Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/a535d4-e038-40ba-98c1-1c5c9973b128/1/WTsvtvkB_o2upMY_Wln8x-T9UF0.roa
File: WTsvtvkB_o2upMY_Wln8x-T9UF0.roa (raw, json)
Hash identifier: 218irm1omchsFS9JvGXLqoaPJh8VbZIl+X4qu8b8hh4=
Subject key identifier: 59:3B:2F:B6:F9:01:FE:8D:AE:A4:C6:3F:5A:59:FC:C7:E4:FD:50:5D
Certificate issuer: /CN=537e9c6cd5b64e6342c53891faa742adf0a2193c
Certificate serial: 01E7B082
Authority key identifier: 53:7E:9C:6C:D5:B6:4E:63:42:C5:38:91:FA:A7:42:AD:F0:A2:19:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U36cbNW2TmNCxTiR-qdCrfCiGTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/a535d4-e038-40ba-98c1-1c5c9973b128/1/WTsvtvkB_o2upMY_Wln8x-T9UF0.roa
Signing time: Sat 28 May 2022 14:11:13 +0000
ROA not before: Sat 28 May 2022 14:11:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203020
IP address blocks: 146.255.187.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31961218 (0x1e7b082)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=537e9c6cd5b64e6342c53891faa742adf0a2193c
Validity
Not Before: May 28 14:11:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=593b2fb6f901fe8daea4c63f5a59fcc7e4fd505d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:6c:57:d4:ef:f4:6c:da:79:58:4b:50:34:f1:
00:4b:54:cb:69:64:ce:71:27:a5:50:b9:c9:30:25:
e1:03:ad:ae:c3:57:fa:ec:a7:f4:27:a0:e2:df:20:
4c:f4:d8:e5:69:34:d2:e0:de:5b:b2:84:b0:24:33:
fa:bb:c6:e0:bd:d3:2c:e2:af:a4:75:50:ce:5c:0b:
26:ba:07:3a:d6:ef:7e:9c:be:d3:04:97:ea:0a:bb:
82:c2:81:13:cc:42:ad:fd:be:e3:f2:a0:3a:93:28:
dc:e9:18:8e:5d:23:b4:3b:29:22:e8:69:91:dc:1c:
ae:da:61:7b:91:a1:95:49:a8:26:16:f0:4e:51:d4:
9a:ab:b4:2f:78:76:7d:78:a7:d0:7a:e3:d8:26:19:
f1:fe:18:74:ce:5e:2b:4d:db:1b:32:55:e4:8a:f3:
82:57:32:3b:5d:ce:c3:3c:fb:84:66:a0:14:5d:ce:
cf:b0:ca:d0:f8:93:0e:21:ae:db:7f:27:1d:82:4a:
20:e7:d6:79:45:cd:10:67:0e:9c:3d:71:91:14:c1:
0d:87:57:7f:2e:7b:6e:b6:4a:ea:de:32:89:21:83:
f2:85:21:a4:5a:78:29:af:3c:76:03:aa:2d:f5:25:
83:21:e0:f8:e9:b6:9d:42:f1:0e:f6:54:a1:07:8e:
95:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:3B:2F:B6:F9:01:FE:8D:AE:A4:C6:3F:5A:59:FC:C7:E4:FD:50:5D
X509v3 Authority Key Identifier:
keyid:53:7E:9C:6C:D5:B6:4E:63:42:C5:38:91:FA:A7:42:AD:F0:A2:19:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U36cbNW2TmNCxTiR-qdCrfCiGTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/a535d4-e038-40ba-98c1-1c5c9973b128/1/WTsvtvkB_o2upMY_Wln8x-T9UF0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/a535d4-e038-40ba-98c1-1c5c9973b128/1/U36cbNW2TmNCxTiR-qdCrfCiGTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.255.187.0/24
Signature Algorithm: sha256WithRSAEncryption
53:e8:6a:c2:2b:f6:b7:33:06:86:4d:76:1b:50:b0:1f:e4:c0:
44:f8:bd:ad:56:0e:86:c7:e9:e2:8a:1b:34:37:30:0c:11:14:
aa:c8:2a:48:bc:99:78:c3:7a:28:13:8c:85:c3:19:fd:a6:b4:
a7:36:2a:df:2b:77:bf:57:fa:eb:9d:54:86:6f:4d:9a:2b:a9:
58:ec:a8:3e:7c:87:0c:e4:a6:f1:c6:e9:09:ad:02:0a:45:b3:
4a:94:02:d9:44:85:a5:52:d7:77:14:68:f9:4d:50:dc:02:b8:
e8:33:59:81:8c:1c:f2:25:4f:82:42:f0:18:7c:30:c2:4e:80:
67:ca:ff:65:04:ec:d7:8a:68:8e:1b:b7:a3:a3:4d:93:bf:b0:
22:c4:fc:31:c6:03:44:1a:57:6e:8e:3c:67:bd:5a:37:89:b0:
16:30:f0:d1:91:68:db:18:a1:77:4d:11:02:4c:31:28:c8:58:
cd:43:2a:d4:49:8c:52:eb:d9:71:ab:ae:69:15:45:e9:71:76:
81:d2:c9:29:7f:19:80:b2:5f:ef:d6:77:5d:bf:b5:b1:82:f8:
50:8c:d3:df:3d:d6:25:7e:7d:ed:e0:da:25:47:6f:c9:99:d9:
31:f0:98:cb:3d:15:6e:17:1a:db:b0:f2:20:ce:6d:c0:e5:67:
4e:e6:7f:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:21 2024 by rpki-client on console-fra.rpki-client.org