Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/b4b509-4a06-4bc4-9384-53e410825676/1/2n1Ld9tYbawKMSE7zceBHWHnqUE.roa
File: 2n1Ld9tYbawKMSE7zceBHWHnqUE.roa (raw, json)
Hash identifier: QePUnvpqRrBebhpUGMu8nkLm+u9AuZrr84gN7UIKRhs=
Subject key identifier: DA:7D:4B:77:DB:58:6D:AC:0A:31:21:3B:CD:C7:81:1D:61:E7:A9:41
Certificate issuer: /CN=4dbc0c0633cbef2e97fceac797633d4912f76f96
Certificate serial: 01852912C949F784F63DCB639E96ED322C97
Authority key identifier: 4D:BC:0C:06:33:CB:EF:2E:97:FC:EA:C7:97:63:3D:49:12:F7:6F:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TbwMBjPL7y6X_OrHl2M9SRL3b5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/b4b509-4a06-4bc4-9384-53e410825676/1/2n1Ld9tYbawKMSE7zceBHWHnqUE.roa
Signing time: Mon 19 Dec 2022 06:29:35 +0000
ROA not before: Mon 19 Dec 2022 06:29:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 193.246.102.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:29:12:c9:49:f7:84:f6:3d:cb:63:9e:96:ed:32:2c:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dbc0c0633cbef2e97fceac797633d4912f76f96
Validity
Not Before: Dec 19 06:29:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da7d4b77db586dac0a31213bcdc7811d61e7a941
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:bf:91:4b:38:da:9d:85:5e:98:47:4d:45:0b:
36:74:0c:73:42:e8:92:8c:13:ae:fd:98:36:e0:51:
32:95:3b:cb:0d:d6:3a:0e:dd:24:80:17:98:6a:d3:
eb:02:60:a1:6d:41:dc:1b:44:30:b3:ef:c0:53:4d:
b8:16:d2:e1:2e:51:d1:b8:33:58:de:f2:b8:d0:33:
65:da:ff:65:43:58:42:9f:3b:1e:3c:ed:3c:40:a2:
41:d9:73:a1:17:29:02:f6:97:b9:95:d4:b5:db:7a:
ff:33:92:b4:bf:97:7a:d1:3e:5b:cc:0d:93:21:ce:
f3:7c:20:f8:23:58:1b:98:0d:18:49:8b:25:29:d9:
c4:52:5a:0a:89:b9:e2:a4:24:bf:74:eb:cc:eb:7b:
64:f5:71:d2:93:7b:40:8e:00:44:bf:8a:77:a4:66:
61:54:52:bd:93:b0:f4:15:08:f2:1d:81:32:ea:f6:
03:15:97:12:a4:b9:a3:27:97:c9:58:61:9f:ea:f9:
f2:fd:a9:d7:01:28:64:f2:9b:6f:3b:20:b3:a7:09:
24:30:47:ef:cd:45:74:81:9a:69:d2:c2:95:83:82:
2d:5b:5e:dd:c9:79:0d:29:b7:93:ac:3e:d3:1b:94:
89:9d:ed:16:81:90:5b:95:48:a0:df:22:01:c2:f9:
d0:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:7D:4B:77:DB:58:6D:AC:0A:31:21:3B:CD:C7:81:1D:61:E7:A9:41
X509v3 Authority Key Identifier:
keyid:4D:BC:0C:06:33:CB:EF:2E:97:FC:EA:C7:97:63:3D:49:12:F7:6F:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TbwMBjPL7y6X_OrHl2M9SRL3b5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b4b509-4a06-4bc4-9384-53e410825676/1/2n1Ld9tYbawKMSE7zceBHWHnqUE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b4b509-4a06-4bc4-9384-53e410825676/1/TbwMBjPL7y6X_OrHl2M9SRL3b5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.102.0/24
Signature Algorithm: sha256WithRSAEncryption
73:83:e1:83:11:8e:c2:fe:cd:58:cf:76:f3:06:8e:03:ef:26:
ad:03:a1:ee:de:cd:b3:89:81:9d:08:df:b8:ed:d8:b2:02:5b:
b9:89:c5:48:28:fe:01:26:1c:fb:58:db:2c:ef:48:6b:30:32:
77:d3:15:47:2f:71:69:7f:6b:03:d1:1c:d4:d5:ca:42:a2:89:
03:0f:2e:a9:92:b9:4a:19:5b:39:93:3f:bc:c6:46:39:f6:6b:
b0:94:66:5f:ce:b9:02:a8:6c:71:08:65:f8:e9:fb:59:c3:72:
3d:8a:5d:fc:d7:fb:46:7c:75:e3:84:d7:4a:88:cd:e8:2f:02:
0c:89:34:af:03:95:10:b1:e3:db:ca:cd:28:1f:77:61:8c:20:
97:dd:c9:20:e0:7f:ba:53:bf:f9:28:08:32:70:69:ee:22:2f:
bc:9d:f0:a4:1a:45:04:50:c3:f6:d0:89:44:7b:bf:4a:b2:e4:
33:c5:b8:8f:df:e3:8b:40:cb:f0:d2:6a:4c:c5:b0:c3:7c:9d:
f1:0f:86:6a:fa:56:6c:ab:2b:66:2d:6c:45:31:b4:61:21:22:
57:24:d6:36:96:4e:fa:70:23:85:53:1e:c4:9a:34:d7:81:fc:
b0:82:b3:87:b8:6c:f2:cf:ec:b9:f4:2c:7f:61:68:3b:66:b9:
e5:8c:b1:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:27 2024 by rpki-client on console-ams.rpki-client.org