Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/ecd521-e7d3-4416-9f97-4deec0808d0c/1/86cHWbqy71VN9NPIqjGPOnUOSjc.roa
File: 86cHWbqy71VN9NPIqjGPOnUOSjc.roa (raw, json)
Hash identifier: aiE67LPjQ8Uxq3FclcVWMgWZOiEoo6lGe9eWpvG42hY=
Subject key identifier: F3:A7:07:59:BA:B2:EF:55:4D:F4:D3:C8:AA:31:8F:3A:75:0E:4A:37
Certificate issuer: /CN=ab27d4f62b5ba98dfa57d73d6dd5897596ea73e9
Certificate serial: 01210528
Authority key identifier: AB:27:D4:F6:2B:5B:A9:8D:FA:57:D7:3D:6D:D5:89:75:96:EA:73:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qyfU9itbqY36V9c9bdWJdZbqc-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/ecd521-e7d3-4416-9f97-4deec0808d0c/1/86cHWbqy71VN9NPIqjGPOnUOSjc.roa
Signing time: Sun 17 Apr 2022 09:56:37 +0000
ROA not before: Sun 17 Apr 2022 09:56:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 193.163.89.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18941224 (0x1210528)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab27d4f62b5ba98dfa57d73d6dd5897596ea73e9
Validity
Not Before: Apr 17 09:56:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f3a70759bab2ef554df4d3c8aa318f3a750e4a37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ae:00:fe:8a:d0:5b:26:c4:98:69:5f:d7:90:
a3:9f:17:eb:43:88:7e:b4:e1:6a:e9:12:3c:8e:2c:
1e:60:b0:32:38:68:bb:86:dd:0d:b0:4a:aa:fd:6d:
47:b4:22:42:54:05:67:af:13:70:6c:f5:7b:b5:c5:
ff:6f:aa:06:1e:a8:5e:3f:7b:90:40:05:39:2d:8f:
11:5a:2e:b3:f1:71:50:d4:75:f5:30:9a:20:35:8b:
32:1d:30:ef:37:f2:c1:83:aa:b4:b9:56:b5:83:a4:
43:70:fc:2a:cf:18:e6:82:b8:d6:92:1e:a4:3d:39:
0e:05:3b:1e:60:50:80:da:58:1a:37:e9:14:1f:8e:
e4:85:a1:62:9e:7e:af:aa:60:c8:c1:92:af:ec:96:
91:e6:f4:04:88:dc:70:80:ea:ad:83:d5:c7:75:ad:
50:20:3c:6a:52:34:3b:cf:cc:5c:2d:80:e9:76:ab:
b2:99:99:fb:4f:cb:7e:50:26:d7:6c:48:fc:23:24:
ac:8a:0f:5a:5d:2f:10:7e:4c:32:37:84:d3:ee:62:
13:da:4f:d9:c6:d2:99:74:36:56:cf:20:83:9f:41:
1b:4a:26:97:05:d9:e3:00:63:01:f5:91:81:ae:a9:
56:59:bb:86:cd:e2:cc:9c:c1:0c:c3:89:b6:26:fc:
69:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:A7:07:59:BA:B2:EF:55:4D:F4:D3:C8:AA:31:8F:3A:75:0E:4A:37
X509v3 Authority Key Identifier:
keyid:AB:27:D4:F6:2B:5B:A9:8D:FA:57:D7:3D:6D:D5:89:75:96:EA:73:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qyfU9itbqY36V9c9bdWJdZbqc-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/ecd521-e7d3-4416-9f97-4deec0808d0c/1/86cHWbqy71VN9NPIqjGPOnUOSjc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/ecd521-e7d3-4416-9f97-4deec0808d0c/1/qyfU9itbqY36V9c9bdWJdZbqc-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.89.0/24
Signature Algorithm: sha256WithRSAEncryption
24:29:e9:38:e8:34:6d:2c:2e:b6:89:74:d8:88:96:d4:75:a4:
14:1e:00:f2:9f:7e:8b:92:62:5c:7e:7b:62:a1:5d:ee:e8:41:
fc:65:75:6d:f0:75:93:0a:10:64:2b:7b:97:cb:28:f6:ad:5b:
8b:9e:46:66:6a:68:a9:2e:18:58:39:0c:fa:99:00:28:09:d9:
30:2e:cf:02:36:18:76:ed:db:c6:27:18:03:15:73:e4:3a:d1:
32:c7:90:49:49:a3:f0:66:b5:0c:07:64:76:10:56:67:69:aa:
58:30:e5:6f:93:b3:a3:eb:8b:b8:1e:1a:60:1c:ea:e8:98:03:
20:15:c2:5a:96:07:30:6d:b9:46:a9:1e:60:8b:a8:f0:44:75:
42:b1:4f:4e:5b:13:aa:e8:c0:2c:91:65:3a:78:4d:1f:31:19:
10:38:a5:64:61:8c:48:3f:96:e6:d5:bc:63:f5:1b:18:98:82:
07:f4:a0:86:a7:75:cc:0d:78:ad:6c:c2:f3:6d:aa:59:35:e2:
e4:92:9a:a1:78:6b:4f:56:f0:6f:d3:94:cc:a4:a8:8f:b3:f3:
20:97:ab:ff:ec:f1:ef:d7:1b:aa:70:c5:ff:ee:29:83:e9:42:
b0:68:24:88:1e:c4:33:8c:06:c4:5c:0f:45:0d:5a:16:8d:17:
fa:a8:b5:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:49 2024 by rpki-client on console-ams.rpki-client.org