Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/2727b5-4c93-49e7-b7ee-f9895bb85fb1/1/fQLOCaNw8wNaIGF0r98CQissBYs.roa
File: fQLOCaNw8wNaIGF0r98CQissBYs.roa (raw, json)
Hash identifier: gIkbIPsmoc3lbjGFt27eSKaMR/LAfVtDLxhI3SYK87M=
Subject key identifier: 7D:02:CE:09:A3:70:F3:03:5A:20:61:74:AF:DF:02:42:2B:2C:05:8B
Certificate issuer: /CN=537b37656cd14d488a70512921875717a0d910b6
Certificate serial: 06447D42
Authority key identifier: 53:7B:37:65:6C:D1:4D:48:8A:70:51:29:21:87:57:17:A0:D9:10:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U3s3ZWzRTUiKcFEpIYdXF6DZELY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/2727b5-4c93-49e7-b7ee-f9895bb85fb1/1/fQLOCaNw8wNaIGF0r98CQissBYs.roa
Signing time: Thu 03 Feb 2022 22:28:45 +0000
ROA not before: Thu 03 Feb 2022 22:28:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12345
IP address blocks: 194.156.112.0/22 maxlen: 24
88.218.144.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105151810 (0x6447d42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=537b37656cd14d488a70512921875717a0d910b6
Validity
Not Before: Feb 3 22:28:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d02ce09a370f3035a206174afdf02422b2c058b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:6c:90:f8:6b:eb:a0:f1:69:92:57:46:14:cb:
96:3f:d6:96:78:6a:7b:04:ba:c9:fb:54:ad:84:65:
e4:6f:28:88:82:43:f6:d4:01:c7:2e:87:79:f4:d3:
56:75:58:fd:56:ad:36:17:ed:40:20:84:49:ed:d2:
b6:1c:c3:57:94:ae:ae:c3:c5:da:41:e6:2a:9f:31:
45:da:e4:19:fa:d0:c3:e0:68:02:d6:04:04:9d:99:
0d:3c:12:38:dd:f0:f7:3d:18:a4:93:43:a7:6c:51:
86:71:77:09:db:a4:fe:83:93:d9:a1:97:36:ea:25:
65:0b:36:b0:f3:21:82:8e:b3:52:1e:3a:4a:04:db:
c8:e1:a0:3d:43:ce:6b:e1:ab:cf:15:d4:ab:2f:eb:
ca:65:b9:1e:9b:3e:0e:b0:b3:02:2a:b8:36:2c:30:
a4:22:4f:25:84:5c:19:d8:c8:ca:95:ed:1b:77:ac:
a7:c5:2c:44:7c:0a:09:d7:1e:73:56:e4:9f:3f:b9:
ed:75:28:3c:6b:2d:25:91:45:0b:74:6e:0e:95:10:
a5:35:82:b9:a3:8f:04:28:4e:dd:fa:b3:38:03:b9:
18:b7:78:8d:7b:50:c6:94:df:2b:9c:63:4a:12:5c:
18:4a:b2:da:92:01:d8:ca:e4:a9:ff:30:0c:2e:bb:
89:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:02:CE:09:A3:70:F3:03:5A:20:61:74:AF:DF:02:42:2B:2C:05:8B
X509v3 Authority Key Identifier:
keyid:53:7B:37:65:6C:D1:4D:48:8A:70:51:29:21:87:57:17:A0:D9:10:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3s3ZWzRTUiKcFEpIYdXF6DZELY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/2727b5-4c93-49e7-b7ee-f9895bb85fb1/1/fQLOCaNw8wNaIGF0r98CQissBYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/2727b5-4c93-49e7-b7ee-f9895bb85fb1/1/U3s3ZWzRTUiKcFEpIYdXF6DZELY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.144.0/22
194.156.112.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:cf:ae:e1:e8:f1:fe:51:1c:33:3e:a8:9c:df:40:06:26:3b:
ba:b8:e1:fb:d8:51:46:ad:a3:74:79:de:2c:6b:8b:fb:6c:7b:
c0:56:49:f8:9d:ab:05:8f:5a:70:5a:bb:0c:ba:33:61:d3:52:
b3:a2:a4:12:2a:00:2f:80:0d:89:7a:8f:a2:0d:f3:ca:c4:50:
2e:e4:eb:aa:a8:1d:24:ba:cd:07:d0:12:a2:e4:e3:3c:e8:53:
84:00:42:c6:c1:3e:d2:82:00:da:7f:d0:8b:af:db:78:86:68:
61:dc:79:d5:e7:2a:7d:f2:a8:1b:fa:d3:6f:09:c5:74:f2:cc:
5a:19:f7:47:f8:f3:9b:f6:f7:d6:4b:ec:7e:48:da:bf:5b:d3:
43:9e:0b:ee:6f:3f:ee:94:f9:ce:b4:26:aa:aa:c9:5e:34:14:
bf:5a:22:b7:f2:45:b1:e6:0f:b3:c7:fd:86:37:40:2f:d5:e1:
01:51:c5:92:84:c7:41:2f:26:36:af:57:84:45:1c:7f:f2:26:
20:a7:ab:85:d0:35:f4:7c:fd:0b:31:e0:c2:3e:6a:94:7e:f5:
7a:3a:72:e8:1f:69:da:23:63:e1:f9:21:94:e3:fa:89:92:0c:
61:8c:c2:08:12:2c:01:a1:ec:f3:1d:f9:99:7f:bc:32:0e:08:
20:a8:b1:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:57 2024 by rpki-client on console-ams.rpki-client.org