Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/64d090-dbb1-4d07-bd29-ec6837bc869d/1/okObuk4QLeg6YOlLauNKjA0PGO8.roa
File: okObuk4QLeg6YOlLauNKjA0PGO8.roa (raw, json)
Hash identifier: juJLs8/Tnzmtu5Rhla5pvP7k1+VkX2NuIZzymbkHJuU=
Subject key identifier: A2:43:9B:BA:4E:10:2D:E8:3A:60:E9:4B:6A:E3:4A:8C:0D:0F:18:EF
Certificate issuer: /CN=8a11b347e2db6080b12684716cee37bec2aba4ed
Certificate serial: 018297019DC3F4B5F054E0254044589DEBB2
Authority key identifier: 8A:11:B3:47:E2:DB:60:80:B1:26:84:71:6C:EE:37:BE:C2:AB:A4:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ihGzR-LbYICxJoRxbO43vsKrpO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/64d090-dbb1-4d07-bd29-ec6837bc869d/1/okObuk4QLeg6YOlLauNKjA0PGO8.roa
Signing time: Sat 13 Aug 2022 11:40:41 +0000
ROA not before: Sat 13 Aug 2022 11:40:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 193.32.184.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:97:01:9d:c3:f4:b5:f0:54:e0:25:40:44:58:9d:eb:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a11b347e2db6080b12684716cee37bec2aba4ed
Validity
Not Before: Aug 13 11:40:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a2439bba4e102de83a60e94b6ae34a8c0d0f18ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:52:d6:cc:29:df:7d:99:b8:bf:f1:e6:d0:b0:
a7:bd:a0:9d:ec:8d:fa:04:7a:e9:b1:5e:5c:42:03:
c4:be:7b:3e:51:1b:d0:cc:34:10:73:b3:8c:ed:87:
8b:47:b5:18:98:68:9e:3f:f4:c0:94:d6:77:8d:05:
65:f1:b4:9a:dc:8b:c3:92:1b:c5:7a:53:dc:e8:c1:
81:9d:f6:95:2d:41:82:45:fe:f3:31:d3:24:77:fc:
2b:6b:b2:87:1d:97:f8:ed:68:b6:45:1e:3b:23:dd:
43:c2:dd:18:12:02:cb:e6:76:f0:0e:36:75:0e:a0:
21:d6:98:22:9a:3b:06:32:c7:c3:31:ec:1b:5c:d0:
24:c6:65:87:a8:9d:de:69:48:2c:25:1e:2b:6e:ee:
b4:17:7b:30:52:6b:3e:75:79:dc:52:1d:55:23:3c:
bd:49:45:dd:9c:e2:cd:d5:3a:27:a9:8c:65:07:5f:
4b:f6:b4:cd:b2:ea:7f:4a:cf:f4:bf:20:8c:69:79:
58:0c:b6:6c:57:2f:98:8a:aa:e8:31:82:4e:47:55:
3c:a1:5c:84:d8:c4:a2:a5:cb:75:6b:08:cd:04:55:
8f:b5:49:9b:bd:a9:58:7c:d3:1f:6f:e3:2b:41:9c:
0f:91:71:39:bd:e6:ca:e4:a8:3d:f1:25:34:12:aa:
d9:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:43:9B:BA:4E:10:2D:E8:3A:60:E9:4B:6A:E3:4A:8C:0D:0F:18:EF
X509v3 Authority Key Identifier:
keyid:8A:11:B3:47:E2:DB:60:80:B1:26:84:71:6C:EE:37:BE:C2:AB:A4:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ihGzR-LbYICxJoRxbO43vsKrpO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/64d090-dbb1-4d07-bd29-ec6837bc869d/1/okObuk4QLeg6YOlLauNKjA0PGO8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/64d090-dbb1-4d07-bd29-ec6837bc869d/1/ihGzR-LbYICxJoRxbO43vsKrpO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.184.0/22
Signature Algorithm: sha256WithRSAEncryption
60:05:87:0d:fe:f7:05:98:0c:62:27:eb:3e:ac:8f:e2:6d:2c:
da:77:4e:f8:c9:22:81:8d:15:47:d4:d7:1d:99:e5:e7:a9:20:
7f:e1:9d:2f:93:16:c2:c4:87:52:f7:e2:c1:64:19:08:47:ca:
23:8e:a6:aa:17:93:a5:3d:05:e7:97:a9:4a:6a:49:be:bc:20:
72:bf:1f:02:cd:a1:03:5d:5a:cd:68:18:ec:d3:a9:19:af:4e:
ff:b6:24:54:07:46:aa:dc:ac:f2:f1:24:f8:12:2a:7b:18:8d:
b4:e9:6c:8a:3c:2b:2d:fe:df:88:56:63:36:30:06:bc:57:93:
a6:50:f3:8d:32:eb:75:cd:76:60:9b:31:5a:06:aa:78:d6:e0:
a3:02:24:b3:e2:28:e2:6a:db:6e:31:20:7b:8e:c8:18:75:f5:
3c:89:27:5f:02:8b:c9:d0:0e:fb:0f:8b:6b:35:ab:f9:8c:c1:
c1:52:d1:e8:16:e1:a8:c7:5c:8f:72:a1:b6:3c:88:e0:da:24:
7c:73:84:00:a6:65:e6:94:f5:e6:d6:76:03:25:b0:cb:b4:6c:
88:3a:3d:6c:55:85:f9:f9:83:c6:23:1d:83:86:3c:fa:57:94:
a3:15:2f:28:d6:fb:5b:69:70:39:85:9a:3d:5c:1c:db:12:a2:
f6:d4:2f:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:04 2024 by rpki-client on console-fra.rpki-client.org