Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/1ae7b9-3e56-4f89-bad6-6e1b0d6478c0/1/9oRTds2vegfTZlpq8rOE1zX1rqc.roa
File: 9oRTds2vegfTZlpq8rOE1zX1rqc.roa (raw, json)
Hash identifier: b1UVzLNvjDM7rjoJhWnhIyZlzkvH2tsRvVUgM8PFZ5M=
Subject key identifier: F6:84:53:76:CD:AF:7A:07:D3:66:5A:6A:F2:B3:84:D7:35:F5:AE:A7
Certificate issuer: /CN=58faf3909ab406103148f3f32f95a79f8de35d0e
Certificate serial: 01856D2F2B579DAFDAE5F2B2211859811066
Authority key identifier: 58:FA:F3:90:9A:B4:06:10:31:48:F3:F3:2F:95:A7:9F:8D:E3:5D:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WPrzkJq0BhAxSPPzL5Wnn43jXQ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/1ae7b9-3e56-4f89-bad6-6e1b0d6478c0/1/9oRTds2vegfTZlpq8rOE1zX1rqc.roa
Signing time: Sun 01 Jan 2023 11:54:45 +0000
ROA not before: Sun 01 Jan 2023 11:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 188.227.196.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:2f:2b:57:9d:af:da:e5:f2:b2:21:18:59:81:10:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58faf3909ab406103148f3f32f95a79f8de35d0e
Validity
Not Before: Jan 1 11:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f6845376cdaf7a07d3665a6af2b384d735f5aea7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:40:b6:d2:fc:e7:12:a7:ad:c4:fd:b6:74:76:
46:6a:7f:05:ca:54:b7:40:72:db:68:92:f4:7f:fc:
a9:d2:05:74:00:40:15:8f:f7:72:53:25:3f:a2:1f:
79:c2:83:2e:18:20:f5:cf:36:5f:65:c9:33:e6:7b:
63:52:25:bb:e9:13:40:92:38:bb:91:df:29:54:b8:
77:24:33:cd:3b:60:02:85:72:77:c9:34:c6:4c:74:
f5:e9:88:3c:38:01:52:f7:a2:5e:70:bf:91:cb:eb:
6d:42:de:75:6b:f5:82:b9:f5:0a:1b:fb:71:2e:11:
98:cc:cb:97:19:1d:a7:b4:de:73:45:8c:f3:8f:e7:
67:88:50:bc:a9:9c:a2:a0:27:a5:67:50:62:94:d1:
80:c0:dd:7f:c2:d5:04:a5:29:ce:05:f5:61:1d:16:
63:31:d8:43:90:62:ca:1e:2c:d2:35:0a:e0:27:49:
b1:18:16:8d:64:c8:d2:44:22:68:9f:6d:a7:4a:26:
de:0f:38:f7:0b:71:e6:1e:2c:0d:4a:bc:48:74:ab:
1f:9b:49:12:e5:ca:28:67:bb:f6:55:5f:21:bb:d7:
b1:23:61:c8:89:a2:d3:65:bc:dc:e6:32:e7:a2:a6:
58:a8:03:46:ce:62:c4:a9:a9:22:9b:19:91:7f:25:
16:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:84:53:76:CD:AF:7A:07:D3:66:5A:6A:F2:B3:84:D7:35:F5:AE:A7
X509v3 Authority Key Identifier:
keyid:58:FA:F3:90:9A:B4:06:10:31:48:F3:F3:2F:95:A7:9F:8D:E3:5D:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WPrzkJq0BhAxSPPzL5Wnn43jXQ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1ae7b9-3e56-4f89-bad6-6e1b0d6478c0/1/9oRTds2vegfTZlpq8rOE1zX1rqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1ae7b9-3e56-4f89-bad6-6e1b0d6478c0/1/WPrzkJq0BhAxSPPzL5Wnn43jXQ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.227.196.0/22
Signature Algorithm: sha256WithRSAEncryption
32:eb:c1:60:35:31:fa:5e:61:3a:5e:0c:84:ef:00:df:17:17:
40:eb:4d:f5:b8:23:9d:54:22:db:90:51:d0:04:62:47:7d:ce:
8e:23:54:4b:73:d0:f3:37:07:c1:1d:3c:5d:5b:6f:43:8d:4d:
99:eb:cc:e0:05:a5:52:71:ed:86:fe:11:44:9d:fc:48:bc:c5:
46:52:1d:14:31:d7:27:34:b3:71:00:2a:f4:97:97:2d:76:e2:
5c:0b:9d:53:b0:67:96:f0:a0:0e:c5:a2:c8:4d:fb:0a:5d:f0:
2a:7b:7a:5e:cb:c4:b5:e0:8e:da:73:dc:67:f3:cf:12:93:ae:
0b:b4:7c:5f:1d:d6:fa:7b:42:12:ad:fa:16:71:cd:9d:46:b5:
1b:50:07:21:bc:e8:73:ae:a3:7f:f6:e4:61:6f:ab:c4:7b:ea:
d6:22:b2:11:c2:da:94:a6:ba:6a:ff:9b:57:58:cd:a5:f8:de:
44:8b:90:28:46:4d:f2:33:85:56:41:ee:d9:d1:36:19:78:ed:
22:fc:91:d8:3c:f5:32:88:60:35:1a:d6:d6:16:b3:16:61:0e:
ce:5e:c0:f7:4a:a9:42:b6:51:4a:3c:1f:17:5e:df:a9:35:55:
db:01:02:a5:1b:87:d2:04:bc:fc:8d:e9:28:70:48:60:f4:74:
ba:b8:14:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:18 2024 by rpki-client on console-ams.rpki-client.org