Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/ee5d9b-c8e6-499a-aaeb-e5e742f4577f/1/vG9H28Q9ijUnNRmtXPN3EuDDKNw.roa
File: vG9H28Q9ijUnNRmtXPN3EuDDKNw.roa (raw, json)
Hash identifier: KeShTRu44UXjTVjab4UhBXjdh9DNiKaFn8Q4GGN5EU0=
Subject key identifier: BC:6F:47:DB:C4:3D:8A:35:27:35:19:AD:5C:F3:77:12:E0:C3:28:DC
Certificate issuer: /CN=651698c0cd983797915e7d793fb6d18c481e84c5
Certificate serial: 01856E78F9F119AEE2D5B1DCF1ADBE779F96
Authority key identifier: 65:16:98:C0:CD:98:37:97:91:5E:7D:79:3F:B6:D1:8C:48:1E:84:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZRaYwM2YN5eRXn15P7bRjEgehMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/ee5d9b-c8e6-499a-aaeb-e5e742f4577f/1/vG9H28Q9ijUnNRmtXPN3EuDDKNw.roa
Signing time: Sun 01 Jan 2023 17:55:00 +0000
ROA not before: Sun 01 Jan 2023 17:55:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211585
IP address blocks: 178.211.132.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:78:f9:f1:19:ae:e2:d5:b1:dc:f1:ad:be:77:9f:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=651698c0cd983797915e7d793fb6d18c481e84c5
Validity
Not Before: Jan 1 17:55:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bc6f47dbc43d8a35273519ad5cf37712e0c328dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:82:3f:1e:3d:f2:cd:9b:42:24:26:ea:59:c8:
26:6b:83:ec:43:08:60:fd:7d:ea:1a:16:c6:16:f6:
5e:c8:f4:7f:d9:26:33:ae:49:9b:a6:d9:9a:f0:e8:
6c:8e:9d:de:1b:2e:a4:a4:bb:8d:ad:7e:82:65:1c:
15:b9:8d:34:57:28:64:5c:dd:b6:80:ef:01:73:b0:
b0:65:f9:bd:a2:be:64:97:86:66:9f:42:2f:80:68:
da:a4:e4:71:a8:01:30:d4:cd:c0:b7:a4:2e:93:4c:
b7:56:86:e3:30:ff:d5:52:6e:02:53:1d:9f:41:a9:
93:ad:dd:7e:93:03:4f:d2:51:b3:88:d7:8b:54:62:
45:b8:0e:6b:0f:5d:8e:2d:e6:6f:15:f5:2a:b3:99:
24:19:3a:e6:2b:ea:84:f6:53:b5:45:c4:4d:23:17:
78:72:c4:65:0c:74:8f:7a:1d:0c:72:20:8d:01:57:
3b:49:35:07:b1:b3:d5:f3:62:34:52:18:72:c9:42:
2b:45:43:91:1f:86:63:4b:ac:e5:cc:39:30:af:2a:
e3:54:78:b8:9e:33:18:f1:81:76:be:04:07:c5:f7:
d7:30:f1:d8:f4:c5:f6:14:c5:a4:95:ca:e1:5d:b5:
79:a4:34:7c:0f:1a:a9:54:a8:21:0d:e9:ec:b4:7f:
a4:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:6F:47:DB:C4:3D:8A:35:27:35:19:AD:5C:F3:77:12:E0:C3:28:DC
X509v3 Authority Key Identifier:
keyid:65:16:98:C0:CD:98:37:97:91:5E:7D:79:3F:B6:D1:8C:48:1E:84:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZRaYwM2YN5eRXn15P7bRjEgehMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/ee5d9b-c8e6-499a-aaeb-e5e742f4577f/1/vG9H28Q9ijUnNRmtXPN3EuDDKNw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/ee5d9b-c8e6-499a-aaeb-e5e742f4577f/1/ZRaYwM2YN5eRXn15P7bRjEgehMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.211.132.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:10:1b:7d:2a:59:1e:45:2c:ef:7a:ac:5c:c8:6d:32:5d:d7:
30:40:f2:f1:3d:dc:2e:23:d9:c9:3c:8b:2d:50:28:91:cd:7b:
fc:a6:87:a0:da:7e:6e:2e:64:3e:0c:54:0c:ae:35:f0:10:2f:
82:a5:95:3a:36:6e:bd:45:f1:0e:30:00:dc:02:a1:00:c6:ca:
2d:79:2c:be:3e:9e:df:db:b8:ff:cb:78:29:0c:05:82:49:b3:
bb:18:c8:98:62:bc:de:08:6e:ca:cf:9f:83:5f:88:fe:46:33:
4e:63:49:24:7d:96:e4:a4:54:3f:70:90:29:3b:a5:2f:26:fb:
be:fe:7a:b1:63:2f:c0:f4:a3:b7:0e:02:e5:95:d1:60:f1:03:
07:8d:1b:4b:eb:8b:56:b8:27:04:23:39:d0:a4:2e:9e:9e:0e:
c6:db:6d:ef:31:33:4e:69:e1:57:d0:39:da:7f:1b:0b:48:7f:
92:17:b1:60:ba:44:57:e4:17:58:f4:ab:48:97:b1:a9:8b:ba:
47:03:3f:f6:44:b9:33:8b:05:89:4e:52:96:5e:1a:2e:64:e9:
61:39:28:78:94:56:24:fb:20:cd:f8:da:2f:42:fe:df:2b:3c:
af:c3:42:13:6e:89:14:65:3c:bc:85:35:a2:aa:b3:6d:69:b7:
7e:98:da:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:15 2024 by rpki-client on console-fra.rpki-client.org