Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/8f95cd-a797-4780-855c-7e42c15a8a1d/1/gwR75T6kxVWpWFq39_iobJCbuCQ.roa
File: gwR75T6kxVWpWFq39_iobJCbuCQ.roa (raw, json)
Hash identifier: rjt7MI/Q77CBO51EvwPMiMznI5WdjK4LKhY4Mr0ixUQ=
Subject key identifier: 83:04:7B:E5:3E:A4:C5:55:A9:58:5A:B7:F7:F8:A8:6C:90:9B:B8:24
Certificate issuer: /CN=cbec2487e97a699b5451a429e7dddaf295b523f1
Certificate serial: 018570B098CCBEDBAD6F11C34C3849D5E376
Authority key identifier: CB:EC:24:87:E9:7A:69:9B:54:51:A4:29:E7:DD:DA:F2:95:B5:23:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y-wkh-l6aZtUUaQp593a8pW1I_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/8f95cd-a797-4780-855c-7e42c15a8a1d/1/gwR75T6kxVWpWFq39_iobJCbuCQ.roa
Signing time: Mon 02 Jan 2023 04:14:59 +0000
ROA not before: Mon 02 Jan 2023 04:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6453
IP address blocks: 176.98.32.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b0:98:cc:be:db:ad:6f:11:c3:4c:38:49:d5:e3:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbec2487e97a699b5451a429e7dddaf295b523f1
Validity
Not Before: Jan 2 04:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=83047be53ea4c555a9585ab7f7f8a86c909bb824
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:b1:4d:49:05:60:41:2a:fc:95:a5:72:fc:2f:
8d:a8:d8:df:d7:dd:ad:4a:d5:4a:e4:3d:48:ec:0e:
dd:85:34:22:0b:f4:33:0e:ff:60:92:c2:3d:8d:aa:
bc:d9:a8:47:c0:79:22:b4:82:73:82:39:20:53:e5:
31:c7:79:09:80:a9:1a:d5:bb:67:3f:9a:3b:a4:c4:
ee:a9:46:84:f1:f2:05:32:7a:da:3f:1f:b3:91:43:
f6:c2:4e:4a:8d:e4:ae:c0:73:86:92:41:5f:22:49:
3e:da:ee:9e:4c:a1:50:bb:98:4b:78:e1:7d:72:2d:
62:1e:1a:b1:26:c9:aa:fe:da:82:b4:97:e4:0e:ea:
51:c5:cb:45:ab:0c:5d:b8:c4:4b:78:ef:e1:02:e4:
a5:63:bc:3f:e4:16:f0:3c:c8:c0:de:c4:ea:c5:49:
b1:37:ed:9d:75:a9:f4:e6:c9:1f:34:0c:c0:63:51:
5c:ea:9d:f6:46:e7:39:85:4d:0f:82:d1:98:ce:49:
73:c7:99:ea:d5:8e:3c:91:a0:11:eb:66:f5:f6:01:
a6:7b:4b:5d:b5:5b:19:bb:c3:8c:e0:8f:5b:04:de:
03:0f:3e:86:69:a4:39:55:e1:a6:c8:9e:c9:eb:10:
91:8d:8d:29:b6:f0:2d:dc:bc:6e:77:16:ad:33:1c:
9f:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:04:7B:E5:3E:A4:C5:55:A9:58:5A:B7:F7:F8:A8:6C:90:9B:B8:24
X509v3 Authority Key Identifier:
keyid:CB:EC:24:87:E9:7A:69:9B:54:51:A4:29:E7:DD:DA:F2:95:B5:23:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y-wkh-l6aZtUUaQp593a8pW1I_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/8f95cd-a797-4780-855c-7e42c15a8a1d/1/gwR75T6kxVWpWFq39_iobJCbuCQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/8f95cd-a797-4780-855c-7e42c15a8a1d/1/y-wkh-l6aZtUUaQp593a8pW1I_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.98.32.0/22
Signature Algorithm: sha256WithRSAEncryption
36:52:47:9c:77:3a:5d:93:02:2b:6a:b0:4a:92:5a:3e:94:36:
15:7f:97:3f:18:51:ae:d6:ea:3e:1b:b8:35:af:13:e2:64:06:
b6:2d:87:51:f6:8a:b5:dc:3e:b0:6b:fd:2a:07:cb:26:f1:52:
e9:66:04:e0:cc:eb:ce:aa:0d:f3:6c:e8:a9:3a:91:0e:c0:f6:
52:0f:75:67:29:84:0c:96:cf:53:f6:8e:7e:a5:43:bf:29:0e:
ea:f0:fe:9d:ae:75:0a:6f:7a:e6:c8:4b:20:5f:6d:c6:49:56:
b9:d5:92:d1:df:21:df:15:af:b1:f7:44:c3:f6:63:fc:9b:62:
c1:8b:87:e0:e9:d9:70:34:9a:92:61:25:a4:ea:70:97:76:c0:
ce:cc:bc:17:ab:69:35:98:29:fc:4e:b2:0d:95:19:8e:59:62:
24:7b:3e:07:94:b7:c0:d9:3e:10:e1:da:aa:84:0a:63:44:a2:
36:7a:06:0b:85:d6:fb:df:3a:1c:d1:db:ae:58:e9:42:81:6f:
2c:41:9c:f2:7e:9c:2e:b9:c2:c8:5f:21:02:7a:01:a4:f1:a6:
30:7d:1b:5e:87:89:1c:d5:53:fc:4a:e4:51:50:b7:50:37:0d:
f2:d3:40:7a:a3:05:26:03:0a:bf:fe:c8:54:e8:87:2d:6b:6c:
86:a3:dc:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:34 2024 by rpki-client on console-fra.rpki-client.org