Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/4a342a-0caa-44a7-854a-84f55a5beb37/1/eS-FXnL5dd3-kSvFXUek5MSfxCs.roa
File: eS-FXnL5dd3-kSvFXUek5MSfxCs.roa (raw, json)
Hash identifier: 1j8EE5bEj48slRQsXF29kZfbxXpNMr1Zx6Q/aSOM+TE=
Subject key identifier: 79:2F:85:5E:72:F9:75:DD:FE:91:2B:C5:5D:47:A4:E4:C4:9F:C4:2B
Certificate issuer: /CN=cadc8f3edfbf6b9d4d8f51452fd1d37cfbf854f3
Certificate serial: 0183EC3BEC1CD0DC0C375BDE3100C50E034D
Authority key identifier: CA:DC:8F:3E:DF:BF:6B:9D:4D:8F:51:45:2F:D1:D3:7C:FB:F8:54:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ytyPPt-_a51Nj1FFL9HTfPv4VPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/4a342a-0caa-44a7-854a-84f55a5beb37/1/eS-FXnL5dd3-kSvFXUek5MSfxCs.roa
Signing time: Tue 18 Oct 2022 17:54:53 +0000
ROA not before: Tue 18 Oct 2022 17:54:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41957
IP address blocks: 176.56.34.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ec:3b:ec:1c:d0:dc:0c:37:5b:de:31:00:c5:0e:03:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cadc8f3edfbf6b9d4d8f51452fd1d37cfbf854f3
Validity
Not Before: Oct 18 17:54:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=792f855e72f975ddfe912bc55d47a4e4c49fc42b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:9d:0a:9f:3b:15:34:a3:17:bf:14:34:79:69:
36:2e:07:0e:6b:b0:30:2c:a5:0f:55:b0:f6:04:f6:
92:f4:84:36:db:b2:de:33:04:ea:e4:56:7e:61:6d:
82:99:4e:a0:c4:17:96:84:35:ae:8a:f8:9c:23:21:
97:93:bc:3a:c5:ba:55:c4:90:0f:8c:a6:2a:ba:c7:
23:be:dc:4b:64:f4:df:12:6e:da:ba:ef:ff:de:45:
63:07:8a:e8:c3:cd:e6:19:73:42:41:ed:7f:70:51:
b6:dd:37:25:0a:c4:a1:b0:b1:0b:53:a0:b9:16:45:
1f:3b:36:13:d1:e8:e8:e0:5f:8b:72:a7:b1:89:86:
af:ce:00:ee:81:c9:7c:8b:3e:c0:73:f9:74:ea:3c:
db:06:b4:96:65:d3:e4:97:bf:9b:6a:d3:79:be:6e:
da:f6:cf:53:f3:bc:6e:e7:96:8d:fa:91:2f:1f:d6:
c8:90:2a:2d:26:59:df:5a:40:1e:18:b2:8b:a6:15:
d1:db:4d:61:e5:1c:be:b5:ad:32:78:69:8f:ae:66:
ac:bf:01:bd:4a:3c:36:80:bb:8e:48:65:45:e5:be:
25:86:2f:c4:45:4c:15:5b:17:be:1d:28:e7:ca:7a:
29:51:ec:5d:3b:fb:f3:56:e6:42:40:16:9f:49:d9:
c5:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:2F:85:5E:72:F9:75:DD:FE:91:2B:C5:5D:47:A4:E4:C4:9F:C4:2B
X509v3 Authority Key Identifier:
keyid:CA:DC:8F:3E:DF:BF:6B:9D:4D:8F:51:45:2F:D1:D3:7C:FB:F8:54:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ytyPPt-_a51Nj1FFL9HTfPv4VPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/4a342a-0caa-44a7-854a-84f55a5beb37/1/eS-FXnL5dd3-kSvFXUek5MSfxCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/4a342a-0caa-44a7-854a-84f55a5beb37/1/ytyPPt-_a51Nj1FFL9HTfPv4VPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.56.34.0/24
Signature Algorithm: sha256WithRSAEncryption
72:8e:fc:61:dc:2d:3b:c0:12:64:dd:a3:0e:c4:bd:33:32:32:
30:50:5e:fc:6a:49:8b:b2:ea:79:2e:aa:c2:06:9e:85:ac:bb:
66:8a:ac:0f:ed:e2:df:f0:e6:9e:f1:ba:d0:1c:98:6a:3d:5c:
d0:fe:89:78:fc:1e:b2:72:0c:1b:f9:73:4e:cb:e5:a7:f4:88:
94:2f:5c:46:4e:bf:3a:d5:d9:e0:a7:69:00:8f:94:59:ed:38:
f5:a4:de:f3:17:18:5d:87:87:fa:56:6f:25:f0:0c:61:5b:87:
92:dc:1d:4b:d6:f6:40:b9:66:21:10:d4:e9:6f:58:af:a6:12:
e6:01:31:63:6b:04:4f:e9:fd:98:51:cb:1e:a7:9e:70:76:b4:
86:b9:68:35:d3:f9:c3:61:82:9b:24:80:e6:45:2b:95:38:6f:
66:9c:36:30:dc:33:0b:4d:95:0f:2f:52:68:29:89:7e:99:8d:
62:f3:8e:1b:d6:bc:5b:35:b9:05:38:a5:db:1c:e9:b0:0d:96:
89:b5:b1:ab:49:cb:5f:fb:06:e9:ee:73:1e:26:27:94:74:56:
e1:ff:00:9b:c5:de:1e:ca:dd:42:e2:65:34:9d:5a:65:14:bd:
c7:2c:68:45:4b:c4:7d:68:cf:80:36:6b:92:42:5c:60:26:f7:
64:62:97:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:03 2024 by rpki-client on console-fra.rpki-client.org