Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/b733f9-efc2-4e22-9bdf-fe16897536cf/1/2xG4137_7cxoM9k819FDODO3kX0.roa
File: 2xG4137_7cxoM9k819FDODO3kX0.roa (raw, json)
Hash identifier: iqtlrZnMOpaebytWgNyJ6TPgUDp/JWOIPFJXNuu8NoE=
Subject key identifier: DB:11:B8:D7:7E:FF:ED:CC:68:33:D9:3C:D7:D1:43:38:33:B7:91:7D
Certificate issuer: /CN=6289be8ec589f7c004c1cdef7553cd15200888b8
Certificate serial: 0185707067FACC7B021CAA7177DB4F4A1030
Authority key identifier: 62:89:BE:8E:C5:89:F7:C0:04:C1:CD:EF:75:53:CD:15:20:08:88:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yom-jsWJ98AEwc3vdVPNFSAIiLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/b733f9-efc2-4e22-9bdf-fe16897536cf/1/2xG4137_7cxoM9k819FDODO3kX0.roa
Signing time: Mon 02 Jan 2023 03:04:52 +0000
ROA not before: Mon 02 Jan 2023 03:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35913
IP address blocks: 176.118.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:67:fa:cc:7b:02:1c:aa:71:77:db:4f:4a:10:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6289be8ec589f7c004c1cdef7553cd15200888b8
Validity
Not Before: Jan 2 03:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db11b8d77effedcc6833d93cd7d1433833b7917d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:97:fd:a9:5f:c1:bf:8b:35:11:83:d6:df:a3:
e9:a2:04:90:34:0c:f7:48:a2:56:7d:ff:5f:86:f2:
c9:6d:e0:8d:68:ab:82:0d:01:42:0e:34:75:ba:8d:
5f:dc:22:7e:a4:27:68:ac:59:65:c3:cd:57:58:47:
ab:3c:33:8c:3b:50:cd:a3:d1:e6:6d:09:3b:12:29:
5e:54:1f:f2:82:90:50:95:82:37:62:cb:e3:dd:a1:
50:08:26:a0:9d:44:19:22:72:e1:84:2a:cf:df:19:
fb:a3:76:0d:ab:dc:c7:92:6a:5f:55:c7:8e:c7:6e:
20:0a:9c:43:2e:27:31:4f:af:33:0b:4a:37:2a:dc:
56:2e:28:e9:03:57:b6:7e:ed:5d:75:50:8e:f2:61:
18:31:55:f7:1c:8c:85:3e:e1:63:5e:02:60:d6:8b:
35:84:cf:14:24:07:4d:a7:dc:a1:e0:39:9a:f6:4d:
e3:c8:4a:33:d6:dc:ae:91:e2:f9:90:9d:a2:69:fe:
5f:b8:95:2f:8a:9e:3c:dc:98:e2:15:1e:a6:d2:66:
c2:6f:9f:99:43:ff:15:08:df:cc:94:6f:29:57:7b:
fe:b2:36:73:4a:22:59:c0:d1:c9:3b:ae:65:0c:e3:
e6:31:10:b5:b4:45:f1:e9:53:9c:0f:69:5c:dd:70:
87:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:11:B8:D7:7E:FF:ED:CC:68:33:D9:3C:D7:D1:43:38:33:B7:91:7D
X509v3 Authority Key Identifier:
keyid:62:89:BE:8E:C5:89:F7:C0:04:C1:CD:EF:75:53:CD:15:20:08:88:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yom-jsWJ98AEwc3vdVPNFSAIiLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/b733f9-efc2-4e22-9bdf-fe16897536cf/1/2xG4137_7cxoM9k819FDODO3kX0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/b733f9-efc2-4e22-9bdf-fe16897536cf/1/Yom-jsWJ98AEwc3vdVPNFSAIiLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.118.32.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:08:7b:45:57:5a:b1:36:f2:fd:db:e7:5e:bd:a7:98:d3:07:
f7:57:6a:07:2e:e7:23:0a:b9:95:13:79:de:61:c3:03:de:cf:
2e:c3:a4:23:ef:dc:bb:8a:4a:33:c4:3e:f8:a3:9b:f9:e3:0e:
c8:80:98:8d:d9:f0:b2:f4:8c:05:5f:a7:86:61:19:95:39:e9:
d2:5e:80:d8:d4:90:ac:06:b5:c0:c3:f5:a1:2c:bc:96:08:7a:
3c:09:28:b5:b8:04:b5:5d:30:90:ce:a7:1e:c2:48:e9:96:3c:
70:43:95:97:93:af:f3:20:2a:c3:f2:52:16:67:59:c4:f5:d2:
1c:3c:8c:52:17:22:f4:29:3c:bd:59:07:83:ee:cf:c1:b1:83:
ea:9d:08:c9:cb:d6:23:c9:00:44:3e:0e:9f:b4:55:38:8e:7b:
ea:93:90:68:55:36:bc:92:2d:70:d0:e3:87:fe:59:d3:51:73:
cf:88:b9:a3:34:be:f0:b1:f0:64:d4:9c:2f:e7:88:a5:cf:25:
09:95:36:b1:8a:0a:a0:ea:13:62:4c:2a:52:9a:d6:1e:42:d8:
64:f1:dc:d4:b3:14:6b:44:8c:06:d4:62:b2:1d:04:87:81:16:
8e:1f:e1:c6:04:e1:25:e4:4c:ae:78:7f:98:b0:3f:dd:84:c6:
a7:d9:aa:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:20 2024 by rpki-client on console-fra.rpki-client.org