Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/1ae7b9-3e56-4f89-bad6-6e1b0d6478c0/1/HuNkRslm7h-WwKTr2myQRz24KcA.roa
File: HuNkRslm7h-WwKTr2myQRz24KcA.roa (raw, json)
Hash identifier: qfTVT8E2MBgWjv57lMRT9A4dADcYE62AQe9//9YbBDM=
Subject key identifier: 1E:E3:64:46:C9:66:EE:1F:96:C0:A4:EB:DA:6C:90:47:3D:B8:29:C0
Certificate issuer: /CN=58faf3909ab406103148f3f32f95a79f8de35d0e
Certificate serial: 03817E7F
Authority key identifier: 58:FA:F3:90:9A:B4:06:10:31:48:F3:F3:2F:95:A7:9F:8D:E3:5D:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WPrzkJq0BhAxSPPzL5Wnn43jXQ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/1ae7b9-3e56-4f89-bad6-6e1b0d6478c0/1/HuNkRslm7h-WwKTr2myQRz24KcA.roa
Signing time: Sat 01 Jan 2022 10:58:58 +0000
ROA not before: Sat 01 Jan 2022 10:58:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 188.227.196.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58818175 (0x3817e7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58faf3909ab406103148f3f32f95a79f8de35d0e
Validity
Not Before: Jan 1 10:58:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ee36446c966ee1f96c0a4ebda6c90473db829c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:68:c6:6f:6f:2d:4c:72:a1:56:c2:8c:5f:1c:
83:a4:46:9f:e3:75:19:84:4b:9e:cb:59:a1:0d:b6:
15:d5:af:87:38:68:51:64:97:43:bc:05:1c:d3:af:
9f:7a:a5:4c:79:58:2b:cc:c6:0b:a9:6d:d0:31:0b:
c6:dd:ca:ef:dd:f0:a6:23:fb:13:f8:c3:a9:59:40:
f6:88:93:40:51:56:28:a7:08:6d:83:f7:55:74:6e:
d6:da:1e:e5:95:cb:f2:10:99:c3:e7:21:c5:21:f4:
d0:7e:e2:e0:09:f8:2c:63:ae:4c:58:1b:ac:b2:ed:
81:5c:e7:21:3e:e5:e8:f9:ce:29:79:12:a8:53:b7:
24:66:66:c2:be:28:7c:47:ac:a4:1c:4e:4b:22:0b:
ab:80:36:49:23:71:d2:db:21:f5:48:22:df:34:68:
5d:80:54:43:e4:11:b2:b5:ae:ea:9b:fc:60:66:fa:
98:91:2a:d2:7c:97:7b:f4:6c:12:fa:d9:ba:0c:d7:
24:70:d6:7d:90:f9:32:ec:de:d7:f5:ce:82:35:4d:
aa:fc:0b:7b:76:81:86:66:0e:c2:9e:35:1b:fe:28:
58:03:eb:d7:56:f2:d9:f9:2f:97:b0:58:2d:16:00:
cb:1d:06:09:be:7d:fc:42:a6:77:91:b1:46:a3:f2:
70:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:E3:64:46:C9:66:EE:1F:96:C0:A4:EB:DA:6C:90:47:3D:B8:29:C0
X509v3 Authority Key Identifier:
keyid:58:FA:F3:90:9A:B4:06:10:31:48:F3:F3:2F:95:A7:9F:8D:E3:5D:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WPrzkJq0BhAxSPPzL5Wnn43jXQ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1ae7b9-3e56-4f89-bad6-6e1b0d6478c0/1/HuNkRslm7h-WwKTr2myQRz24KcA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1ae7b9-3e56-4f89-bad6-6e1b0d6478c0/1/WPrzkJq0BhAxSPPzL5Wnn43jXQ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.227.196.0/22
Signature Algorithm: sha256WithRSAEncryption
47:73:53:69:23:4f:a7:a3:fa:bd:ea:77:2e:8a:2a:54:b0:05:
c6:4a:28:4e:c9:48:2b:5a:84:3b:5f:08:da:c8:ca:79:10:5d:
57:6f:ae:fb:ba:ba:fa:9d:ce:a6:36:25:6a:4b:76:11:06:f8:
2b:96:57:c3:70:00:c2:8b:45:5c:10:09:b0:48:62:6c:1c:63:
3b:04:9d:5f:21:62:ba:55:a6:29:24:4b:80:ee:e2:66:18:89:
33:04:5b:ab:b9:09:63:7d:72:9c:ac:46:66:6b:10:0e:65:7d:
3f:da:85:b7:2c:45:85:3b:71:bc:f3:16:cc:cd:b9:4e:22:5e:
05:a1:f8:b6:57:f1:e8:0c:95:92:98:e9:05:fa:e0:9f:e3:b0:
b4:f2:1f:73:0f:fb:40:fb:fe:50:bd:b0:14:a4:55:f7:b5:a1:
e9:22:b5:94:c1:be:e2:14:8d:08:40:b3:44:97:59:96:fe:d4:
f1:ee:88:57:31:27:b2:83:c3:cb:75:56:98:1f:0e:5f:4a:63:
bc:3b:b7:68:be:a4:a3:6f:6d:b5:5c:56:a6:5c:9f:11:23:aa:
0d:a9:3f:2e:9c:5c:3b:d4:7f:29:19:72:86:b5:bc:6d:ea:69:
83:e8:ef:74:66:92:9b:40:cd:c0:e0:38:56:93:ca:f9:11:ea:
3d:cc:dd:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:18 2024 by rpki-client on console-ams.rpki-client.org