Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/47012a-e1cf-43d7-9351-0edf2c4f7ec0/1/S4Y-alUWS1O04jka05Si6k77ZC4.roa
File: S4Y-alUWS1O04jka05Si6k77ZC4.roa (raw, json)
Hash identifier: FADTlJN7dY4fo5hZGBevV/a8HLsJCLzqXdANMhQCLnE=
Subject key identifier: 4B:86:3E:6A:55:16:4B:53:B4:E2:39:1A:D3:94:A2:EA:4E:FB:64:2E
Certificate issuer: /CN=df4657812435bb1af4802f96032f91c57cbcc933
Certificate serial: 0185156F9AA1AB19251C181D80FADE5DC7C1
Authority key identifier: DF:46:57:81:24:35:BB:1A:F4:80:2F:96:03:2F:91:C5:7C:BC:C9:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/30ZXgSQ1uxr0gC-WAy-RxXy8yTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/47012a-e1cf-43d7-9351-0edf2c4f7ec0/1/S4Y-alUWS1O04jka05Si6k77ZC4.roa
Signing time: Thu 15 Dec 2022 10:58:33 +0000
ROA not before: Thu 15 Dec 2022 10:58:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 176.53.132.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:15:6f:9a:a1:ab:19:25:1c:18:1d:80:fa:de:5d:c7:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df4657812435bb1af4802f96032f91c57cbcc933
Validity
Not Before: Dec 15 10:58:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4b863e6a55164b53b4e2391ad394a2ea4efb642e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:6b:f9:7b:91:2c:46:cd:d1:fe:d8:cf:2a:de:
65:fd:9a:e0:af:eb:df:ac:48:85:88:89:b5:0b:c8:
31:27:0b:bf:a5:e2:42:ab:ed:73:63:cf:4f:04:7f:
82:58:55:6d:20:73:0d:62:1b:ae:15:83:61:6d:47:
38:1e:7d:90:74:84:e4:1b:a2:12:d1:96:76:42:1f:
ac:09:8e:04:e7:03:54:de:dd:7d:3c:4b:72:87:a1:
ed:38:2b:6a:5c:00:c4:b9:0f:5c:35:41:92:e1:62:
a1:8f:d2:05:40:97:78:78:1b:00:24:71:6e:2b:70:
a8:99:f8:5e:a2:cb:6c:ed:17:0c:d1:d8:76:a7:38:
64:8c:e4:03:3a:fb:dd:6d:ff:ed:ca:4e:d7:18:6c:
fc:bd:05:e4:74:aa:02:81:cf:00:97:fa:6e:a0:09:
db:3e:a9:a9:aa:f6:fe:dc:79:fd:31:45:a6:4e:91:
d1:ed:8e:d5:ef:af:f5:07:d2:cd:17:15:f8:80:5d:
2d:35:16:4c:08:7c:cd:99:e0:9d:69:79:8a:c9:b9:
76:ae:a8:e7:0c:cb:8f:cb:e5:de:03:3b:4a:b7:ac:
76:6f:3c:c0:a3:25:7c:62:e0:d4:2e:ac:28:5a:fa:
36:4f:e5:e9:64:93:81:95:e3:c8:30:b9:22:a2:ab:
88:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:86:3E:6A:55:16:4B:53:B4:E2:39:1A:D3:94:A2:EA:4E:FB:64:2E
X509v3 Authority Key Identifier:
keyid:DF:46:57:81:24:35:BB:1A:F4:80:2F:96:03:2F:91:C5:7C:BC:C9:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/30ZXgSQ1uxr0gC-WAy-RxXy8yTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/47012a-e1cf-43d7-9351-0edf2c4f7ec0/1/S4Y-alUWS1O04jka05Si6k77ZC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/47012a-e1cf-43d7-9351-0edf2c4f7ec0/1/30ZXgSQ1uxr0gC-WAy-RxXy8yTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.53.132.0/24
Signature Algorithm: sha256WithRSAEncryption
33:bb:8d:21:aa:a0:4e:a3:1d:75:3a:69:87:bb:f5:53:34:a6:
01:d5:e6:bb:87:ce:2c:f2:ec:ca:a4:8e:fd:18:84:a2:e1:09:
2d:01:7a:b5:6e:a8:3b:da:30:3e:8a:61:99:f0:84:44:14:32:
8f:9e:9e:b2:78:89:fc:fc:a3:95:19:be:cb:da:4e:da:f1:cd:
21:2b:60:21:7a:83:c5:c6:8d:1b:17:05:10:b2:b8:c7:e4:7e:
83:e3:ba:9f:57:09:80:78:c7:61:53:04:a8:3c:23:52:4d:de:
f3:d6:01:65:a0:72:f4:52:be:4b:a0:88:00:e0:46:cb:85:0e:
55:f5:7a:df:0e:e2:f4:a5:6d:db:3c:36:bc:fe:30:8e:82:fe:
0f:e7:7c:c2:d7:ed:fc:c5:e8:62:bb:5a:50:81:bc:8a:d5:4e:
fe:d3:1d:cd:de:08:f2:3e:7b:94:b1:e4:ea:43:62:37:2b:10:
9e:aa:b8:5b:2e:4d:70:fe:66:87:23:54:56:6d:d5:3a:f5:e3:
b3:81:21:68:32:81:bd:56:fe:84:b8:3b:bc:2c:e5:94:9e:c9:
35:72:89:38:99:a3:2e:ea:cd:5d:46:f6:47:b1:43:67:92:ef:
e5:b1:c3:cf:33:78:32:61:11:87:39:b5:43:80:87:6a:e6:32:
09:75:b6:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:31 2023 by rpki-client on console-fra.rpki-client.org