Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/a4d3f6-1e46-47d3-a5d0-ff89917d40d0/1/uUYW2PRi-dNGIEGRG1D8JkHeLSM.roa
File: uUYW2PRi-dNGIEGRG1D8JkHeLSM.roa (raw, json)
Hash identifier: 5lHsewKlOUZf4xODWub0tkLuoFUtYIPek7TCB9htYU4=
Subject key identifier: B9:46:16:D8:F4:62:F9:D3:46:20:41:91:1B:50:FC:26:41:DE:2D:23
Certificate issuer: /CN=147ced88a406124c8c4df166c5740509e6415d2a
Certificate serial: 0124F8BB
Authority key identifier: 14:7C:ED:88:A4:06:12:4C:8C:4D:F1:66:C5:74:05:09:E6:41:5D:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FHztiKQGEkyMTfFmxXQFCeZBXSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/a4d3f6-1e46-47d3-a5d0-ff89917d40d0/1/uUYW2PRi-dNGIEGRG1D8JkHeLSM.roa
Signing time: Fri 28 Jan 2022 14:21:19 +0000
ROA not before: Fri 28 Jan 2022 14:21:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 37.140.247.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19200187 (0x124f8bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=147ced88a406124c8c4df166c5740509e6415d2a
Validity
Not Before: Jan 28 14:21:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b94616d8f462f9d3462041911b50fc2641de2d23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e6:b6:da:9b:c3:38:ca:68:29:36:35:30:2a:
74:f4:2b:a3:36:2a:4a:11:ba:2d:75:9f:42:47:ff:
9c:70:98:de:2c:f0:f1:b6:3d:06:f2:a4:cc:fc:79:
f5:79:1f:6c:bd:60:5e:75:00:1d:44:b6:3d:3a:9e:
fe:bc:e7:0f:f5:af:1c:4d:71:7c:cb:84:d9:f3:a4:
26:93:e8:ac:22:8f:bb:04:02:5a:4b:8a:e7:81:ec:
f6:6e:20:5f:f6:84:75:ed:6e:06:08:d0:a9:5e:a2:
01:0f:09:6c:c9:1c:e1:c4:60:03:4e:33:60:ef:cd:
8a:81:0f:02:47:f6:b7:c5:5e:ce:e7:15:91:26:7d:
54:26:25:33:d7:18:47:47:e1:3b:63:c7:94:64:7b:
78:c8:52:f8:00:ac:17:77:d2:4b:1c:39:d2:ea:b1:
98:d3:96:1c:50:dd:44:26:6b:d0:1b:2f:32:74:6e:
10:8e:31:7e:08:45:c2:6f:1a:1d:c6:a4:6a:f9:d5:
41:6f:f2:08:4b:31:5a:8a:75:39:4e:98:e1:77:35:
9f:aa:7e:45:3b:b5:4d:78:c7:9e:6e:b2:e4:b1:fc:
ea:6a:19:78:6a:cf:80:64:a0:91:4b:35:d3:0d:de:
ba:d3:72:63:e9:5e:f7:73:b5:96:ed:5c:1d:95:68:
7e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:46:16:D8:F4:62:F9:D3:46:20:41:91:1B:50:FC:26:41:DE:2D:23
X509v3 Authority Key Identifier:
keyid:14:7C:ED:88:A4:06:12:4C:8C:4D:F1:66:C5:74:05:09:E6:41:5D:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FHztiKQGEkyMTfFmxXQFCeZBXSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a4d3f6-1e46-47d3-a5d0-ff89917d40d0/1/uUYW2PRi-dNGIEGRG1D8JkHeLSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a4d3f6-1e46-47d3-a5d0-ff89917d40d0/1/FHztiKQGEkyMTfFmxXQFCeZBXSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.247.0/24
Signature Algorithm: sha256WithRSAEncryption
d6:c6:c9:d4:53:d8:7c:f8:96:d3:a6:f3:7d:6b:33:5b:23:df:
f2:3f:4d:f5:59:30:dd:81:ee:c1:2a:9c:bd:83:29:1d:84:57:
5d:26:b9:4b:12:7b:0e:90:ab:3b:a3:72:d2:b4:97:1a:d4:65:
d0:55:8a:90:fd:f6:0e:b9:e1:ae:d3:1c:85:3d:f2:78:1d:7d:
14:55:f8:40:86:45:94:cb:60:f5:84:bf:b7:a9:45:e4:6f:92:
2e:60:d4:39:c9:e5:e0:04:b0:55:b8:69:38:9e:c4:da:32:82:
6a:8a:35:6b:d6:6d:fe:94:2e:3d:f5:bf:08:17:1e:c2:9e:32:
20:90:3e:16:5b:e3:43:18:4f:c2:e7:e8:05:ee:2c:20:d4:95:
9b:0c:83:13:cb:98:86:e1:3d:43:39:71:78:f1:c3:e4:6d:b5:
c3:59:8f:4d:bc:a7:b0:b3:66:f6:dc:20:84:38:b0:fc:81:50:
db:11:4f:10:b1:ed:0e:c7:8c:bc:9b:59:4c:0b:ce:01:49:f4:
12:91:22:ba:6d:ef:a4:e7:bd:64:01:fc:9a:e6:25:c3:22:64:
cc:3a:79:b7:fb:c9:f0:94:d5:5b:d0:3f:d1:ce:e3:c8:0e:7c:
33:5a:31:c0:a6:e0:49:13:fd:f2:e5:b1:c2:d4:59:86:3d:be:
e9:49:58:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:52 2024 by rpki-client on console-fra.rpki-client.org