Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/8628b1-4a97-483e-a420-f8ebc42c6691/1/ppagOMUWd2XnZxOgyEHRN4Q5oxQ.roa
File: ppagOMUWd2XnZxOgyEHRN4Q5oxQ.roa (raw, json)
Hash identifier: BnKW46L2jIUPoyZL50t06WNOpcjNaQQZFtkAWhlDrTs=
Subject key identifier: A6:96:A0:38:C5:16:77:65:E7:67:13:A0:C8:41:D1:37:84:39:A3:14
Certificate issuer: /CN=ac21a0182d6664a8cff9e9e0170b692168cef950
Certificate serial: 0187ACB341FB83B66F966459DC7E5DE42495
Authority key identifier: AC:21:A0:18:2D:66:64:A8:CF:F9:E9:E0:17:0B:69:21:68:CE:F9:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rCGgGC1mZKjP-engFwtpIWjO-VA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/8628b1-4a97-483e-a420-f8ebc42c6691/1/ppagOMUWd2XnZxOgyEHRN4Q5oxQ.roa
Signing time: Sun 23 Apr 2023 06:00:41 +0000
ROA not before: Sun 23 Apr 2023 06:00:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 213.173.38.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:ac:b3:41:fb:83:b6:6f:96:64:59:dc:7e:5d:e4:24:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac21a0182d6664a8cff9e9e0170b692168cef950
Validity
Not Before: Apr 23 06:00:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a696a038c5167765e76713a0c841d1378439a314
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:56:e8:7e:5c:66:0d:5d:3d:f9:23:68:21:5c:
bf:95:85:fd:c7:43:ad:83:cd:6e:3b:8c:a8:6a:cf:
6a:74:ea:02:4c:78:c5:b9:6d:3e:3d:89:5c:4c:cf:
27:b1:3e:5f:2a:8c:56:b9:68:f6:f4:2e:fc:3d:8f:
7e:bb:f0:bb:ac:dc:f3:3c:6d:de:80:34:56:96:57:
a8:96:2a:34:58:3e:eb:d3:75:a7:44:53:3a:4e:56:
bf:4f:16:ba:d6:24:8c:53:7c:d4:29:4b:a5:44:63:
c6:b0:b6:87:08:6f:bb:14:d4:90:f1:56:2e:03:c4:
10:f6:de:74:91:f7:15:b7:4b:22:6c:8d:45:16:5b:
c0:a9:91:e0:42:4f:ce:09:ff:de:6d:c0:87:ad:ad:
39:72:9f:c4:55:40:29:96:f8:9f:42:c1:e6:c3:67:
87:fe:1d:4e:5c:a2:39:68:6e:60:6d:e7:56:5a:df:
04:49:eb:6d:ad:c2:17:79:70:57:5c:60:3d:8e:4f:
f8:f4:c6:59:13:0b:be:4c:be:2d:27:2c:83:d7:a0:
2a:8e:b9:2d:af:7f:33:18:53:cf:e3:06:92:09:e5:
95:9d:79:80:e7:10:98:ba:26:3f:31:49:10:80:3f:
5c:da:57:0d:fa:08:9c:d8:e5:c6:3e:5f:59:38:0a:
a0:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:96:A0:38:C5:16:77:65:E7:67:13:A0:C8:41:D1:37:84:39:A3:14
X509v3 Authority Key Identifier:
keyid:AC:21:A0:18:2D:66:64:A8:CF:F9:E9:E0:17:0B:69:21:68:CE:F9:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rCGgGC1mZKjP-engFwtpIWjO-VA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/8628b1-4a97-483e-a420-f8ebc42c6691/1/ppagOMUWd2XnZxOgyEHRN4Q5oxQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/8628b1-4a97-483e-a420-f8ebc42c6691/1/rCGgGC1mZKjP-engFwtpIWjO-VA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.173.38.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:09:fe:3c:96:74:61:7a:2e:60:2b:bc:ee:ef:32:52:7d:f7:
ed:f7:90:f8:fd:7e:3e:31:f9:db:04:b8:b0:c4:c0:c8:26:2e:
d2:b5:14:e2:d5:60:c4:f7:c1:96:ef:ea:e3:80:4f:fa:e6:e0:
97:49:67:5c:9c:6c:ba:fc:e7:34:cd:74:b7:7f:40:2d:77:c6:
46:1f:26:45:5d:0e:57:a8:06:db:bb:2e:d5:f1:67:97:f8:be:
3c:c9:ae:e9:a6:73:8c:03:d7:85:03:7b:dc:25:e7:a6:05:ff:
16:99:0f:92:30:c5:9b:12:da:91:01:ed:00:c9:54:ae:3e:6b:
24:15:b8:aa:45:ff:24:b0:12:54:fc:28:31:f7:65:95:e9:98:
7d:8c:5d:0c:2f:9b:39:71:60:14:23:fe:c3:0b:11:8e:8a:f7:
d0:46:69:71:60:39:ff:0b:03:14:e7:eb:ec:21:37:c4:0b:68:
c3:85:46:45:0a:49:c2:e7:2c:f7:05:20:5a:50:2e:f6:98:33:
35:c6:16:3f:20:94:63:f4:ba:b7:35:38:2e:db:81:3d:f8:24:
bb:1f:20:16:e3:77:94:32:c4:05:d4:a5:26:95:7f:7c:7b:eb:
48:e7:6f:e9:14:3a:0b:f8:a1:ad:88:63:50:fa:1b:aa:fb:ad:
01:33:89:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:00 2024 by rpki-client on console-ams.rpki-client.org