Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/cf6c24-ed3d-41ea-98f7-173f2e7a36f1/1/NJYtZRauETo8ch4dz81RPWdGVHI.roa
File: NJYtZRauETo8ch4dz81RPWdGVHI.roa (raw, json)
Hash identifier: xRY11nQgQ0PlevEjIe2/7Vv9e+FNj5k0YQ421CfheBU=
Subject key identifier: 34:96:2D:65:16:AE:11:3A:3C:72:1E:1D:CF:CD:51:3D:67:46:54:72
Certificate issuer: /CN=b53e5447ca064e98ae083556c721d14f2d9a6a52
Certificate serial: 018224F185E738114CBAF563EDEFC8CAB890
Authority key identifier: B5:3E:54:47:CA:06:4E:98:AE:08:35:56:C7:21:D1:4F:2D:9A:6A:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tT5UR8oGTpiuCDVWxyHRTy2aalI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/cf6c24-ed3d-41ea-98f7-173f2e7a36f1/1/NJYtZRauETo8ch4dz81RPWdGVHI.roa
Signing time: Fri 22 Jul 2022 08:06:24 +0000
ROA not before: Fri 22 Jul 2022 08:06:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22653
IP address blocks: 2.58.93.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:24:f1:85:e7:38:11:4c:ba:f5:63:ed:ef:c8:ca:b8:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b53e5447ca064e98ae083556c721d14f2d9a6a52
Validity
Not Before: Jul 22 08:06:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=34962d6516ae113a3c721e1dcfcd513d67465472
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:be:c6:ff:54:6c:45:91:a7:b7:52:f9:4b:c8:
6e:fc:bc:06:e8:7d:dd:b3:3d:df:0b:83:51:91:c8:
27:c5:83:df:75:63:24:60:a4:70:c0:a7:f9:8f:05:
fd:6b:df:90:d9:fe:bd:58:0f:1d:37:ee:bc:8f:56:
a6:37:99:8f:83:c6:8f:a3:5a:e6:fd:df:f5:1c:8a:
16:5b:66:47:6c:fe:18:c8:45:62:d6:e3:b0:65:eb:
01:1d:04:3d:df:d9:61:34:7c:52:15:0f:e7:ef:5d:
e0:08:57:67:d1:60:34:80:58:65:ae:03:20:5a:38:
44:24:95:bd:d7:82:81:d5:93:be:70:8e:eb:70:35:
7c:b5:d8:15:0b:db:22:1b:7f:35:fc:03:4d:0f:86:
98:9a:a3:5e:58:58:74:bc:66:5a:f5:b8:5d:66:de:
62:6c:ec:15:d8:44:7c:08:d4:02:18:78:f4:27:ec:
34:a0:e4:e1:91:a5:7d:1b:ce:a2:14:a0:7c:94:26:
1f:26:74:c4:ea:96:b3:26:37:3b:46:4a:f3:56:37:
0b:31:aa:99:d7:e9:0f:09:ad:30:ea:d8:13:db:cf:
69:f4:3f:a8:fb:1b:90:3c:c6:be:44:d6:74:27:36:
aa:a6:38:8a:e1:a1:ed:73:de:a1:0b:4a:e6:7a:01:
aa:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:96:2D:65:16:AE:11:3A:3C:72:1E:1D:CF:CD:51:3D:67:46:54:72
X509v3 Authority Key Identifier:
keyid:B5:3E:54:47:CA:06:4E:98:AE:08:35:56:C7:21:D1:4F:2D:9A:6A:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tT5UR8oGTpiuCDVWxyHRTy2aalI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/cf6c24-ed3d-41ea-98f7-173f2e7a36f1/1/NJYtZRauETo8ch4dz81RPWdGVHI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/cf6c24-ed3d-41ea-98f7-173f2e7a36f1/1/tT5UR8oGTpiuCDVWxyHRTy2aalI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.93.0/24
Signature Algorithm: sha256WithRSAEncryption
62:43:0a:46:dc:ce:82:f6:4e:32:56:ec:e7:88:fc:87:f3:7f:
45:38:5f:1c:bc:51:f9:7d:7f:8b:6d:29:62:c0:dc:6c:af:5b:
3e:38:e6:92:01:5a:9d:14:0f:e6:2c:bf:f9:02:d2:6e:55:ad:
20:8c:2b:c1:9d:e4:b7:8e:ad:e5:03:f1:d1:e9:40:dc:f0:e2:
27:af:3b:9a:16:31:8a:00:d4:48:98:f9:5f:fe:56:d1:5a:bf:
c2:d1:83:fa:a1:31:48:2a:d9:0b:9f:50:1b:7c:67:06:5b:cb:
82:4f:68:35:e6:d1:85:9a:ad:ba:65:92:ad:82:da:10:c8:b5:
54:16:70:23:d8:7b:9f:dd:51:8a:11:8a:34:67:90:e2:1c:1d:
86:f5:b5:55:26:53:6a:54:84:0d:c4:bb:1f:04:2d:3b:cd:27:
cb:7d:2c:30:c0:08:ea:f1:fb:32:4e:31:d9:0f:9d:11:36:74:
df:a4:49:84:90:72:13:cb:68:9b:4b:67:72:ae:38:9d:38:4b:
64:34:54:9b:d3:ab:ca:63:56:f9:cb:e4:92:bc:03:7b:e0:e7:
98:c0:ec:5b:b0:08:a4:72:4e:03:7d:27:a2:40:23:68:fc:f6:
7b:aa:d8:60:d1:b0:3e:e6:05:0b:e2:e7:5f:19:03:f7:2c:e6:
2f:11:fe:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:27 2023 by rpki-client on console-fra.rpki-client.org