Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/40f481-8130-4096-bf6a-25f9c1de04dd/1/qHQKy2_2h9LkMUHCKeG5HyjKatI.roa
File: qHQKy2_2h9LkMUHCKeG5HyjKatI.roa (raw, json)
Hash identifier: htq5rv3aoudXz2vobBpZv/m+6OOOZ2bZ+mUyNlO9e9g=
Subject key identifier: A8:74:0A:CB:6F:F6:87:D2:E4:31:41:C2:29:E1:B9:1F:28:CA:6A:D2
Certificate issuer: /CN=0ecf600f3311944dc4149f693db57735a9292c86
Certificate serial: 0188025252FC2783264070BBA2569A91F983
Authority key identifier: 0E:CF:60:0F:33:11:94:4D:C4:14:9F:69:3D:B5:77:35:A9:29:2C:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ds9gDzMRlE3EFJ9pPbV3NakpLIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/40f481-8130-4096-bf6a-25f9c1de04dd/1/qHQKy2_2h9LkMUHCKeG5HyjKatI.roa
Signing time: Tue 09 May 2023 21:02:09 +0000
ROA not before: Tue 09 May 2023 21:02:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199162
IP address blocks: 194.180.6.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:02:52:52:fc:27:83:26:40:70:bb:a2:56:9a:91:f9:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ecf600f3311944dc4149f693db57735a9292c86
Validity
Not Before: May 9 21:02:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a8740acb6ff687d2e43141c229e1b91f28ca6ad2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:68:17:e2:94:0a:af:48:34:f9:02:89:46:ab:
57:c4:ba:57:d9:8d:49:0b:f9:6f:d4:c4:3b:75:64:
ad:82:cd:1f:e9:12:cc:15:9d:c2:27:f5:39:6c:83:
fb:63:25:8b:f0:2a:06:a0:1f:d3:f9:ef:1f:19:c9:
56:16:1d:9e:dd:4f:ff:27:d0:d7:73:96:eb:c2:13:
74:ac:db:a8:96:9d:d2:b5:f1:60:19:f8:5a:0b:31:
29:45:21:da:95:33:14:0e:55:c4:a4:2f:22:d5:ff:
27:a1:99:79:c4:d1:f8:a3:fc:5c:f8:7a:5c:c4:12:
56:65:ce:59:e1:29:e5:89:8e:77:4b:82:73:49:fc:
45:6a:f6:55:5c:d3:d0:f5:60:2d:ed:86:00:97:ad:
63:be:dd:ad:d6:8f:ee:1a:59:c9:48:ee:c0:1c:28:
73:59:02:46:d5:9d:3c:0f:a2:a4:0a:44:2a:97:bb:
b0:b0:af:e0:0f:fd:9d:db:4a:ae:5d:54:9d:c5:0e:
d5:84:96:d9:83:54:9e:ac:08:91:8a:08:77:05:85:
10:05:94:db:57:4f:4c:55:e3:6e:d1:ad:ab:6e:bb:
80:51:ee:2b:41:f4:1f:71:47:18:5d:5f:1b:f6:6a:
04:ac:17:02:cf:da:ae:db:65:31:84:9f:c6:3b:5b:
1e:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:74:0A:CB:6F:F6:87:D2:E4:31:41:C2:29:E1:B9:1F:28:CA:6A:D2
X509v3 Authority Key Identifier:
keyid:0E:CF:60:0F:33:11:94:4D:C4:14:9F:69:3D:B5:77:35:A9:29:2C:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ds9gDzMRlE3EFJ9pPbV3NakpLIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/40f481-8130-4096-bf6a-25f9c1de04dd/1/qHQKy2_2h9LkMUHCKeG5HyjKatI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/40f481-8130-4096-bf6a-25f9c1de04dd/1/Ds9gDzMRlE3EFJ9pPbV3NakpLIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.180.6.0/23
Signature Algorithm: sha256WithRSAEncryption
02:c5:77:bb:62:8f:2e:6d:4c:4a:b8:51:8f:75:9a:5b:8c:68:
aa:a6:80:ea:b9:4d:e7:dd:2b:7c:f6:91:3e:d9:70:7c:a1:0d:
77:42:1b:b1:9f:74:8b:d1:a5:d0:96:3d:54:01:7a:9d:43:ff:
b7:8b:13:8d:3e:a7:5e:e3:04:b1:a6:5f:3c:7a:52:a3:34:d8:
3a:5f:08:69:b2:70:8d:c5:f2:11:1f:17:0a:b2:a6:ef:a0:33:
b1:7a:72:34:db:4b:29:3b:e0:1f:97:16:e0:7f:cd:35:fd:cd:
71:0f:fe:f5:c6:cd:04:51:34:0c:fb:ed:f5:73:f8:3a:9b:b2:
09:f1:2a:e2:fd:14:11:c1:68:91:45:c3:b5:73:fe:8b:13:4c:
2a:4f:48:8e:6a:b4:47:19:5c:3a:f5:1e:19:b5:8c:5a:35:ab:
b1:71:21:9c:01:ad:ea:37:87:d1:43:13:9f:97:5a:5a:b7:05:
61:de:13:bc:30:95:5d:0c:b3:a0:bf:64:c3:73:75:13:9b:3d:
f4:6e:97:f6:43:df:94:f0:5e:01:ff:1d:22:e6:b2:8e:3c:86:
4f:73:98:23:1d:64:13:a8:a3:cf:ce:52:8f:5e:14:8f:04:4c:
af:a4:1d:26:e8:7b:4c:69:e2:b5:c4:23:94:9d:93:89:f8:e2:
75:d1:4d:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:06 2024 by rpki-client on console-ams.rpki-client.org