Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/8628b1-4a97-483e-a420-f8ebc42c6691/1/2QlNDNapZPQ8Ei61JoAw3As0VjU.roa
File: 2QlNDNapZPQ8Ei61JoAw3As0VjU.roa (raw, json)
Hash identifier: DM9S1zLTHN+Wcn6VFxhKtJKKybULH8MgrBRgmzY/yOg=
Subject key identifier: D9:09:4D:0C:D6:A9:64:F4:3C:12:2E:B5:26:80:30:DC:0B:34:56:35
Certificate issuer: /CN=ac21a0182d6664a8cff9e9e0170b692168cef950
Certificate serial: 0188208674062CB5829EB7E62ED7657F8F49
Authority key identifier: AC:21:A0:18:2D:66:64:A8:CF:F9:E9:E0:17:0B:69:21:68:CE:F9:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rCGgGC1mZKjP-engFwtpIWjO-VA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/8628b1-4a97-483e-a420-f8ebc42c6691/1/2QlNDNapZPQ8Ei61JoAw3As0VjU.roa
Signing time: Mon 15 May 2023 17:47:42 +0000
ROA not before: Mon 15 May 2023 17:47:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7393
IP address blocks: 213.173.38.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:20:86:74:06:2c:b5:82:9e:b7:e6:2e:d7:65:7f:8f:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac21a0182d6664a8cff9e9e0170b692168cef950
Validity
Not Before: May 15 17:47:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d9094d0cd6a964f43c122eb5268030dc0b345635
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:00:d0:6f:ac:72:db:10:cb:c5:22:70:46:a6:
7d:c8:f8:1c:de:a9:ad:e6:44:27:99:96:78:2a:6a:
c4:95:fa:6b:f1:da:8c:e6:f8:63:76:96:0f:43:6d:
09:b7:83:6b:27:33:23:e6:01:b1:f8:00:a5:1a:ec:
4b:66:2f:ea:be:96:7a:ba:dd:cd:91:bc:89:63:60:
d0:dd:d2:eb:e7:e8:9b:92:79:b3:df:e6:e1:ae:d7:
d1:47:f6:11:7c:04:e6:6e:80:42:e5:57:f2:b7:15:
a5:8f:40:ba:ca:6f:68:55:d0:c2:72:5f:8a:15:f7:
b4:52:89:4b:dc:bb:46:77:52:24:d4:b8:bc:cd:14:
03:87:ff:02:6d:6b:87:d5:c3:da:8f:0d:3a:03:8b:
9c:f0:d1:5e:6a:5b:e5:bb:72:fd:94:8d:e0:a1:d2:
13:22:18:80:c4:ac:36:37:f4:de:a0:af:c9:d2:27:
68:9e:2a:98:7e:6e:58:6e:f4:f3:92:6d:7a:84:4e:
7f:d1:b0:85:6f:42:a7:cd:4a:64:00:89:0f:0e:75:
87:a0:07:b5:5c:b2:bd:21:33:93:16:0e:1d:e4:94:
eb:08:76:31:1e:5b:12:f0:2c:29:3a:a3:c1:a8:48:
e6:f6:a0:cd:88:1e:e8:7c:12:fe:0f:37:9e:48:05:
38:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:09:4D:0C:D6:A9:64:F4:3C:12:2E:B5:26:80:30:DC:0B:34:56:35
X509v3 Authority Key Identifier:
keyid:AC:21:A0:18:2D:66:64:A8:CF:F9:E9:E0:17:0B:69:21:68:CE:F9:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rCGgGC1mZKjP-engFwtpIWjO-VA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/8628b1-4a97-483e-a420-f8ebc42c6691/1/2QlNDNapZPQ8Ei61JoAw3As0VjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/8628b1-4a97-483e-a420-f8ebc42c6691/1/rCGgGC1mZKjP-engFwtpIWjO-VA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.173.38.0/24
Signature Algorithm: sha256WithRSAEncryption
17:f2:1c:b1:7b:e4:f7:ec:6e:89:44:ac:56:78:af:0e:da:27:
d5:1a:7b:6d:4f:8f:0a:da:99:68:9e:d1:81:4e:f5:93:55:0f:
7e:96:92:a3:1e:6e:44:a4:0d:c3:19:98:3e:ad:17:92:cf:95:
4e:3a:72:b5:13:a1:f1:cb:6c:fa:77:e9:b1:7d:27:12:a9:cb:
cc:d3:a0:dd:fb:9d:cb:88:40:28:25:00:5f:13:7d:bc:47:d8:
7d:3c:5b:f9:02:4f:c0:68:3e:f9:20:81:9b:f3:fe:49:fc:e2:
c5:08:df:55:df:3a:3b:18:9b:28:a7:1f:1f:04:38:07:54:94:
f3:16:c3:c1:c2:24:ac:62:b6:65:c4:c3:5d:fd:e4:27:3b:ae:
8a:46:48:92:5d:09:30:4d:90:66:7b:0e:a7:c4:30:1a:9b:c7:
f3:b6:7f:d7:6b:0c:07:ab:51:c3:39:57:fb:4a:69:a6:0b:a2:
bf:da:0b:ff:da:b5:85:33:69:6b:b7:c3:e4:0a:45:4a:82:15:
6c:c0:17:5b:74:40:8b:f9:8a:9c:88:ef:02:ea:da:4b:74:ce:
00:1e:cb:96:69:25:42:5b:38:72:d0:c5:ee:1e:97:00:4c:0b:
86:a7:b2:ae:4d:b3:48:6d:8a:6f:98:7e:80:c3:c1:79:76:d0:
05:7c:c1:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 8 10:20:17 2023 by rpki-client on console-ams.rpki-client.org