Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/2970df-509e-42d3-b011-9b9ff9c24051/1/3Gm--xV5rVrxOA4t0bsHCutYg5Y.roa
File: 3Gm--xV5rVrxOA4t0bsHCutYg5Y.roa (raw, json)
Hash identifier: Edyq7OeuEaXME5616BGXRjJZLyCgz9bz4w/s6/rJKr4=
Subject key identifier: DC:69:BE:FB:15:79:AD:5A:F1:38:0E:2D:D1:BB:07:0A:EB:58:83:96
Certificate issuer: /CN=73d09d895b43a622a4521b95b99969dc673c0d7a
Certificate serial: 0185729F026F6A44408E288B4DA19A2055BF
Authority key identifier: 73:D0:9D:89:5B:43:A6:22:A4:52:1B:95:B9:99:69:DC:67:3C:0D:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c9CdiVtDpiKkUhuVuZlp3Gc8DXo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/2970df-509e-42d3-b011-9b9ff9c24051/1/3Gm--xV5rVrxOA4t0bsHCutYg5Y.roa
Signing time: Mon 02 Jan 2023 13:15:01 +0000
ROA not before: Mon 02 Jan 2023 13:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58061
IP address blocks: 93.177.104.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:9f:02:6f:6a:44:40:8e:28:8b:4d:a1:9a:20:55:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73d09d895b43a622a4521b95b99969dc673c0d7a
Validity
Not Before: Jan 2 13:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dc69befb1579ad5af1380e2dd1bb070aeb588396
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:de:e6:ed:7e:4e:b8:df:be:0d:a4:de:c4:cf:
3e:09:67:82:01:56:9d:be:ea:c6:2a:e6:50:10:26:
f1:47:bc:16:82:14:13:e1:69:cd:94:27:dc:76:46:
da:71:5f:52:20:59:97:ff:c2:29:16:22:93:92:ee:
f1:77:b1:43:50:bc:80:9b:3b:3b:7d:60:7e:c5:2f:
8c:b4:84:c6:c5:8b:1a:6e:a7:b9:ce:d4:6d:d6:11:
4f:db:a4:0e:fc:f1:b2:71:e0:45:a2:25:0f:e1:36:
87:fa:ba:4f:38:e8:4b:48:78:3b:21:1d:ea:23:63:
6d:5a:46:0c:67:6c:5e:2e:6b:89:10:6e:54:7e:8d:
b2:59:58:f8:30:01:dd:f7:3d:b9:b3:80:e2:c6:8f:
0b:85:cc:f9:40:99:41:6d:fd:66:74:a0:e1:78:40:
99:c6:99:24:9b:8e:32:74:04:dc:0a:04:34:b1:3c:
ab:52:06:1e:48:49:11:e1:b5:dc:42:61:0e:9c:1c:
d6:e1:bf:09:5c:4b:b4:d3:77:67:80:64:a2:83:e7:
95:fa:10:55:fc:52:9e:ab:bc:40:85:ae:ba:f6:bc:
51:35:b5:70:5c:65:eb:e9:76:16:bb:07:e5:cd:43:
dd:3f:4d:03:26:ad:b8:39:44:5a:4f:69:df:4d:97:
9b:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:69:BE:FB:15:79:AD:5A:F1:38:0E:2D:D1:BB:07:0A:EB:58:83:96
X509v3 Authority Key Identifier:
keyid:73:D0:9D:89:5B:43:A6:22:A4:52:1B:95:B9:99:69:DC:67:3C:0D:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9CdiVtDpiKkUhuVuZlp3Gc8DXo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/2970df-509e-42d3-b011-9b9ff9c24051/1/3Gm--xV5rVrxOA4t0bsHCutYg5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/2970df-509e-42d3-b011-9b9ff9c24051/1/c9CdiVtDpiKkUhuVuZlp3Gc8DXo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.177.104.0/24
Signature Algorithm: sha256WithRSAEncryption
dd:dd:a2:06:aa:c3:c7:92:3a:40:f9:03:2c:3c:65:92:cb:ae:
f2:ae:f8:33:75:e9:03:4e:31:aa:c8:76:f1:8b:8b:fc:d3:d2:
7f:50:1c:dc:54:a8:26:a9:4a:bc:92:bd:2b:e8:28:a5:4e:05:
64:7e:43:79:ca:b8:8f:c2:4c:ac:3b:a4:b5:4d:41:26:89:a0:
bd:8b:72:f4:58:70:72:43:00:3c:0e:15:df:fa:38:59:81:88:
76:bb:07:70:25:2f:c1:1e:9a:77:e2:83:92:62:f6:78:8c:56:
f9:14:2f:b9:b3:df:05:a0:c1:ac:1b:4d:47:9f:34:a3:1f:7d:
0e:5c:b9:3e:a1:e0:25:b7:f0:50:a6:7e:62:1d:b5:55:e2:45:
b7:d9:86:bf:0a:82:4a:58:8d:07:70:e7:c6:97:f2:d8:e7:23:
0f:84:7b:e1:f5:e9:d3:9b:ed:b6:7f:d4:0b:b3:3c:d7:01:70:
4b:30:e4:95:b6:a0:be:de:63:5f:41:97:98:d7:48:03:68:0a:
16:bd:0b:ce:a1:f6:d4:bb:73:ab:97:34:71:a9:85:15:3d:24:
54:2f:74:15:74:2f:35:f5:f2:4f:4c:aa:2c:b9:98:f9:41:75:
af:92:97:1d:bb:21:82:55:f8:ad:d3:a9:bd:c6:da:d1:ba:f1:
8a:fd:98:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:44 2024 by rpki-client on console-fra.rpki-client.org