Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/f301cd-9f4e-4113-a5fc-66018f715b03/1/XDiJECzEHjRnDcrQstMV6emnUd4.roa
File: XDiJECzEHjRnDcrQstMV6emnUd4.roa (raw, json)
Hash identifier: 5IPJilnsoXdd7y4eetYMzbCcCplMGPGoG2922EbZZeU=
Subject key identifier: 5C:38:89:10:2C:C4:1E:34:67:0D:CA:D0:B2:D3:15:E9:E9:A7:51:DE
Certificate issuer: /CN=9d315cbca654d80fb2f26925d5a7e4e18e5a8dba
Certificate serial: 01886D2B74B8ED34DE8F99B8C507D03A7C04
Authority key identifier: 9D:31:5C:BC:A6:54:D8:0F:B2:F2:69:25:D5:A7:E4:E1:8E:5A:8D:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nTFcvKZU2A-y8mkl1afk4Y5ajbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/f301cd-9f4e-4113-a5fc-66018f715b03/1/XDiJECzEHjRnDcrQstMV6emnUd4.roa
Signing time: Tue 30 May 2023 14:59:04 +0000
ROA not before: Tue 30 May 2023 14:59:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 185.234.113.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:6d:2b:74:b8:ed:34:de:8f:99:b8:c5:07:d0:3a:7c:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d315cbca654d80fb2f26925d5a7e4e18e5a8dba
Validity
Not Before: May 30 14:59:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5c3889102cc41e34670dcad0b2d315e9e9a751de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:65:b2:64:d2:7d:8c:49:3e:25:fa:30:46:51:
f5:53:2c:28:7b:89:06:86:91:a4:a7:81:7a:31:1f:
c0:9a:23:b7:89:2a:cd:90:40:49:74:f8:28:58:5a:
46:3b:58:0a:11:8a:a8:02:30:a2:51:bf:94:19:ae:
b5:a3:3c:4d:64:18:e2:02:6f:9f:3b:d4:71:ed:31:
1b:0a:cb:d3:55:46:bc:bd:6c:25:24:f5:b0:e2:2f:
15:39:ac:22:f3:38:f9:7f:a5:87:3a:91:a6:e5:70:
41:5a:3a:46:d3:0d:f6:fc:91:b3:94:f9:ca:f9:9c:
07:a6:78:3d:ff:30:8a:7a:2a:b9:3b:2e:b4:ce:9f:
87:56:2a:f4:30:4c:9e:7b:a1:f9:3e:35:00:d1:36:
f7:77:e2:98:1e:76:69:70:c2:1b:53:05:36:b0:d8:
69:60:cb:af:8b:d0:62:44:33:75:ef:30:63:10:c0:
db:cf:c1:8e:d6:d0:cd:33:a9:81:95:91:6a:24:ae:
ba:d9:5f:f4:50:45:a8:b8:68:3c:4d:a6:77:9f:a7:
23:13:04:51:ef:75:6f:96:9c:8f:67:3a:e6:19:e1:
7e:2f:49:e2:74:cb:aa:93:5e:8c:c1:13:e1:e1:9f:
7c:59:02:b2:dd:4c:8d:85:fc:18:83:97:32:b1:a6:
65:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:38:89:10:2C:C4:1E:34:67:0D:CA:D0:B2:D3:15:E9:E9:A7:51:DE
X509v3 Authority Key Identifier:
keyid:9D:31:5C:BC:A6:54:D8:0F:B2:F2:69:25:D5:A7:E4:E1:8E:5A:8D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nTFcvKZU2A-y8mkl1afk4Y5ajbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/f301cd-9f4e-4113-a5fc-66018f715b03/1/XDiJECzEHjRnDcrQstMV6emnUd4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/f301cd-9f4e-4113-a5fc-66018f715b03/1/nTFcvKZU2A-y8mkl1afk4Y5ajbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.113.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:32:74:3d:a1:54:62:b2:a2:d2:eb:74:88:61:a6:07:2b:06:
9f:3b:d8:bc:10:9e:5a:70:34:17:b0:cf:a5:89:48:54:41:84:
03:71:74:0f:21:c4:09:ab:dd:09:da:2d:a1:86:bc:d9:1a:7c:
27:c9:c8:86:41:32:95:e6:ad:28:2f:88:54:40:34:9c:9e:67:
32:d1:2d:1a:74:82:e2:ff:6b:e0:c5:e9:f4:f6:7a:ed:92:d4:
4a:f2:57:98:49:ef:7a:9d:2e:80:57:9d:32:56:5d:e9:62:c4:
1d:bf:14:53:c0:24:88:92:03:97:20:be:0a:73:c8:53:96:ca:
15:02:d9:e2:66:86:d2:64:a0:f4:65:ef:3e:f2:37:68:27:23:
8f:c4:e1:97:2a:cb:9d:4b:45:47:68:04:13:14:fe:8a:ce:6c:
d6:4c:d8:33:02:5d:97:57:ff:b2:a5:01:34:06:e7:eb:f0:71:
9a:95:4d:c1:65:4e:d7:76:20:06:e0:9a:88:a3:ac:bd:2f:39:
e2:4f:dd:fb:6c:d4:a9:5e:91:ac:b5:89:88:58:84:d2:63:c0:
24:52:9c:33:14:94:73:86:0c:49:96:3e:8b:c9:3a:e3:2e:44:
f3:7d:5d:d1:7f:e6:e3:89:f3:f7:8a:cb:e1:6f:05:db:31:c3:
7f:e0:03:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:13 2023 by rpki-client on console-fra.rpki-client.org