Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/a4d3f6-1e46-47d3-a5d0-ff89917d40d0/1/qjrRFPcvtAF36CAHIdOmXv3auuo.roa
File: qjrRFPcvtAF36CAHIdOmXv3auuo.roa (raw, json)
Hash identifier: sUPWazDux83yh5h6TtqNKOQaL7jSqEL3Bu/yq9/akaU=
Subject key identifier: AA:3A:D1:14:F7:2F:B4:01:77:E8:20:07:21:D3:A6:5E:FD:DA:BA:EA
Certificate issuer: /CN=147ced88a406124c8c4df166c5740509e6415d2a
Certificate serial: 01856EAFB5DD6250E011A5F10106B9EED88C
Authority key identifier: 14:7C:ED:88:A4:06:12:4C:8C:4D:F1:66:C5:74:05:09:E6:41:5D:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FHztiKQGEkyMTfFmxXQFCeZBXSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/a4d3f6-1e46-47d3-a5d0-ff89917d40d0/1/qjrRFPcvtAF36CAHIdOmXv3auuo.roa
Signing time: Sun 01 Jan 2023 18:54:47 +0000
ROA not before: Sun 01 Jan 2023 18:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 37.140.247.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:af:b5:dd:62:50:e0:11:a5:f1:01:06:b9:ee:d8:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=147ced88a406124c8c4df166c5740509e6415d2a
Validity
Not Before: Jan 1 18:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aa3ad114f72fb40177e8200721d3a65efddabaea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:17:3f:02:06:a4:9f:3a:0b:a0:53:ab:fd:18:
c5:83:db:03:ae:14:1c:3a:7d:da:54:31:12:e1:ce:
6e:1b:ce:b7:f9:fe:0f:d0:41:c2:f3:33:14:f3:98:
e6:f5:5b:af:77:84:1b:81:a7:29:80:bc:78:59:c6:
1d:9b:27:ca:7c:9f:d3:15:e6:18:a9:f4:68:9e:44:
30:f0:06:ed:62:5f:7e:d0:d7:40:8c:e9:95:38:8c:
14:aa:ce:2d:5d:9d:d8:bc:f0:3e:00:19:22:25:ed:
74:47:ef:cc:c6:31:8f:e9:9a:f2:62:25:3c:a7:8c:
08:15:ab:34:c6:c8:e0:1b:4a:8f:52:15:2c:41:36:
31:75:93:f7:7c:f7:99:51:32:01:61:65:0e:41:01:
cd:e2:ee:db:c8:30:13:01:96:6a:b2:c5:d5:42:90:
3d:e3:8c:2f:43:0f:94:f0:00:45:2f:4c:1d:f0:77:
d4:08:c8:11:f2:22:79:18:dd:6e:b8:89:6f:02:a1:
00:78:16:c5:e1:86:6a:60:fc:de:53:52:15:5a:cc:
38:d1:1d:05:4a:8a:92:65:d5:7b:b0:6a:d2:73:d7:
60:de:6a:f3:fe:0a:a1:48:34:c9:73:8d:35:f0:15:
81:5b:59:c4:65:7c:e1:a0:b7:ba:3e:0c:50:1c:b9:
3b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:3A:D1:14:F7:2F:B4:01:77:E8:20:07:21:D3:A6:5E:FD:DA:BA:EA
X509v3 Authority Key Identifier:
keyid:14:7C:ED:88:A4:06:12:4C:8C:4D:F1:66:C5:74:05:09:E6:41:5D:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FHztiKQGEkyMTfFmxXQFCeZBXSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a4d3f6-1e46-47d3-a5d0-ff89917d40d0/1/qjrRFPcvtAF36CAHIdOmXv3auuo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a4d3f6-1e46-47d3-a5d0-ff89917d40d0/1/FHztiKQGEkyMTfFmxXQFCeZBXSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.247.0/24
Signature Algorithm: sha256WithRSAEncryption
13:fc:cd:10:67:a0:dc:37:de:3b:be:8e:83:4e:eb:a6:f2:63:
45:09:0a:32:f1:0b:72:b0:de:02:85:4f:19:81:7d:b7:3e:56:
6f:05:92:bb:7b:8f:7f:5d:56:db:d0:99:8a:a1:bf:b5:30:0d:
10:40:8e:21:aa:14:1d:fe:a9:7f:96:d3:58:33:cb:79:a8:de:
f8:7f:d6:1a:61:e8:3f:f0:5b:13:b4:45:58:38:be:35:4e:51:
e4:a6:f8:d4:c0:8d:1f:63:96:e3:02:9c:df:a1:c9:e3:2a:2e:
7d:63:a5:b0:7a:8e:2f:1e:81:2d:b6:68:cf:f6:c9:29:6f:6a:
40:f4:f8:00:9e:f5:86:2f:5a:53:f8:3a:19:f8:1e:b3:d1:60:
b6:3a:b8:5a:ee:41:86:33:c4:e5:5f:90:69:a8:e9:cd:08:9a:
18:5c:25:7e:0e:a8:02:53:5f:79:0b:18:f7:f2:d5:1b:87:68:
73:9d:ef:fe:16:24:78:da:c7:47:d8:cf:ab:31:5e:b1:85:e2:
9f:03:b9:93:8e:dc:1c:12:d8:f3:21:4d:a0:c2:c6:28:cd:d9:
fa:10:eb:22:33:43:4e:44:29:3b:2b:c5:68:59:58:f2:3d:f1:
c6:6f:8a:b3:77:9e:4b:0f:f9:0a:e9:7b:59:dc:83:b6:7b:42:
ea:4b:f6:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:52 2024 by rpki-client on console-fra.rpki-client.org