Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/47012a-e1cf-43d7-9351-0edf2c4f7ec0/1/nWKaqd5fHGSw6okFDVs4VO0vckA.roa
File: nWKaqd5fHGSw6okFDVs4VO0vckA.roa (raw, json)
Hash identifier: LE9E6Tvwp2atQEZm2rTkPayQBIyvMYX5Uc7gZ38hm4s=
Subject key identifier: 9D:62:9A:A9:DE:5F:1C:64:B0:EA:89:05:0D:5B:38:54:ED:2F:72:40
Certificate issuer: /CN=df4657812435bb1af4802f96032f91c57cbcc933
Certificate serial: 0188303D753D18943125116BBF508F9999C7
Authority key identifier: DF:46:57:81:24:35:BB:1A:F4:80:2F:96:03:2F:91:C5:7C:BC:C9:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/30ZXgSQ1uxr0gC-WAy-RxXy8yTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/47012a-e1cf-43d7-9351-0edf2c4f7ec0/1/nWKaqd5fHGSw6okFDVs4VO0vckA.roa
Signing time: Thu 18 May 2023 19:01:54 +0000
ROA not before: Thu 18 May 2023 19:01:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202656
IP address blocks: 194.34.249.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:30:3d:75:3d:18:94:31:25:11:6b:bf:50:8f:99:99:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df4657812435bb1af4802f96032f91c57cbcc933
Validity
Not Before: May 18 19:01:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9d629aa9de5f1c64b0ea89050d5b3854ed2f7240
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:b5:0b:0a:5c:20:67:12:15:1c:8d:70:4d:72:
8a:4c:b4:69:48:b3:2f:6f:50:a9:07:40:0c:6f:5b:
75:33:ca:9b:f3:b1:f6:2d:23:b1:15:8e:ef:36:34:
04:c5:73:f7:e3:e5:bf:d7:8e:e4:64:a4:50:35:4a:
8b:2c:f4:eb:bc:38:15:4e:0b:95:5f:4e:a9:3c:47:
97:90:f0:53:23:28:e7:3e:bb:f6:d9:a6:c8:36:c8:
08:56:93:b9:af:83:11:1b:a7:34:03:8c:56:fb:b9:
45:f3:58:56:2c:b2:62:36:2c:53:2d:3b:d0:2d:a4:
02:8d:4f:75:d7:5f:6f:dc:d9:00:53:7d:40:53:0f:
14:7a:e7:7a:e7:39:74:ae:df:b2:89:00:31:03:87:
cc:92:eb:ee:3f:f8:cc:f6:1d:7c:dc:84:19:8f:f8:
5e:d3:15:0d:57:b7:9b:b5:ad:57:1f:1c:2c:87:7d:
55:7c:8e:18:93:76:35:62:15:6c:85:f8:2a:c6:d4:
6a:ce:0b:85:72:69:2f:a3:db:3c:ae:34:d5:15:fa:
f6:3b:33:87:ab:74:4b:75:00:53:5f:5a:7f:3c:01:
8b:b4:3f:93:b1:d9:ff:04:98:aa:14:c2:d7:d9:7b:
2d:83:f6:43:34:ce:10:43:7b:b0:3f:e7:a3:e9:54:
ac:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:62:9A:A9:DE:5F:1C:64:B0:EA:89:05:0D:5B:38:54:ED:2F:72:40
X509v3 Authority Key Identifier:
keyid:DF:46:57:81:24:35:BB:1A:F4:80:2F:96:03:2F:91:C5:7C:BC:C9:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/30ZXgSQ1uxr0gC-WAy-RxXy8yTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/47012a-e1cf-43d7-9351-0edf2c4f7ec0/1/nWKaqd5fHGSw6okFDVs4VO0vckA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/47012a-e1cf-43d7-9351-0edf2c4f7ec0/1/30ZXgSQ1uxr0gC-WAy-RxXy8yTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.34.249.0/24
Signature Algorithm: sha256WithRSAEncryption
65:6b:a7:ec:b5:19:fa:fc:67:e1:7f:48:74:a0:77:ec:cd:14:
b7:ef:c8:ed:b8:b2:a1:27:62:a4:c9:d3:70:63:e2:3b:e2:37:
97:1b:e0:dc:d4:6e:bb:f5:b0:44:70:6d:84:91:d8:31:26:1d:
f1:74:96:e6:ec:08:f0:e2:e0:19:1a:c3:16:bf:39:e2:7d:40:
31:49:6c:32:21:94:13:36:75:2b:36:3d:7a:97:68:67:04:7b:
8a:25:1d:85:66:d0:1e:30:df:82:23:ba:9d:54:92:9a:25:af:
1f:e5:18:22:40:f9:80:cb:fc:01:bd:61:f8:d2:dc:b9:29:8f:
03:ef:90:88:70:cc:96:3b:3f:4c:ac:1a:77:b8:bf:3b:fc:89:
88:5d:15:d2:58:19:74:e3:00:a7:5e:29:4c:a6:e7:a7:45:b0:
b9:25:7e:99:9a:1d:2d:e5:36:5d:65:f6:47:48:22:e3:5c:9f:
74:b5:9e:f0:ee:88:57:59:38:c7:f9:79:5f:d3:ed:d7:89:95:
2e:28:e2:3c:e4:2d:d0:4e:f2:3c:d0:4e:49:f8:99:f9:bd:c6:
46:42:90:4b:4d:84:2c:fe:cc:12:5c:89:a0:c1:1e:14:7e:e1:
ea:2d:89:50:b8:8f:ca:c0:6b:0f:08:65:cc:ae:5d:d4:dc:1d:
9f:87:cb:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:31 2023 by rpki-client on console-fra.rpki-client.org