Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/c57b65-c9cf-47e7-8931-8d51a71e8637/1/8rd9d02L6bvwnvT57X88kN1Vh14.roa
File: 8rd9d02L6bvwnvT57X88kN1Vh14.roa (raw, json)
Hash identifier: ihBoC5Mryzqu08KHxz+3RqVNVIcexBX9xQ4JfJpMryc=
Subject key identifier: F2:B7:7D:77:4D:8B:E9:BB:F0:9E:F4:F9:ED:7F:3C:90:DD:55:87:5E
Certificate issuer: /CN=775984a0e1d3d427f6e03f279f66067ede80eb6b
Certificate serial: 097558A2
Authority key identifier: 77:59:84:A0:E1:D3:D4:27:F6:E0:3F:27:9F:66:06:7E:DE:80:EB:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d1mEoOHT1Cf24D8nn2YGft6A62s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/c57b65-c9cf-47e7-8931-8d51a71e8637/1/8rd9d02L6bvwnvT57X88kN1Vh14.roa
Signing time: Sat 01 Jan 2022 01:52:52 +0000
ROA not before: Sat 01 Jan 2022 01:52:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3549
IP address blocks: 194.1.181.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158685346 (0x97558a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=775984a0e1d3d427f6e03f279f66067ede80eb6b
Validity
Not Before: Jan 1 01:52:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f2b77d774d8be9bbf09ef4f9ed7f3c90dd55875e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:68:b2:f2:a4:e3:b8:8b:12:38:0a:d1:89:86:
97:5d:d0:52:36:70:e3:27:68:9c:a4:86:9f:3d:35:
3b:c5:e5:25:43:aa:4e:42:08:43:97:da:a5:7a:02:
34:0b:91:a3:b4:ce:10:0f:d0:31:f7:d5:ca:a1:c0:
7b:34:94:00:fa:33:ec:a0:a2:13:9f:b3:54:8e:c0:
95:45:95:98:47:28:f7:2d:ad:f9:35:99:9e:06:ac:
4c:e4:46:ab:a3:99:22:04:e6:79:80:14:61:75:a3:
17:ee:ed:e6:b2:a5:b6:11:0d:9b:48:16:5a:6e:21:
6e:02:ea:a1:e8:4a:7c:4e:9f:30:3b:13:79:62:5d:
5c:97:31:4d:77:5e:ae:c7:76:ad:7d:64:b9:f7:a1:
ba:a8:57:d0:78:9d:79:0d:06:28:30:7b:af:09:30:
db:92:42:8e:95:93:e0:bd:25:11:5c:3b:c6:72:92:
f2:01:ac:58:ff:73:ae:9b:df:b2:51:03:29:98:2d:
be:a6:3f:d3:9a:08:55:21:1a:7d:20:c8:83:3f:ee:
24:44:58:16:eb:e3:21:6d:a6:eb:32:8b:ae:a2:49:
b2:e3:93:28:19:0f:ac:7b:ee:e8:be:aa:88:e3:7b:
b9:b8:f2:aa:48:3f:b4:77:1b:e2:5a:4e:ac:86:43:
e2:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:B7:7D:77:4D:8B:E9:BB:F0:9E:F4:F9:ED:7F:3C:90:DD:55:87:5E
X509v3 Authority Key Identifier:
keyid:77:59:84:A0:E1:D3:D4:27:F6:E0:3F:27:9F:66:06:7E:DE:80:EB:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1mEoOHT1Cf24D8nn2YGft6A62s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c57b65-c9cf-47e7-8931-8d51a71e8637/1/8rd9d02L6bvwnvT57X88kN1Vh14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c57b65-c9cf-47e7-8931-8d51a71e8637/1/d1mEoOHT1Cf24D8nn2YGft6A62s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.1.181.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:10:55:b8:b8:9b:07:98:16:4c:8e:5d:af:c9:2d:03:3d:72:
8f:53:d8:27:c4:50:e7:34:0a:19:26:5a:10:6c:e9:ae:41:32:
05:e9:9d:92:63:2f:d9:1f:94:f5:ae:14:a7:b6:22:5c:d3:a5:
75:9f:ae:ac:54:d5:5b:e6:c5:0d:de:78:44:a4:13:a5:85:39:
b2:a1:59:08:fa:13:6d:9e:69:0c:93:4a:5f:4c:26:65:66:6a:
ef:37:f2:b3:c6:cd:f3:72:2e:62:a0:a9:4d:01:5f:0d:b4:c3:
d9:b6:f3:cd:68:2b:c8:99:2c:1e:0e:0d:c5:ce:be:bf:ea:7c:
4f:29:58:85:9c:6b:1f:ea:00:dc:04:92:6f:7c:40:ef:d6:84:
99:62:ab:be:63:df:fb:ee:1f:13:d4:58:cf:0c:46:0b:1e:c7:
e9:7c:dc:ca:83:aa:1f:c5:2c:e9:f2:63:4c:da:f4:96:ac:27:
46:c0:84:1a:a6:36:b2:50:7b:95:19:a1:8d:bd:4e:b9:e7:03:
3d:cf:12:e2:bd:5e:ec:19:b4:de:84:84:9d:3d:6c:4c:a3:2a:
ed:9e:04:d1:7e:03:20:24:b7:8d:f2:d3:45:b5:34:ac:02:99:
73:87:f4:db:55:9f:22:91:5d:42:ef:1a:3a:f9:7e:41:69:40:
67:d5:8a:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:44 2024 by rpki-client on console-fra.rpki-client.org