Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/pEz5PL88gAZsxg5-Iovp_rAaWr8.roa
File: pEz5PL88gAZsxg5-Iovp_rAaWr8.roa (raw, json)
Hash identifier: EHy7FYkpWl50ER0d6yyQs0D2zo+7vomqDerc5vSluBg=
Subject key identifier: A4:4C:F9:3C:BF:3C:80:06:6C:C6:0E:7E:22:8B:E9:FE:B0:1A:5A:BF
Certificate issuer: /CN=624039399017fa093dc8d503799f6ca403f0bd05
Certificate serial: 01856D785DF0CEBA775F111EB269A374CA12
Authority key identifier: 62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/pEz5PL88gAZsxg5-Iovp_rAaWr8.roa
Signing time: Sun 01 Jan 2023 13:14:42 +0000
ROA not before: Sun 01 Jan 2023 13:14:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6939
IP address blocks: 194.31.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:78:5d:f0:ce:ba:77:5f:11:1e:b2:69:a3:74:ca:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=624039399017fa093dc8d503799f6ca403f0bd05
Validity
Not Before: Jan 1 13:14:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a44cf93cbf3c80066cc60e7e228be9feb01a5abf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:14:a4:7e:f1:82:40:39:cc:c6:74:73:69:9e:
92:6b:64:e8:50:e1:2c:6e:cf:a7:ff:a2:0c:19:31:
74:24:92:71:9a:97:de:25:6e:02:71:5e:83:78:d1:
85:a2:01:6d:32:46:34:e9:19:11:8c:e2:b9:ae:5e:
1e:18:ae:4c:24:91:64:8e:5d:11:7c:f2:c5:99:f6:
6b:e9:4d:e6:8f:69:ca:32:2c:b3:46:ca:ac:7b:f7:
17:91:a6:4b:8b:27:18:bb:35:01:1f:9b:1c:ab:de:
96:b4:e5:7b:74:24:f5:c0:18:99:1c:ee:fa:ab:fc:
a0:ba:fb:4e:19:d6:42:74:44:dc:c9:d6:67:a0:dd:
cf:5f:56:26:3d:22:e1:16:fb:a3:c6:03:3b:3a:8a:
94:13:3e:3c:c0:34:13:0a:45:25:eb:66:3e:88:3e:
c5:e2:85:dc:25:8f:c4:02:ac:e9:ae:1d:b0:17:45:
44:7d:49:39:eb:20:12:fd:1c:e2:72:29:b8:00:76:
a4:d1:ee:f8:c5:ef:ea:bf:43:85:3b:e2:d3:ed:6a:
58:02:af:4d:ab:38:ac:f6:b3:42:3f:62:39:8d:a4:
5c:b5:4d:e5:a2:a8:28:53:c6:7e:cc:42:97:19:ee:
fc:0c:5b:45:4d:41:30:14:0d:26:61:54:b1:fd:c0:
f8:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:4C:F9:3C:BF:3C:80:06:6C:C6:0E:7E:22:8B:E9:FE:B0:1A:5A:BF
X509v3 Authority Key Identifier:
keyid:62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/pEz5PL88gAZsxg5-Iovp_rAaWr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/YkA5OZAX-gk9yNUDeZ9spAPwvQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.195.0/24
Signature Algorithm: sha256WithRSAEncryption
28:25:17:63:c0:06:03:d4:e0:e6:19:c6:3c:85:35:0c:a4:33:
4a:6c:43:06:b8:a6:c7:a0:77:f6:3b:24:da:65:f3:13:cf:17:
c8:18:b9:19:2b:78:c8:2c:8a:8b:bd:f4:31:c7:2d:d1:8b:af:
cd:60:5b:24:37:43:d3:a5:de:2e:41:0b:90:29:cb:f9:eb:6d:
93:1e:3f:0d:76:3f:1e:7c:af:85:7c:0c:be:f3:b5:69:0e:29:
c5:e2:d9:7a:6e:e7:5b:1e:c5:7d:c9:8a:ef:82:ee:02:6e:a6:
d2:57:2c:ec:1e:83:20:af:d9:89:8a:08:7e:a7:ea:d6:b5:0d:
d8:02:46:77:e5:f9:85:31:a2:d4:ce:15:4d:3c:a2:c3:55:3e:
58:79:b2:6b:74:52:ca:5d:54:d7:fe:a8:fc:3c:5d:98:17:23:
f9:eb:8d:c5:68:fb:7b:72:66:1c:98:02:1a:43:3b:83:64:56:
8d:9c:74:ac:2a:b8:ae:38:a1:7a:b6:89:bf:7e:bb:b8:2a:0d:
c6:04:38:95:21:24:65:7b:e3:65:e3:70:f9:4f:54:f8:27:1e:
2a:ce:76:7e:ec:7b:5f:bf:43:54:13:73:47:23:2e:c7:75:9d:
d7:d5:7e:82:7e:82:40:05:08:12:8a:c7:e5:96:c7:aa:06:0d:
a9:19:e5:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:55 2024 by rpki-client on console-ams.rpki-client.org