Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/df6475-bd71-41e9-9774-779d5fe8a36d/1/q2Xyh1q5e00XsYdUzWvb9Q9wly8.roa
File: q2Xyh1q5e00XsYdUzWvb9Q9wly8.roa (raw, json)
Hash identifier: 7bNsD7s0TmGD/1nDm0XyaavrKkiHt2DPi5rDv4znrHc=
Subject key identifier: AB:65:F2:87:5A:B9:7B:4D:17:B1:87:54:CD:6B:DB:F5:0F:70:97:2F
Certificate issuer: /CN=c648ee064453d799b82e847b349666bf29daa961
Certificate serial: 01856DC1D80557B5748A87AD9BA6B03B0FAE
Authority key identifier: C6:48:EE:06:44:53:D7:99:B8:2E:84:7B:34:96:66:BF:29:DA:A9:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xkjuBkRT15m4LoR7NJZmvynaqWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/df6475-bd71-41e9-9774-779d5fe8a36d/1/q2Xyh1q5e00XsYdUzWvb9Q9wly8.roa
Signing time: Sun 01 Jan 2023 14:34:58 +0000
ROA not before: Sun 01 Jan 2023 14:34:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5089
IP address blocks: 194.39.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:d8:05:57:b5:74:8a:87:ad:9b:a6:b0:3b:0f:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c648ee064453d799b82e847b349666bf29daa961
Validity
Not Before: Jan 1 14:34:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab65f2875ab97b4d17b18754cd6bdbf50f70972f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:55:67:77:fd:b7:e0:09:77:eb:73:5c:bd:dc:
6a:7f:bb:2f:0c:6a:05:96:ec:0e:14:ef:7b:4d:b9:
76:9f:fe:cc:a7:86:9e:b9:1a:b6:21:27:6b:5f:3f:
c6:a6:9b:4c:74:7e:b5:22:c3:18:41:51:59:5d:ca:
0d:53:f6:43:8d:f7:31:d7:95:aa:79:59:eb:3f:ae:
1b:5d:81:4b:f2:af:e7:1a:28:a6:14:58:ba:ef:82:
b2:03:5a:0c:b7:6a:53:03:42:5d:a0:7a:d9:a3:69:
91:43:03:cb:87:e9:6f:4a:86:1e:5f:a6:21:23:25:
97:be:81:a9:a9:e9:04:20:64:da:16:05:8a:a4:23:
7e:af:99:59:b7:c6:d9:68:ab:b2:8f:b3:c8:10:96:
08:2d:43:8b:f3:1a:56:8b:fc:d7:2e:3a:3d:64:d8:
e5:74:5b:f5:ee:4c:3f:57:6d:1e:97:ca:21:02:64:
43:b1:a5:6f:4a:76:d9:e5:3f:69:8a:77:b1:bd:19:
d8:9c:d3:2a:d8:30:b2:33:04:d5:31:0d:26:ea:96:
68:d3:da:14:48:3b:17:f4:1f:c3:9d:bc:bc:2c:ca:
ef:91:58:11:fb:f7:d0:a9:ba:47:9a:c5:d0:e4:49:
df:f2:c5:44:9f:5f:db:38:d5:5b:54:13:80:e8:8a:
c4:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:65:F2:87:5A:B9:7B:4D:17:B1:87:54:CD:6B:DB:F5:0F:70:97:2F
X509v3 Authority Key Identifier:
keyid:C6:48:EE:06:44:53:D7:99:B8:2E:84:7B:34:96:66:BF:29:DA:A9:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xkjuBkRT15m4LoR7NJZmvynaqWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/df6475-bd71-41e9-9774-779d5fe8a36d/1/q2Xyh1q5e00XsYdUzWvb9Q9wly8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/df6475-bd71-41e9-9774-779d5fe8a36d/1/xkjuBkRT15m4LoR7NJZmvynaqWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.39.111.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:c7:45:60:91:50:30:67:d2:24:17:60:8e:56:73:50:de:d8:
0b:03:31:36:04:49:cd:39:c4:81:91:d5:e3:71:d2:79:da:fe:
4a:6e:21:39:33:99:a1:7e:48:42:87:ba:5d:66:a0:9b:5c:d8:
73:74:a1:47:8e:9e:72:76:25:9a:48:d6:da:ac:76:32:5d:22:
ca:cf:8d:ba:43:b3:dd:16:55:a3:e1:67:38:d8:86:d6:5a:49:
6e:01:f8:91:8a:b8:81:a2:93:b6:08:03:9e:7a:ec:dd:25:ce:
12:27:07:43:1c:81:9b:d9:05:52:93:dd:74:dd:4a:df:ca:c4:
0b:13:5e:c5:be:dd:77:7e:29:67:29:16:a3:67:59:ff:6d:4d:
e8:2f:22:9c:65:bf:31:65:34:74:55:9e:a5:82:3b:b6:ea:e5:
65:8c:a8:04:26:c0:63:e6:be:a6:f3:83:ca:75:06:04:c8:f8:
30:9b:49:fe:fd:4e:22:6e:c0:02:d7:31:46:a9:5a:e7:32:59:
b4:e9:3e:20:bc:98:77:8f:a1:18:40:9b:f6:7c:b3:da:9b:1a:
75:1a:8d:a1:01:3a:c3:d1:39:cf:68:07:e0:46:ac:c2:a4:27:
65:a3:db:2d:a1:3d:2c:6b:12:e5:d9:19:7e:03:b9:9c:4d:be:
80:70:da:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:00 2024 by rpki-client on console-ams.rpki-client.org