Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/053e2e-795f-434c-a623-900eace52766/1/HgM5c1js_3jy0QpxHnuk2HeeSEU.roa
File: HgM5c1js_3jy0QpxHnuk2HeeSEU.roa (raw, json)
Hash identifier: N/CH3LLIBgXqb84K5nC4HDEN2UGbROR6rdBCVhoaCRA=
Subject key identifier: 1E:03:39:73:58:EC:FF:78:F2:D1:0A:71:1E:7B:A4:D8:77:9E:48:45
Certificate issuer: /CN=d7972a72bfcf9bc118073fdd7cfb660be863b28c
Certificate serial: 01187E65
Authority key identifier: D7:97:2A:72:BF:CF:9B:C1:18:07:3F:DD:7C:FB:66:0B:E8:63:B2:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/15cqcr_Pm8EYBz_dfPtmC-hjsow.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/053e2e-795f-434c-a623-900eace52766/1/HgM5c1js_3jy0QpxHnuk2HeeSEU.roa
Signing time: Sat 01 Jan 2022 08:00:25 +0000
ROA not before: Sat 01 Jan 2022 08:00:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57665
IP address blocks: 31.222.16.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18382437 (0x1187e65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7972a72bfcf9bc118073fdd7cfb660be863b28c
Validity
Not Before: Jan 1 08:00:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e03397358ecff78f2d10a711e7ba4d8779e4845
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9d:fc:0b:29:06:2d:c6:a1:b4:ba:c1:d8:b4:
2c:c4:4e:0e:10:87:bd:b1:26:e3:57:ef:21:a4:f0:
e9:e6:05:b9:d0:66:d3:71:66:af:81:c7:a5:2e:37:
7b:c8:f7:8f:26:d2:ef:5e:f7:7e:29:1e:f5:4b:fd:
5a:28:6e:71:74:80:fe:a8:4d:ab:a9:66:18:b1:87:
e4:c1:5a:8e:44:4e:71:54:f3:71:6f:e8:fe:0e:fc:
ce:89:45:e5:28:e8:e7:52:5e:00:ca:f4:60:0d:a4:
b5:67:52:73:0e:e6:9f:36:a1:7c:e2:48:58:ab:4f:
77:8f:18:76:42:f9:3a:8c:df:80:9c:07:58:7e:58:
a0:10:48:6f:7e:df:21:35:14:10:bf:12:f6:fa:25:
98:d8:33:23:21:d3:73:52:d6:76:02:1a:c6:df:31:
e8:f1:61:18:1d:75:71:a7:d6:51:bd:0e:81:4f:aa:
30:58:ff:d9:45:bf:80:7a:ae:49:28:6d:ad:8d:3e:
3c:cd:70:7a:1a:10:f2:63:a9:8c:9b:6f:de:d5:e7:
92:d2:88:f8:f5:0d:d9:c5:10:ea:51:01:c7:19:f0:
97:a3:17:a3:32:51:64:ab:2a:ab:d2:d4:4a:46:0f:
dc:14:e1:d7:b0:4a:43:1d:aa:9d:e8:69:62:86:6e:
3d:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:03:39:73:58:EC:FF:78:F2:D1:0A:71:1E:7B:A4:D8:77:9E:48:45
X509v3 Authority Key Identifier:
keyid:D7:97:2A:72:BF:CF:9B:C1:18:07:3F:DD:7C:FB:66:0B:E8:63:B2:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/15cqcr_Pm8EYBz_dfPtmC-hjsow.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/053e2e-795f-434c-a623-900eace52766/1/HgM5c1js_3jy0QpxHnuk2HeeSEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/053e2e-795f-434c-a623-900eace52766/1/15cqcr_Pm8EYBz_dfPtmC-hjsow.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.16.0/21
Signature Algorithm: sha256WithRSAEncryption
22:53:a1:83:00:a1:0b:c1:e0:52:67:9f:dc:02:09:76:66:75:
c0:ce:6d:dd:22:80:4c:4a:6f:2c:e5:34:48:3a:11:30:0c:31:
7a:ad:02:a1:30:29:d9:83:f8:19:f2:4e:50:88:ba:a9:45:0c:
02:2d:29:d2:c7:ab:11:35:77:41:b5:6b:60:46:c2:13:d6:7f:
01:76:1d:0f:a2:1a:a1:20:ae:f5:9d:a6:79:45:10:a6:7f:48:
09:78:53:f4:c7:d1:df:07:8d:1b:61:43:11:8a:fc:cf:08:76:
92:73:ea:1a:e5:d5:a0:00:36:8d:bb:c0:4d:07:7f:97:17:45:
fa:24:6a:4b:17:e1:31:24:bc:b3:fb:ef:7f:65:f1:2b:4f:a5:
80:21:b9:34:95:f0:8e:dc:94:da:01:3f:0c:72:74:1f:72:87:
a2:e0:60:61:32:e0:c9:bc:30:a2:06:81:00:5d:76:04:4b:34:
38:e6:08:24:f1:a8:32:cd:7f:2b:28:8c:da:4c:23:7a:ca:7f:
a2:2a:09:ea:7d:f8:ac:37:65:f6:4f:0c:a3:fd:82:40:d2:0d:
17:24:b3:4c:76:01:5b:77:74:ff:fb:95:70:f1:fe:65:fa:f3:
10:5f:85:c8:e9:86:cf:94:e3:10:03:f0:07:42:e6:58:57:28:
15:9c:f4:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:01 2024 by rpki-client on console-fra.rpki-client.org