Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/11b1a0-22f2-40e7-a45f-cb95a286990d/1/hOyVfSpp-xDmalt1hED8v1OBvdQ.roa
File: hOyVfSpp-xDmalt1hED8v1OBvdQ.roa (raw, json)
Hash identifier: J7t8qD2uNfxrJ0ylt+SR/9YQRNHT5ZyqEIsQZEv7X2Y=
Subject key identifier: 84:EC:95:7D:2A:69:FB:10:E6:6A:5B:75:84:40:FC:BF:53:81:BD:D4
Certificate issuer: /CN=aa9318ec68abf7fea3bc9972bca3bde8a14cbd54
Certificate serial: 01040FCF
Authority key identifier: AA:93:18:EC:68:AB:F7:FE:A3:BC:99:72:BC:A3:BD:E8:A1:4C:BD:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qpMY7Gir9_6jvJlyvKO96KFMvVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/11b1a0-22f2-40e7-a45f-cb95a286990d/1/hOyVfSpp-xDmalt1hED8v1OBvdQ.roa
Signing time: Fri 15 Apr 2022 15:18:17 +0000
ROA not before: Fri 15 Apr 2022 15:18:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 193.163.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17043407 (0x1040fcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa9318ec68abf7fea3bc9972bca3bde8a14cbd54
Validity
Not Before: Apr 15 15:18:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=84ec957d2a69fb10e66a5b758440fcbf5381bdd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:5b:ea:9d:98:36:f4:a4:09:d6:73:ff:5e:78:
8b:47:a8:f0:a1:a7:80:bf:17:91:87:6d:3c:fe:7f:
a1:bf:76:1b:73:80:2e:01:e0:a9:b8:71:e1:e3:c9:
8d:8f:cc:c4:77:3d:58:77:76:ac:7b:f4:0c:bc:14:
8e:8d:77:cd:0e:89:b4:9f:53:c2:af:af:d5:e0:1e:
da:93:4e:63:3a:e6:e5:4d:91:45:bd:35:38:e0:1c:
a4:57:14:bb:0c:2a:35:63:42:70:8c:82:e1:13:ee:
8c:0b:96:52:a0:27:e8:35:b1:59:f1:29:f1:51:2e:
01:3a:ae:e2:5a:bc:24:9f:6e:52:09:cb:44:6d:1a:
15:32:b9:30:3d:4e:69:00:4d:ba:e5:a6:8d:21:04:
5e:b9:ea:9d:b5:7d:cd:7d:8d:f6:8a:5f:71:b9:5a:
56:db:06:26:26:ee:68:b0:3f:04:3c:d0:76:5e:d7:
30:14:74:29:24:bd:6e:f0:2f:03:85:bd:00:5a:f4:
0c:95:50:35:c2:1e:da:0c:73:04:a6:12:24:53:b5:
6a:15:07:c2:39:de:0f:2e:9b:74:f2:9b:2d:e0:94:
1d:64:27:d6:88:4a:c6:15:8c:8f:96:28:6f:6b:bf:
89:8d:05:a3:ab:90:1e:e7:21:59:f9:bc:07:4c:39:
33:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:EC:95:7D:2A:69:FB:10:E6:6A:5B:75:84:40:FC:BF:53:81:BD:D4
X509v3 Authority Key Identifier:
keyid:AA:93:18:EC:68:AB:F7:FE:A3:BC:99:72:BC:A3:BD:E8:A1:4C:BD:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qpMY7Gir9_6jvJlyvKO96KFMvVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/11b1a0-22f2-40e7-a45f-cb95a286990d/1/hOyVfSpp-xDmalt1hED8v1OBvdQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/11b1a0-22f2-40e7-a45f-cb95a286990d/1/qpMY7Gir9_6jvJlyvKO96KFMvVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.207.0/24
Signature Algorithm: sha256WithRSAEncryption
24:a8:9e:c9:53:f2:c7:30:83:82:4a:48:b7:fd:ea:55:4f:f8:
d5:6a:f0:6b:43:67:6e:b1:26:54:4b:53:94:08:e8:ae:bb:8f:
dc:21:d8:59:20:aa:70:ae:5b:68:df:71:ed:16:16:da:d5:66:
b6:1d:68:20:f7:6c:67:70:e8:84:28:9e:91:e5:ba:9b:7a:5f:
23:66:00:63:23:a3:00:4f:f8:39:5a:62:7b:e8:4a:66:9b:bc:
ae:2e:92:8d:19:9a:4b:dc:ee:88:06:ad:3b:0f:af:a9:89:ac:
eb:85:99:b7:f4:58:32:98:6f:9c:7e:71:b9:9d:e3:a9:80:61:
d5:0f:1e:ef:b5:73:84:86:c5:e4:c6:48:97:3e:e9:07:8c:47:
e5:c7:7a:1b:bc:2b:d5:fb:10:dd:7f:a0:70:3f:70:db:d2:21:
15:12:f5:5f:44:80:13:ab:7d:35:55:97:3d:81:24:ff:e5:6b:
e4:5c:06:60:8e:3b:e6:b2:1b:97:1e:90:49:6d:0b:c7:df:81:
97:e5:66:20:a8:0e:b2:3b:d8:ed:a9:1d:1b:03:72:dd:22:7d:
9f:28:62:b5:62:96:83:51:0c:1c:bc:0f:85:27:a6:ca:ae:07:
9a:06:2a:66:8e:46:d9:91:cc:03:00:76:97:25:67:0d:dd:b4:
1d:bd:52:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:34 2024 by rpki-client on console-fra.rpki-client.org