:0f:9b:79:16:1f:2c:5f:4d:38:
10:48:e2:25:d4:76:ad:df:36:e1:ed:b1:cc:85:c8:
1c:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:C9:1D:83:E8:41:F9:F3:A7:EB:71:2B:81:5D:D3:C2:98:91:1E:34
X509v3 Authority Key Identifier:
keyid:D9:97:D0:6E:DA:36:1D:93:55:88:E4:27:F3:D9:83:3F:8F:7D:1D:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ZfQbto2HZNViOQn89mDP499HSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/702da5-c2cb-4b66-b299-dc5e0c46e76c/1/1skdg-hB-fOn63ErgV3TwpiRHjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/702da5-c2cb-4b66-b299-dc5e0c46e76c/1/2ZfQbto2HZNViOQn89mDP499HSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.44.0/24
Signature Algorithm: sha256WithRSAEncryption
96:df:d0:2e:41:54:34:5a:17:bd:ad:fb:a4:25:5a:d0:d4:39:
05:12:f0:7b:d5:09:72:ce:d3:64:f9:dc:d7:1f:c0:79:29:f2:
9f:f8:b5:63:23:ea:e5:22:5c:11:0f:65:c5:1a:22:19:6c:cb:
eb:92:fd:bc:22:24:7e:0d:8b:12:80:46:25:1f:44:d9:ed:8e:
08:a3:ae:18:f9:d0:a9:c9:03:ec:bd:83:37:f5:3d:1d:9c:72:
0e:c2:21:60:b4:98:01:90:b3:91:7f:1a:fe:a2:9e:41:99:99:
9b:23:ac:8b:3d:f7:f3:56:7b:e0:0d:0a:e3:6d:4a:d7:66:3b:
69:68:ba:24:fe:89:e6:c2:5a:08:18:93:fd:30:cf:d5:49:02:
38:a9:fa:19:06:ce:36:e1:84:e7:74:26:81:b1:59:aa:9c:95:
d9:1e:7c:8c:1e:12:00:68:7d:21:a8:49:d0:bd:b8:63:7d:c6:
b1:2f:af:a6:6b:d2:ab:35:f4:b4:ea:08:5c:b7:23:b6:34:77:
22:59:c5:79:70:e2:d7:31:10:92:d5:57:8f:0a:70:80:3d:5f:
2e:8d:a1:dd:3c:e9:26:e8:08:37:c0:3b:78:86:3f:d9:e5:31:
e0:f4:6f:99:d9:a1:82:5c:f0:3a:b2:99:dc:ba:ae:42:37:86:
8a:35:ee:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:35 2024 by rpki-client on console-fra.rpki-client.org