Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/475e8c-c8f4-4624-b13f-ca36748c8ff9/1/cnx2MHCduCNNtFnPADS_qFTKVW0.roa
File: cnx2MHCduCNNtFnPADS_qFTKVW0.roa (raw, json)
Hash identifier: pOM7WqQWT9Jos2OOOf9p+AZTXWUkipvlS6FZPYJkgdg=
Subject key identifier: 72:7C:76:30:70:9D:B8:23:4D:B4:59:CF:00:34:BF:A8:54:CA:55:6D
Certificate issuer: /CN=98deece20f0b24085fc69cf7a02affc7b1328250
Certificate serial: 0103222A
Authority key identifier: 98:DE:EC:E2:0F:0B:24:08:5F:C6:9C:F7:A0:2A:FF:C7:B1:32:82:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mN7s4g8LJAhfxpz3oCr_x7EyglA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/475e8c-c8f4-4624-b13f-ca36748c8ff9/1/cnx2MHCduCNNtFnPADS_qFTKVW0.roa
Signing time: Sat 01 Jan 2022 10:00:46 +0000
ROA not before: Sat 01 Jan 2022 10:00:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 193.162.135.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16982570 (0x103222a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98deece20f0b24085fc69cf7a02affc7b1328250
Validity
Not Before: Jan 1 10:00:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=727c7630709db8234db459cf0034bfa854ca556d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e2:a7:52:13:1f:43:d3:1f:a9:5c:78:ec:12:
0c:b2:2b:af:41:8f:20:0d:50:87:73:c7:a7:de:ea:
ae:d4:dd:f7:7f:8d:26:aa:34:ac:85:e2:ac:bc:b1:
b3:da:8c:b6:80:2b:f0:cf:13:6e:4b:ad:da:f9:4a:
bf:af:38:2b:a4:99:88:af:a8:58:a0:ae:c2:44:55:
3b:4a:42:9d:7c:be:b6:d8:9a:c6:15:83:e2:98:05:
0c:cc:28:4e:de:96:20:ab:03:00:42:9d:90:ac:75:
bd:c7:05:69:ab:1b:26:77:f6:f1:09:e1:69:37:c2:
2e:0d:db:9b:f4:fb:37:ed:8e:ff:f9:91:00:b0:f8:
73:00:cd:2c:1b:06:28:3f:68:55:69:0d:93:f2:2a:
ec:37:20:4f:d4:b1:81:dc:5c:b5:08:86:36:8d:03:
6c:b5:5a:ef:fe:0e:29:87:14:8f:c1:f1:f0:ab:37:
43:79:2a:b3:85:f4:12:f1:9a:8f:6c:ac:1a:9c:47:
c0:fa:60:a7:48:34:8c:00:bd:2b:66:a7:65:64:f6:
17:43:fb:fe:62:0e:40:1a:27:16:52:09:a5:d4:11:
54:ca:14:3c:25:90:17:6b:63:95:1e:29:65:30:48:
75:f0:ef:02:1c:a4:ad:77:ff:4e:7a:d9:f7:5f:72:
ef:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:7C:76:30:70:9D:B8:23:4D:B4:59:CF:00:34:BF:A8:54:CA:55:6D
X509v3 Authority Key Identifier:
keyid:98:DE:EC:E2:0F:0B:24:08:5F:C6:9C:F7:A0:2A:FF:C7:B1:32:82:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mN7s4g8LJAhfxpz3oCr_x7EyglA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/475e8c-c8f4-4624-b13f-ca36748c8ff9/1/cnx2MHCduCNNtFnPADS_qFTKVW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/475e8c-c8f4-4624-b13f-ca36748c8ff9/1/mN7s4g8LJAhfxpz3oCr_x7EyglA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.162.135.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:ea:6b:95:26:64:ca:56:f7:29:cb:d0:a5:55:46:4f:3b:f6:
31:1b:21:ee:8d:9d:15:11:f5:48:6e:c1:08:e1:bf:8f:81:be:
17:9c:62:ce:b4:63:f1:74:86:5f:36:7e:97:74:65:22:b3:8e:
bb:62:71:97:6f:76:fb:00:5d:f7:b3:62:8c:d9:51:80:69:c5:
fa:57:0e:c2:41:0a:28:4e:dc:4f:61:ba:9b:8e:c6:c1:66:64:
41:66:c7:88:c6:29:96:e9:1a:68:c2:5c:26:a6:12:52:09:7f:
f0:b4:c0:82:9c:48:41:e4:3b:f9:27:9e:7f:1c:7a:28:67:0d:
30:11:51:d6:2a:89:b9:ca:c9:7d:f9:b9:33:27:62:84:87:be:
7d:aa:27:f8:0f:d6:a9:ae:c3:88:4f:e3:d1:81:af:50:19:c4:
c7:55:50:de:17:8b:46:fc:76:d8:e4:41:62:de:97:d6:7c:16:
8a:fe:ef:66:53:14:76:49:f6:dd:3c:68:58:fb:1e:7d:a0:d9:
d5:0b:8e:a2:14:53:ce:1c:bc:dc:20:79:35:e7:4d:73:6d:23:
b0:09:d4:da:9e:b8:63:26:0b:d5:91:45:b3:0c:ff:97:84:25:
3f:a8:24:b2:c5:9e:f0:6d:10:5c:fb:1f:af:3f:e1:00:2d:b5:
c4:f3:1b:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:41 2024 by rpki-client on console-fra.rpki-client.org