Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/81b044-a129-4874-a8a3-adb5e96631f7/1/hjH4NO3zlbmidnFg44NvxBdwA1Q.roa
File: hjH4NO3zlbmidnFg44NvxBdwA1Q.roa (raw, json)
Hash identifier: ccsxfsYUzxTvoxaZzOajYD9bIMUtcMWhgCjJ2d5hqYg=
Subject key identifier: 86:31:F8:34:ED:F3:95:B9:A2:76:71:60:E3:83:6F:C4:17:70:03:54
Certificate issuer: /CN=6a9909e02187344fc514ab054fb1b625e7d57dcc
Certificate serial: 0185737AA663E880B146A8038E1BFED627D5
Authority key identifier: 6A:99:09:E0:21:87:34:4F:C5:14:AB:05:4F:B1:B6:25:E7:D5:7D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/apkJ4CGHNE_FFKsFT7G2JefVfcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/81b044-a129-4874-a8a3-adb5e96631f7/1/hjH4NO3zlbmidnFg44NvxBdwA1Q.roa
Signing time: Mon 02 Jan 2023 17:14:55 +0000
ROA not before: Mon 02 Jan 2023 17:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203991
IP address blocks: 193.30.12.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:7a:a6:63:e8:80:b1:46:a8:03:8e:1b:fe:d6:27:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a9909e02187344fc514ab054fb1b625e7d57dcc
Validity
Not Before: Jan 2 17:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8631f834edf395b9a2767160e3836fc417700354
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:82:cf:ae:37:bb:1d:e8:0c:2e:5c:46:cb:b9:
b4:77:06:9a:51:66:b5:69:3c:92:47:1c:54:a6:14:
2d:9c:03:1f:b1:aa:a8:b5:16:0e:74:16:10:9c:ef:
32:bf:4a:84:c2:a1:27:0d:30:40:0e:ac:94:a2:97:
9f:4a:97:ed:9e:ca:da:5b:75:5e:fe:63:6b:9a:4a:
89:50:6f:ba:52:df:fe:55:eb:d9:ff:68:ce:d6:b6:
f0:2b:f9:2c:df:06:49:6c:0c:00:a7:ca:66:57:12:
7c:87:2c:2d:ff:34:d1:09:8b:00:1b:d9:8f:b5:b2:
e6:a9:0c:97:2f:fb:e9:05:0a:48:de:1f:3f:f8:bf:
37:89:b9:bd:9f:0f:da:d1:23:5a:19:13:08:53:5b:
7e:d0:a5:b1:3c:82:d3:a7:a2:b5:9a:bd:d9:7a:d9:
82:4c:a6:51:55:ef:44:9f:24:05:28:12:de:c6:1c:
0f:7a:7e:e1:85:1f:17:a1:47:69:bf:a7:0b:b6:94:
3d:3f:e8:92:da:5f:0b:5f:c4:c3:f9:8e:c5:53:07:
a4:ce:25:1d:ad:65:f8:ab:24:86:41:1e:cd:bd:58:
ac:84:9a:ca:f2:0a:2d:62:0e:81:3b:3c:6a:b0:e6:
6f:22:de:28:65:5d:b4:2f:76:79:78:7d:82:27:c2:
10:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:31:F8:34:ED:F3:95:B9:A2:76:71:60:E3:83:6F:C4:17:70:03:54
X509v3 Authority Key Identifier:
keyid:6A:99:09:E0:21:87:34:4F:C5:14:AB:05:4F:B1:B6:25:E7:D5:7D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/apkJ4CGHNE_FFKsFT7G2JefVfcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/81b044-a129-4874-a8a3-adb5e96631f7/1/hjH4NO3zlbmidnFg44NvxBdwA1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/81b044-a129-4874-a8a3-adb5e96631f7/1/apkJ4CGHNE_FFKsFT7G2JefVfcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.30.12.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:cf:bf:b3:0b:9a:7e:74:c7:65:d2:b3:28:53:1e:da:67:12:
bf:ba:cc:35:55:ed:c8:ce:e5:f3:33:ac:b8:aa:9c:96:1e:b8:
8c:73:e2:b8:c3:0b:49:11:5e:45:e8:29:88:1b:19:85:00:f3:
7b:bc:c6:3e:8a:aa:6e:82:7c:cf:3e:07:d7:f8:cb:6a:1d:d4:
75:ab:c4:11:97:b9:d7:c0:ed:21:3c:6b:6f:b5:34:bc:7b:18:
39:80:8c:fb:4d:63:96:56:86:bd:83:19:75:14:27:c3:f7:93:
8a:15:93:1f:25:ac:f7:56:bc:89:5c:58:d5:cf:df:0a:b0:28:
28:bb:5b:fc:17:5b:25:86:42:90:67:4b:76:72:64:e1:17:77:
17:50:5f:3e:22:30:74:90:b2:8a:d5:ee:44:17:c8:2d:d8:78:
62:c8:ab:24:fc:03:a0:d4:cb:45:16:91:97:2c:df:43:1e:d6:
fc:4c:1c:d3:20:57:62:2d:78:8e:b0:84:de:14:e9:7f:4b:c6:
a4:c4:a1:c4:41:06:7c:6d:50:71:67:4e:c9:15:57:47:79:0e:
e8:54:bd:a0:fc:39:49:7b:d7:4d:47:6c:3e:1b:80:39:40:35:
df:43:0d:7c:0c:2a:8d:d5:88:7f:ee:28:57:33:7d:fe:2f:d2:
a4:88:7e:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:10 2024 by rpki-client on console-ams.rpki-client.org