Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/4d5fe4-a29d-4e48-a314-09c2e6327751/1/IGsHudW7r0eP_UKmyc1JK2JDqmY.roa
File: IGsHudW7r0eP_UKmyc1JK2JDqmY.roa (raw, json)
Hash identifier: HipvwBKj8VuWdm6gIGauDr/eg+aewoOJurQYI0QEpQg=
Subject key identifier: 20:6B:07:B9:D5:BB:AF:47:8F:FD:42:A6:C9:CD:49:2B:62:43:AA:66
Certificate issuer: /CN=8d64450f71aaaeff16548fc3477cd55e10ea8c45
Certificate serial: 01856CB83A20BF182594A729C447E5E80E82
Authority key identifier: 8D:64:45:0F:71:AA:AE:FF:16:54:8F:C3:47:7C:D5:5E:10:EA:8C:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jWRFD3Gqrv8WVI_DR3zVXhDqjEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/4d5fe4-a29d-4e48-a314-09c2e6327751/1/IGsHudW7r0eP_UKmyc1JK2JDqmY.roa
Signing time: Sun 01 Jan 2023 09:44:50 +0000
ROA not before: Sun 01 Jan 2023 09:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56655
IP address blocks: 194.32.107.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:3a:20:bf:18:25:94:a7:29:c4:47:e5:e8:0e:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d64450f71aaaeff16548fc3477cd55e10ea8c45
Validity
Not Before: Jan 1 09:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=206b07b9d5bbaf478ffd42a6c9cd492b6243aa66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:77:58:59:52:cd:17:7f:a9:5e:b8:9a:61:f2:
08:5c:12:7d:a9:6d:38:23:ad:c0:b4:55:3c:a3:b8:
75:7d:75:df:77:e2:a5:49:5f:66:2f:94:c6:39:21:
d4:37:c0:b3:5a:fe:3f:5d:4b:d2:1b:7c:d1:42:2e:
0c:8c:3d:6e:9e:c0:cb:22:13:d4:c8:46:52:3c:05:
15:f9:ef:e4:5c:bd:60:d2:b8:88:9b:92:c4:6b:2b:
7e:b8:74:12:bf:bf:81:d1:b2:bc:1a:a3:23:4e:d5:
29:c8:f2:92:58:e7:4a:5f:82:55:91:b3:39:72:f2:
f3:be:5e:fc:6c:3a:c7:f9:9a:65:c6:c6:d8:60:3e:
91:7b:bf:73:f6:09:57:52:53:44:6e:af:99:e3:a6:
81:4f:0c:79:0a:c7:4a:66:3c:96:e6:ad:ad:69:58:
90:1b:91:90:00:cd:32:60:25:1b:38:3d:48:e4:1a:
66:4a:38:c8:c8:d6:a7:9f:d3:1b:70:59:0d:e2:dc:
92:87:ce:59:d9:90:d0:6f:86:11:73:c1:4f:15:4c:
d7:5e:88:d6:a9:ea:7d:a0:e8:e2:df:83:ba:93:41:
cd:15:e2:96:bd:2c:8a:9a:69:ad:fa:4e:2b:dd:e7:
ff:44:23:23:eb:02:d9:e7:9e:bc:6f:97:e1:65:86:
a9:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:6B:07:B9:D5:BB:AF:47:8F:FD:42:A6:C9:CD:49:2B:62:43:AA:66
X509v3 Authority Key Identifier:
keyid:8D:64:45:0F:71:AA:AE:FF:16:54:8F:C3:47:7C:D5:5E:10:EA:8C:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jWRFD3Gqrv8WVI_DR3zVXhDqjEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/4d5fe4-a29d-4e48-a314-09c2e6327751/1/IGsHudW7r0eP_UKmyc1JK2JDqmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/4d5fe4-a29d-4e48-a314-09c2e6327751/1/jWRFD3Gqrv8WVI_DR3zVXhDqjEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.32.107.0/24
Signature Algorithm: sha256WithRSAEncryption
98:0f:c3:72:cc:9a:de:d5:4b:d1:e4:f4:a0:a2:8d:64:24:f9:
dc:6f:6c:3e:63:ef:c8:42:ba:a6:19:c8:8a:21:b4:02:52:c3:
db:54:3e:41:25:b5:2a:a1:a7:db:1a:33:8c:b2:68:4d:35:a9:
f9:9d:b8:3e:1f:54:db:8f:6e:36:59:84:c8:c6:27:92:c5:fc:
95:6e:5c:67:8b:c3:98:07:10:24:45:67:ab:ca:51:48:4a:56:
59:82:d6:20:80:70:14:1f:58:01:30:6c:4e:24:36:b1:b0:91:
ea:ac:7e:a2:c9:c4:0e:05:d8:09:ff:57:22:3b:a5:7a:03:fe:
44:6f:43:4b:0b:56:8d:e6:d7:10:80:7c:82:18:e7:48:71:df:
64:0c:f2:92:17:c9:6b:e4:14:78:d8:9e:d1:4a:94:98:f3:6b:
3a:26:db:88:5f:58:2f:eb:d6:12:a5:f6:0f:06:f7:cb:b2:7c:
30:b5:c8:58:b1:d0:8d:9f:b4:53:11:f4:93:39:42:26:6e:9a:
e6:ef:a2:91:1f:68:55:2f:8d:ef:d9:3d:41:c0:d0:6d:75:51:
a4:9e:3d:3e:8c:57:50:d1:46:47:01:52:e5:35:b2:8c:ad:48:
d4:43:af:d0:43:17:ae:9c:f0:4a:7e:9a:8e:6a:fe:78:7d:02:
80:af:db:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:08 2024 by rpki-client on console-ams.rpki-client.org