Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/1b610b-2740-44e9-844a-9a3ccd99bdb4/1/lxA-WiEqTjRLfmfwPcWuKQtQiwo.roa
File: lxA-WiEqTjRLfmfwPcWuKQtQiwo.roa (raw, json)
Hash identifier: bmCO6mbgfuzdNBK/hAr+mxLx60rv9heRqkqLindVxac=
Subject key identifier: 97:10:3E:5A:21:2A:4E:34:4B:7E:67:F0:3D:C5:AE:29:0B:50:8B:0A
Certificate issuer: /CN=dcf035f7bfd506df6e19240fb43aeeb2c85200d4
Certificate serial: 018573B18A953A6495B4F4DD7A6A4B3376DC
Authority key identifier: DC:F0:35:F7:BF:D5:06:DF:6E:19:24:0F:B4:3A:EE:B2:C8:52:00:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3PA197_VBt9uGSQPtDrusshSANQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/1b610b-2740-44e9-844a-9a3ccd99bdb4/1/lxA-WiEqTjRLfmfwPcWuKQtQiwo.roa
Signing time: Mon 02 Jan 2023 18:14:53 +0000
ROA not before: Mon 02 Jan 2023 18:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44285
IP address blocks: 130.193.77.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:b1:8a:95:3a:64:95:b4:f4:dd:7a:6a:4b:33:76:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcf035f7bfd506df6e19240fb43aeeb2c85200d4
Validity
Not Before: Jan 2 18:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=97103e5a212a4e344b7e67f03dc5ae290b508b0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:7c:2c:cc:d0:89:95:f8:01:fa:fd:c9:92:18:
8c:b0:c0:a2:29:71:2f:ed:38:a6:42:b0:f8:cb:6d:
07:53:f5:b0:88:f5:4c:af:84:bf:03:a0:54:1b:21:
76:48:ed:80:28:66:b8:01:6c:2a:ce:b7:8b:22:ac:
41:04:ca:c6:7f:09:73:05:44:c6:05:cf:5f:8c:58:
cf:0f:00:92:cb:28:92:c8:bb:a3:7d:bc:66:00:12:
80:01:57:31:5f:c3:31:f4:30:99:49:ca:5f:f8:6a:
d7:0f:9f:8b:00:64:bb:9a:3c:e8:ff:e6:6d:82:2e:
ca:10:b4:31:c5:98:d1:e3:d0:07:cd:45:ea:56:71:
95:e0:0b:88:4a:d1:7d:e0:09:f5:b6:9e:c8:6a:09:
01:e7:67:72:66:b0:b4:c9:f9:15:8b:8a:5b:fb:93:
72:bc:a6:d6:69:7d:9b:7c:6b:64:0b:ca:a9:79:99:
51:d9:d6:ad:68:e1:7d:26:90:c5:9e:3d:2f:8f:57:
9e:b8:46:09:d3:bc:d8:2e:5d:a7:8d:b6:18:2a:43:
fd:bf:65:6a:e3:02:76:c2:d9:0b:83:c4:5a:ef:17:
b3:86:83:ec:a4:fb:d8:85:b9:60:7e:80:f8:83:ff:
32:60:45:ad:e1:7c:44:22:27:20:9f:9c:a4:5e:5b:
75:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:10:3E:5A:21:2A:4E:34:4B:7E:67:F0:3D:C5:AE:29:0B:50:8B:0A
X509v3 Authority Key Identifier:
keyid:DC:F0:35:F7:BF:D5:06:DF:6E:19:24:0F:B4:3A:EE:B2:C8:52:00:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3PA197_VBt9uGSQPtDrusshSANQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/1b610b-2740-44e9-844a-9a3ccd99bdb4/1/lxA-WiEqTjRLfmfwPcWuKQtQiwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/1b610b-2740-44e9-844a-9a3ccd99bdb4/1/3PA197_VBt9uGSQPtDrusshSANQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.193.77.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:32:33:60:8c:a3:11:4b:28:9b:a6:be:eb:48:77:06:01:59:
fb:95:89:8b:14:ef:e1:0c:6e:b8:6f:7a:f6:11:21:7f:f9:4f:
35:4a:b9:5a:44:6c:ea:35:4c:c5:58:80:c7:33:be:c9:04:cf:
69:0c:d7:3f:26:05:a2:f9:e3:fd:7c:7a:e8:71:4e:5b:f0:c4:
8c:98:3e:ce:7b:62:89:7f:e4:84:7b:db:b9:b3:16:1c:6d:71:
04:3f:4b:b7:44:d6:7d:3f:50:88:ae:46:0d:91:f3:7e:f5:86:
ff:1d:f4:7d:c2:12:df:41:63:29:a0:cc:6d:07:d5:92:57:10:
e0:c3:db:90:f9:12:30:d5:d0:e7:3c:6e:8a:30:03:c7:06:2c:
b9:79:1d:5a:50:c6:a9:37:0c:85:9d:3e:18:22:32:f4:27:2e:
66:2d:91:55:00:1b:25:65:73:b9:e8:ac:0c:c2:eb:86:d3:6d:
1c:a2:6d:4f:90:82:9b:3a:35:f2:e5:e4:7d:da:a9:0b:1d:e8:
67:7a:31:1f:53:a2:85:80:57:ea:52:b6:69:a6:21:72:18:74:
72:b8:35:65:a2:7b:bc:85:2b:cf:3d:19:89:2e:0e:c1:d6:2f:
55:e8:6d:cd:06:f3:46:bd:4f:01:51:ee:52:50:2a:a9:6d:f2:
d7:7c:ba:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:16 2024 by rpki-client on console-fra.rpki-client.org