Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/916670-1d0a-4e6d-af4a-27c6820a23fa/1/TMfBLIROBBxGD9I3u0rL_CUaa3I.roa
File: TMfBLIROBBxGD9I3u0rL_CUaa3I.roa (raw, json)
Hash identifier: jbMAWibkOsBdnR+HHc6UTKnMxIZ9WhATod0xUhujTao=
Subject key identifier: 4C:C7:C1:2C:84:4E:04:1C:46:0F:D2:37:BB:4A:CB:FC:25:1A:6B:72
Certificate issuer: /CN=a7f1a0af5a7e92077ce3a2988d7976d1f5c74b19
Certificate serial: 0189CA20DC475EAFD8D5F8DE6399C9A7A538
Authority key identifier: A7:F1:A0:AF:5A:7E:92:07:7C:E3:A2:98:8D:79:76:D1:F5:C7:4B:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p_Ggr1p-kgd846KYjXl20fXHSxk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/916670-1d0a-4e6d-af4a-27c6820a23fa/1/TMfBLIROBBxGD9I3u0rL_CUaa3I.roa
Signing time: Sun 06 Aug 2023 09:14:58 +0000
ROA not before: Sun 06 Aug 2023 09:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 194.29.58.0/24 maxlen: 24
194.29.56.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ca:20:dc:47:5e:af:d8:d5:f8:de:63:99:c9:a7:a5:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7f1a0af5a7e92077ce3a2988d7976d1f5c74b19
Validity
Not Before: Aug 6 09:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4cc7c12c844e041c460fd237bb4acbfc251a6b72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:40:75:e1:1a:bc:4f:84:1e:10:22:e4:d2:0a:
65:56:23:d0:f3:e3:a2:e5:cb:ca:b3:21:a9:97:f7:
64:d6:0f:96:b5:b0:13:be:ea:8a:c6:5a:67:dd:a5:
82:82:70:f2:a0:01:c0:13:81:79:dc:9c:d7:cd:fc:
e4:ab:1c:96:3b:fd:b6:4d:20:49:52:2a:0c:41:bd:
bc:d8:c3:77:a9:bc:c5:20:ad:ac:2d:a8:ee:63:50:
f5:7e:95:b0:2b:60:fc:ba:cd:89:00:5b:40:6e:d0:
fa:73:00:0a:3c:79:b6:b5:25:22:ab:41:34:a2:4b:
35:7b:81:97:0d:9a:df:3d:62:e3:5d:78:a1:63:f4:
5b:a4:f8:d6:06:6f:7d:85:08:6c:90:77:54:eb:54:
bf:62:47:b2:1a:18:ef:be:e6:13:89:fe:8d:95:1b:
74:1d:0c:95:4c:f5:67:c2:dd:bb:1d:d3:3c:ed:a7:
46:63:14:fb:e4:82:f8:19:00:c0:60:c3:73:21:1d:
ac:2a:0b:9e:1d:f7:88:a2:11:51:61:3f:17:9a:c2:
75:93:c1:94:fe:dc:c9:e2:a5:d9:e0:bd:b4:3b:5d:
32:bc:3c:a4:d4:85:9c:75:90:45:d5:63:10:fa:a4:
0d:4b:64:7c:ae:ee:a0:ea:f7:3a:5f:ba:78:f5:89:
6a:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:C7:C1:2C:84:4E:04:1C:46:0F:D2:37:BB:4A:CB:FC:25:1A:6B:72
X509v3 Authority Key Identifier:
keyid:A7:F1:A0:AF:5A:7E:92:07:7C:E3:A2:98:8D:79:76:D1:F5:C7:4B:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p_Ggr1p-kgd846KYjXl20fXHSxk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/916670-1d0a-4e6d-af4a-27c6820a23fa/1/TMfBLIROBBxGD9I3u0rL_CUaa3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/916670-1d0a-4e6d-af4a-27c6820a23fa/1/p_Ggr1p-kgd846KYjXl20fXHSxk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.29.56.0/24
194.29.58.0/24
Signature Algorithm: sha256WithRSAEncryption
83:cd:e4:c9:ad:89:4f:fc:ce:4e:ff:6e:cb:82:b7:14:7f:e2:
cf:08:3d:fa:2d:c2:15:33:ea:3d:79:9c:0c:b6:0f:49:2e:31:
3c:46:be:34:59:95:5d:7f:c7:d8:0a:72:fd:d2:e9:d9:6d:5c:
29:67:51:f9:13:0c:30:38:9f:5f:e7:1a:87:2a:ea:fa:7a:4b:
d2:88:45:56:6a:79:c4:c3:4d:c4:30:8a:0a:8f:7d:cb:f5:26:
cc:20:9c:8a:14:a4:d6:af:99:75:19:0a:17:25:ca:3a:5d:99:
1d:2c:72:5d:77:c6:d3:ba:4d:3c:2c:9c:b2:ef:a2:a1:d5:03:
03:2b:d7:87:a8:de:b9:f1:eb:ea:f9:56:8c:90:b8:9e:00:47:
09:ad:fd:7a:d5:93:ce:ab:29:a2:a3:61:fe:7e:fb:2b:93:95:
34:2b:89:d6:4d:88:e1:a2:15:85:7b:09:83:57:3a:13:47:d9:
a2:c5:ab:d7:e8:55:f7:ee:15:29:dc:02:36:79:dd:66:5f:fd:
d5:99:23:7c:a5:3b:29:b5:64:fc:61:0e:a8:cf:d0:f4:c2:20:
ce:22:50:c9:5a:de:04:2c:4f:10:56:4a:7e:df:d3:e6:f4:79:
fb:34:e3:fe:e2:80:94:c3:f5:72:1c:91:b9:2e:33:d7:75:b9:
2e:2c:08:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 16 13:59:27 2023 by rpki-client on console-fra.rpki-client.org