Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/b4b509-4a06-4bc4-9384-53e410825676/1/YRLGZWjuaL_MxmkU2yfKmCuwcRQ.roa
File: YRLGZWjuaL_MxmkU2yfKmCuwcRQ.roa (raw, json)
Hash identifier: t5z97Xej7U9ogA4yEhMl0lts/IziQhFrhF3CLi4I4yE=
Subject key identifier: 61:12:C6:65:68:EE:68:BF:CC:C6:69:14:DB:27:CA:98:2B:B0:71:14
Certificate issuer: /CN=4dbc0c0633cbef2e97fceac797633d4912f76f96
Certificate serial: 0185E86A9ABF1475F1CB310800E48DBE8688
Authority key identifier: 4D:BC:0C:06:33:CB:EF:2E:97:FC:EA:C7:97:63:3D:49:12:F7:6F:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TbwMBjPL7y6X_OrHl2M9SRL3b5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/b4b509-4a06-4bc4-9384-53e410825676/1/YRLGZWjuaL_MxmkU2yfKmCuwcRQ.roa
Signing time: Wed 25 Jan 2023 10:12:58 +0000
ROA not before: Wed 25 Jan 2023 10:12:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 193.246.103.0/24 maxlen: 24
193.246.4.0/24 maxlen: 24
193.246.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e8:6a:9a:bf:14:75:f1:cb:31:08:00:e4:8d:be:86:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dbc0c0633cbef2e97fceac797633d4912f76f96
Validity
Not Before: Jan 25 10:12:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6112c66568ee68bfccc66914db27ca982bb07114
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:82:98:a2:6d:6f:26:03:7a:03:7a:af:43:9c:
b2:39:b3:69:a7:ee:75:5d:d3:aa:0d:f0:ae:b8:6d:
00:7c:d0:b9:ad:5a:de:0d:2d:06:ac:97:ed:03:ca:
48:fa:ab:d5:85:83:5f:e9:a8:f7:ee:03:06:6c:50:
6a:4e:21:42:e1:13:e3:07:8f:b8:ac:fa:4e:ab:41:
b1:a4:49:4e:5a:db:52:10:ff:db:00:a4:33:be:d9:
05:77:df:53:ae:ae:7e:71:95:23:07:0c:f1:8f:ea:
7e:22:3c:fa:8e:fc:61:db:03:ed:bb:8b:b1:c6:27:
38:96:0a:c1:1d:1c:58:90:0d:ca:47:65:5f:9d:3b:
51:90:3e:ba:76:51:b0:1a:ef:64:54:6a:97:80:86:
98:e5:36:fe:5a:a4:16:52:53:1b:b4:34:8f:03:78:
69:8e:6a:fc:4c:b3:df:e1:11:27:df:7a:87:69:c9:
6a:d1:83:39:84:cb:05:5c:60:1e:d4:81:09:64:0c:
44:2c:39:55:4d:1b:e7:4c:52:87:3a:52:37:ab:84:
9e:84:47:e9:1f:60:11:6d:b6:06:6d:8b:bd:fd:17:
ff:50:6b:29:e1:8a:54:e8:2f:dc:e9:9d:0d:09:a4:
a3:12:36:75:09:f1:1a:03:ee:72:94:e7:83:4e:c3:
41:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:12:C6:65:68:EE:68:BF:CC:C6:69:14:DB:27:CA:98:2B:B0:71:14
X509v3 Authority Key Identifier:
keyid:4D:BC:0C:06:33:CB:EF:2E:97:FC:EA:C7:97:63:3D:49:12:F7:6F:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TbwMBjPL7y6X_OrHl2M9SRL3b5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b4b509-4a06-4bc4-9384-53e410825676/1/YRLGZWjuaL_MxmkU2yfKmCuwcRQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b4b509-4a06-4bc4-9384-53e410825676/1/TbwMBjPL7y6X_OrHl2M9SRL3b5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.4.0/23
193.246.103.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:b2:36:88:e2:30:76:52:1a:86:39:6f:4a:1e:a5:91:05:8d:
19:3e:d2:dd:be:aa:7e:55:6e:67:ec:7e:32:7d:bf:09:99:74:
9b:54:70:b2:69:c7:cf:39:80:14:05:89:c0:fc:a9:2d:82:75:
b6:49:1c:40:2f:2d:fd:94:04:7c:a0:dd:96:b6:00:63:4a:cc:
82:31:cd:fd:c6:15:25:2f:26:48:9f:12:99:2b:e8:e6:e7:d9:
80:1f:44:97:7a:64:70:63:d7:6a:83:d6:f1:90:f3:bf:4d:0c:
a3:f9:c6:2a:7f:cc:0f:32:8f:29:d7:41:f7:6e:bb:1d:f9:d3:
9e:8e:e4:e8:6d:e6:21:20:f6:e3:42:8d:5d:92:11:e5:e5:df:
ed:0c:30:a9:17:4e:a1:fc:c8:92:a6:5e:b8:be:0d:be:73:4d:
1c:b2:ac:db:03:9f:fe:9e:fb:e4:e6:c3:16:2c:b1:e8:9f:b7:
bb:db:d3:1a:b5:8e:c5:50:fa:fb:72:de:3f:46:f6:ca:49:88:
b1:b6:d8:65:9e:95:a1:ad:63:e8:66:ab:d5:5e:c6:a0:b6:d4:
66:23:f8:80:84:61:9b:a4:32:bb:1d:a7:82:a9:95:2e:b4:ae:
b6:64:e2:23:27:4b:d0:3e:49:9b:c8:8a:0a:d4:de:21:58:7d:
ef:eb:68:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:27 2024 by rpki-client on console-ams.rpki-client.org