Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/4998c3-f4da-4014-92e1-8f9e05b497e6/1/xe-hW7Q1JoB2exolQyO17IhR1i4.roa
File: xe-hW7Q1JoB2exolQyO17IhR1i4.roa (raw, json)
Hash identifier: OAcz7I4pZN+a0K5xTRiH+WGO6wLaafMJOUjwSjRHFpY=
Subject key identifier: C5:EF:A1:5B:B4:35:26:80:76:7B:1A:25:43:23:B5:EC:88:51:D6:2E
Certificate issuer: /CN=1a673c305e41bb15cf3323498765a26dce2797ed
Certificate serial: 018571556375593F3D856E550CEAAF8F625C
Authority key identifier: 1A:67:3C:30:5E:41:BB:15:CF:33:23:49:87:65:A2:6D:CE:27:97:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gmc8MF5BuxXPMyNJh2Wibc4nl-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/4998c3-f4da-4014-92e1-8f9e05b497e6/1/xe-hW7Q1JoB2exolQyO17IhR1i4.roa
Signing time: Mon 02 Jan 2023 07:14:59 +0000
ROA not before: Mon 02 Jan 2023 07:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 195.234.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:55:63:75:59:3f:3d:85:6e:55:0c:ea:af:8f:62:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a673c305e41bb15cf3323498765a26dce2797ed
Validity
Not Before: Jan 2 07:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c5efa15bb4352680767b1a254323b5ec8851d62e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f5:50:0a:b3:94:de:4b:e4:80:5f:e9:b8:fb:
d1:49:0e:83:c4:3e:bf:89:2c:6c:88:f2:d2:0f:98:
02:ca:10:0b:f7:3b:5f:ed:70:b5:26:ab:7a:33:88:
f2:e3:70:bf:37:dd:c8:16:ba:80:e7:a0:ad:83:d1:
4a:7c:5b:dc:c1:e5:b0:e3:f2:46:31:7d:13:2b:1f:
4e:f8:62:f0:02:91:db:20:95:e6:4a:43:78:b0:fe:
01:b7:85:4b:ed:de:a4:01:26:92:d2:c6:29:97:49:
5f:9e:7d:1f:25:85:96:61:13:40:a8:cc:5e:ae:f2:
4b:91:4c:59:9b:cc:e9:cb:1c:7b:59:d7:bf:9f:2a:
be:4c:45:b1:17:2f:21:e2:60:e1:6d:94:a1:b6:f7:
ef:db:5a:8a:09:5d:1f:18:ef:da:ca:87:05:12:b8:
86:2f:47:21:af:03:01:9c:d5:bf:90:b1:d8:87:00:
67:71:20:22:ab:6c:26:3f:b1:3e:84:db:bd:5d:b7:
a3:ca:bc:7a:ca:b8:e7:49:0a:9e:ec:9a:6a:93:de:
e6:d4:03:c8:3f:9f:c5:2f:90:39:e5:ab:4a:61:c7:
94:9e:36:d3:38:1e:0d:75:fc:6f:ee:28:f8:58:e0:
d1:43:22:cb:8f:01:3d:b0:2a:40:e9:b4:fa:f4:e0:
c5:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:EF:A1:5B:B4:35:26:80:76:7B:1A:25:43:23:B5:EC:88:51:D6:2E
X509v3 Authority Key Identifier:
keyid:1A:67:3C:30:5E:41:BB:15:CF:33:23:49:87:65:A2:6D:CE:27:97:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gmc8MF5BuxXPMyNJh2Wibc4nl-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/4998c3-f4da-4014-92e1-8f9e05b497e6/1/xe-hW7Q1JoB2exolQyO17IhR1i4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/4998c3-f4da-4014-92e1-8f9e05b497e6/1/Gmc8MF5BuxXPMyNJh2Wibc4nl-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.234.29.0/24
Signature Algorithm: sha256WithRSAEncryption
06:48:61:fd:1d:8a:d9:ae:63:0f:e0:72:ae:f4:38:9f:6a:09:
81:c0:6a:4d:46:29:34:9b:12:43:f0:62:16:e4:e0:2b:1a:dc:
53:f4:60:a7:1d:b7:f5:27:4b:06:b3:ed:d2:58:9d:55:cf:5c:
74:49:24:79:88:58:f3:d4:ff:ed:89:a8:9b:54:2d:28:3e:67:
a4:a2:12:30:11:50:c8:75:81:de:20:8d:7b:6b:10:d4:05:96:
81:3a:a4:bb:07:55:83:00:7b:d9:78:2a:da:7a:1c:4f:15:e2:
e2:77:49:ca:b9:fe:58:40:46:2b:6a:9b:c9:e7:ee:6a:ec:61:
c7:3b:5a:98:3a:49:ea:72:bd:3c:d9:c4:a3:c4:c5:d8:63:10:
2d:87:84:de:4d:d9:69:b0:a4:a3:0b:bd:ca:ac:05:c2:e1:94:
8b:3c:79:7d:61:67:a9:38:cd:9a:ac:1a:b0:50:41:1b:ba:81:
a5:2f:f4:0a:4d:7f:ea:57:03:0c:b9:39:60:4f:1e:44:d0:98:
0b:b9:8e:79:3f:79:57:82:35:bc:9e:94:32:07:74:6d:16:6b:
e5:ab:d4:4c:91:63:5e:be:f6:01:0c:8e:c6:f9:72:5a:be:c3:
4e:96:ec:c8:e8:28:f5:ed:22:4e:86:77:07:0c:93:af:ba:50:
e6:37:7d:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:33 2023 by rpki-client on console-fra.rpki-client.org