Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/df6475-bd71-41e9-9774-779d5fe8a36d/1/k-psgthaDUHL0bc3UN6H-U4FBYc.roa
File: k-psgthaDUHL0bc3UN6H-U4FBYc.roa (raw, json)
Hash identifier: yPj8klMqEdkDXIf//P+6qnoWLd5G3+e/tE0mpVI9y7Y=
Subject key identifier: 93:EA:6C:82:D8:5A:0D:41:CB:D1:B7:37:50:DE:87:F9:4E:05:05:87
Certificate issuer: /CN=c648ee064453d799b82e847b349666bf29daa961
Certificate serial: 01856DC1D8B0D501BF8E079AB0188FB2FD34
Authority key identifier: C6:48:EE:06:44:53:D7:99:B8:2E:84:7B:34:96:66:BF:29:DA:A9:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xkjuBkRT15m4LoR7NJZmvynaqWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/df6475-bd71-41e9-9774-779d5fe8a36d/1/k-psgthaDUHL0bc3UN6H-U4FBYc.roa
Signing time: Sun 01 Jan 2023 14:34:58 +0000
ROA not before: Sun 01 Jan 2023 14:34:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206654
IP address blocks: 194.39.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:d8:b0:d5:01:bf:8e:07:9a:b0:18:8f:b2:fd:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c648ee064453d799b82e847b349666bf29daa961
Validity
Not Before: Jan 1 14:34:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=93ea6c82d85a0d41cbd1b73750de87f94e050587
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:9c:eb:7f:73:7e:ed:f3:26:98:80:f7:00:e9:
24:a3:26:42:3e:ad:c2:de:83:22:b3:fe:8c:b5:b0:
37:2a:d1:05:4b:1a:dd:17:ba:3a:b4:40:7b:9a:df:
5c:77:cf:74:98:84:c4:42:4e:33:c6:08:0d:09:46:
19:20:a6:cb:31:37:a8:c5:8e:bf:74:eb:62:d7:67:
61:7f:a2:92:21:88:d6:b4:10:71:5a:90:6b:7f:12:
3f:93:06:5c:65:6a:bd:2a:7c:06:db:8f:92:22:22:
75:eb:85:58:49:0c:82:72:61:13:be:4b:16:78:3d:
45:ac:b9:57:f1:00:e9:65:85:e3:02:84:ad:f5:b3:
45:da:69:c7:a4:e2:22:4e:42:f3:02:9f:da:3b:ee:
bb:12:55:eb:06:4f:cc:92:41:e2:20:25:98:98:c1:
c7:f8:83:2f:82:67:ce:a8:23:a7:0d:12:5a:d7:c4:
84:9a:22:22:b4:49:5b:01:be:4c:90:fb:28:73:f1:
b5:ed:7a:a6:8e:1f:99:88:52:23:b8:f9:a4:8e:df:
6f:37:1b:ae:bb:12:b0:ae:d7:f1:93:42:46:46:87:
c0:75:90:2a:83:84:da:b6:ff:f7:d8:de:d7:f3:6c:
26:44:e3:03:a0:ae:7c:b4:7a:c1:51:b7:fa:74:cd:
57:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:EA:6C:82:D8:5A:0D:41:CB:D1:B7:37:50:DE:87:F9:4E:05:05:87
X509v3 Authority Key Identifier:
keyid:C6:48:EE:06:44:53:D7:99:B8:2E:84:7B:34:96:66:BF:29:DA:A9:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xkjuBkRT15m4LoR7NJZmvynaqWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/df6475-bd71-41e9-9774-779d5fe8a36d/1/k-psgthaDUHL0bc3UN6H-U4FBYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/df6475-bd71-41e9-9774-779d5fe8a36d/1/xkjuBkRT15m4LoR7NJZmvynaqWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.39.111.0/24
Signature Algorithm: sha256WithRSAEncryption
03:18:04:e9:3c:25:32:64:c1:52:2c:2b:34:a7:db:20:b4:00:
26:58:40:d1:cb:96:75:55:2a:88:51:9e:2d:4a:2b:27:4b:11:
ef:d7:a7:27:21:5d:54:21:71:35:45:5d:ee:57:dc:b8:35:5a:
0a:6b:25:10:35:ed:2b:bf:a6:dc:c0:34:35:af:84:a4:3d:b3:
5c:a9:ae:9f:e7:6e:7b:d3:11:ca:6e:d1:81:bd:98:0d:ed:5e:
d2:0b:3c:2f:2a:00:6e:bf:f0:25:4a:d5:9a:94:eb:8d:0f:cf:
c6:93:3f:fb:4f:f8:1a:46:48:c0:0d:dc:db:23:36:09:4d:52:
8d:e5:3c:f6:0a:72:4d:96:6f:23:e6:a4:2a:71:89:6e:c0:e9:
5e:81:9a:f9:bc:25:75:9a:39:e0:29:a5:b4:10:42:2a:cb:14:
90:4f:22:2d:9d:dc:7e:b7:79:48:08:36:64:69:d4:d6:44:0f:
f3:db:c1:58:f4:58:f6:1a:a5:02:73:90:83:be:41:86:94:99:
b7:9e:7f:e6:65:36:04:de:94:97:29:4e:af:02:c0:0b:da:cb:
46:05:c2:5a:f0:52:2d:30:ec:19:21:d3:3d:35:d0:03:80:2c:
15:62:77:7e:82:38:d7:13:f6:01:36:42:52:7f:92:7c:95:b5:
c9:29:8c:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:04 2024 by rpki-client on console-fra.rpki-client.org