Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/1ff727-da95-4c98-ba59-5c4958004179/1/I_dSFrFrQrASAs0Sj8tVxIQp72Q.roa
File: I_dSFrFrQrASAs0Sj8tVxIQp72Q.roa (raw, json)
Hash identifier: oRV3jIdKpAPPqV026Ju3PMU3tqa3SCS5NUfz28IlhNc=
Subject key identifier: 23:F7:52:16:B1:6B:42:B0:12:02:CD:12:8F:CB:55:C4:84:29:EF:64
Certificate issuer: /CN=9bae3ec994b133f80237f28fe6e365b765bbe829
Certificate serial: 017569E8
Authority key identifier: 9B:AE:3E:C9:94:B1:33:F8:02:37:F2:8F:E6:E3:65:B7:65:BB:E8:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m64-yZSxM_gCN_KP5uNlt2W76Ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/1ff727-da95-4c98-ba59-5c4958004179/1/I_dSFrFrQrASAs0Sj8tVxIQp72Q.roa
Signing time: Sat 01 Jan 2022 03:52:11 +0000
ROA not before: Sat 01 Jan 2022 03:52:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35450
IP address blocks: 193.192.42.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24472040 (0x17569e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bae3ec994b133f80237f28fe6e365b765bbe829
Validity
Not Before: Jan 1 03:52:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23f75216b16b42b01202cd128fcb55c48429ef64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:26:ff:fa:9c:b7:df:11:cd:ca:f7:4b:c5:7c:
cf:13:2b:fc:08:4e:cb:df:d4:4d:36:a7:54:50:59:
c6:dd:70:df:91:5b:5d:77:27:b3:4c:d1:be:dd:da:
61:48:2e:ad:be:51:8a:f6:d6:f1:c5:af:09:ad:a9:
4f:23:0b:7b:41:40:f1:9c:e4:80:92:aa:37:de:08:
51:44:bc:5e:0a:1e:a8:f9:7e:26:11:f3:b8:46:5a:
84:80:fd:3d:46:5e:43:cb:3d:e5:ad:6b:1a:42:46:
8a:f3:7a:dd:87:65:cb:32:57:f3:0e:ae:93:51:c2:
a5:54:50:75:2c:4e:04:7b:16:7f:68:fb:30:f2:44:
e6:6e:57:b8:b3:f9:21:72:27:9b:0c:1b:df:94:0c:
95:c5:27:39:00:dc:c1:8c:4d:fb:24:3a:d2:74:8a:
91:dd:c2:57:be:ed:93:0a:2e:b9:56:8f:63:7e:d1:
e6:4e:b8:55:ae:53:55:df:42:4d:b9:c3:dc:b1:4b:
b2:06:e1:b1:0e:64:33:10:f0:b8:5a:98:ec:0c:a6:
f5:d6:ea:19:ff:77:45:bf:5d:46:a3:8f:4c:13:88:
c6:92:ac:b4:2f:17:69:54:57:76:a3:53:ed:ed:cb:
85:eb:9d:6f:21:50:42:23:e4:61:32:0f:2f:a1:da:
8c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:F7:52:16:B1:6B:42:B0:12:02:CD:12:8F:CB:55:C4:84:29:EF:64
X509v3 Authority Key Identifier:
keyid:9B:AE:3E:C9:94:B1:33:F8:02:37:F2:8F:E6:E3:65:B7:65:BB:E8:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m64-yZSxM_gCN_KP5uNlt2W76Ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1ff727-da95-4c98-ba59-5c4958004179/1/I_dSFrFrQrASAs0Sj8tVxIQp72Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1ff727-da95-4c98-ba59-5c4958004179/1/m64-yZSxM_gCN_KP5uNlt2W76Ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.192.42.0/23
Signature Algorithm: sha256WithRSAEncryption
61:f4:4e:34:0f:ef:b9:12:5d:19:0a:92:47:f9:24:c2:88:a1:
c7:90:0c:f9:40:e8:f2:06:0a:dd:7d:c5:57:1f:7d:af:30:f0:
95:77:58:36:da:8f:c8:82:8e:e9:fc:a8:2d:90:46:eb:df:98:
3b:53:3e:a1:84:ee:98:d5:67:47:08:e2:2b:09:22:1f:06:9e:
d6:52:b2:fb:56:6a:c0:55:79:2c:8c:50:80:35:8c:69:f8:b3:
f4:ed:9b:15:41:d0:3c:36:32:33:af:a1:12:51:43:a8:55:38:
24:91:27:35:e3:ab:a5:66:ff:ee:28:34:a3:63:4d:9a:14:c2:
0c:7b:f2:4f:2c:93:45:35:ff:8c:d7:e8:a3:4b:e5:1a:9c:87:
9d:8d:e6:6d:42:c3:0a:eb:04:9e:25:02:d3:52:3c:e8:4e:91:
5a:17:44:54:73:6f:57:76:ae:51:05:24:24:76:dd:5c:f7:cc:
cf:16:11:8f:10:dc:6b:11:cd:58:c3:9a:82:61:aa:1c:08:a3:
5c:04:b7:a5:ed:ae:f0:8c:8b:b8:d9:bc:04:54:99:ba:bc:aa:
7b:56:93:0a:59:48:2e:4a:a6:f1:d5:9a:5c:32:38:89:1c:21:
00:08:41:56:5e:ea:be:6d:83:9a:df:7f:29:66:93:be:91:c5:
a2:ba:89:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:18 2024 by rpki-client on console-ams.rpki-client.org