Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/c57b65-c9cf-47e7-8931-8d51a71e8637/1/C0MFChowXs3-AvbsiiJ8WWEW0UA.roa
File: C0MFChowXs3-AvbsiiJ8WWEW0UA.roa (raw, json)
Hash identifier: ysHIRc5utQG1lxn291oodIY/SdZiMiMtrnU6X+hWzkU=
Subject key identifier: 0B:43:05:0A:1A:30:5E:CD:FE:02:F6:EC:8A:22:7C:59:61:16:D1:40
Certificate issuer: /CN=775984a0e1d3d427f6e03f279f66067ede80eb6b
Certificate serial: 09752C0E
Authority key identifier: 77:59:84:A0:E1:D3:D4:27:F6:E0:3F:27:9F:66:06:7E:DE:80:EB:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d1mEoOHT1Cf24D8nn2YGft6A62s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/c57b65-c9cf-47e7-8931-8d51a71e8637/1/C0MFChowXs3-AvbsiiJ8WWEW0UA.roa
Signing time: Sat 01 Jan 2022 01:52:51 +0000
ROA not before: Sat 01 Jan 2022 01:52:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1299
IP address blocks: 194.1.181.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158673934 (0x9752c0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=775984a0e1d3d427f6e03f279f66067ede80eb6b
Validity
Not Before: Jan 1 01:52:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b43050a1a305ecdfe02f6ec8a227c596116d140
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:3d:c4:13:32:96:cc:49:6a:d5:0a:cf:8d:d2:
e7:9d:2b:a3:f8:c7:db:7d:cd:19:b9:16:83:f6:2a:
86:48:02:c6:2c:ee:69:3f:24:19:2a:cd:bd:1d:5c:
78:d0:c3:6f:18:1a:ff:90:c7:53:f4:b2:c5:04:d3:
ba:f0:7c:78:a4:ef:21:13:59:28:93:d5:96:d7:83:
8f:22:61:56:0b:79:a7:45:e2:48:ea:88:57:80:ff:
cd:f7:d8:ac:56:cf:7a:f7:40:48:16:b2:91:e5:5f:
9d:17:4e:ba:a1:cf:0e:fb:6b:c7:a9:cb:7e:cf:49:
69:55:91:c6:25:cd:7e:aa:34:f2:c4:a1:7e:65:8f:
26:a0:46:42:2a:7d:18:34:a0:f1:58:82:21:9d:45:
01:d8:72:7c:e0:1b:e0:c8:8d:5b:35:95:49:6f:13:
b5:ec:d9:1f:1f:78:42:9b:b1:6a:d8:3a:6a:65:33:
77:0e:65:a7:de:46:fa:7d:26:71:82:09:28:f7:43:
36:f0:8b:94:21:b1:7c:eb:06:2e:a5:97:4a:db:69:
d1:52:fd:ba:48:e5:75:10:a2:bf:db:a3:8b:dc:6d:
ee:bf:39:c0:59:4a:db:a5:fa:e1:c7:a5:86:58:cb:
bf:c8:f6:7f:cc:e3:20:34:b2:8e:b7:65:fd:23:19:
97:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:43:05:0A:1A:30:5E:CD:FE:02:F6:EC:8A:22:7C:59:61:16:D1:40
X509v3 Authority Key Identifier:
keyid:77:59:84:A0:E1:D3:D4:27:F6:E0:3F:27:9F:66:06:7E:DE:80:EB:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1mEoOHT1Cf24D8nn2YGft6A62s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c57b65-c9cf-47e7-8931-8d51a71e8637/1/C0MFChowXs3-AvbsiiJ8WWEW0UA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c57b65-c9cf-47e7-8931-8d51a71e8637/1/d1mEoOHT1Cf24D8nn2YGft6A62s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.1.181.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:0c:4a:6a:d3:47:06:05:60:34:be:0b:ed:a5:a7:e5:bb:61:
ba:ef:17:68:57:e0:ad:73:7f:d9:e3:77:f4:4b:97:c7:fa:38:
5c:12:1d:a6:aa:da:6b:c7:0f:f9:a9:8b:d3:d1:6a:62:f1:2f:
42:92:a3:68:fa:49:eb:79:ee:a4:02:80:fc:47:e4:d8:5b:bd:
36:58:64:65:00:8c:8d:e5:52:70:79:09:6d:a2:e7:f8:9b:c0:
fd:50:0b:b6:1f:0a:0c:74:77:7e:32:d0:10:ea:64:41:ec:e5:
af:b4:17:0d:2e:73:a3:cf:ed:38:21:c7:c7:02:86:8a:36:96:
6f:42:0d:b5:fa:0e:6c:70:0d:18:62:fd:f8:61:49:c8:9a:dd:
6d:ec:bd:96:63:50:8d:ee:4c:ec:d2:d4:ce:12:04:20:d9:8d:
0e:0e:a9:aa:d5:6d:f5:5d:86:1f:7d:b4:2a:de:8f:ae:31:c2:
56:ae:34:b6:28:83:29:4e:9e:88:40:a1:52:be:33:7e:d0:7e:
a1:9b:c0:be:e8:25:62:23:54:b1:26:96:89:2c:85:79:81:61:
41:47:07:9b:b9:ad:9c:e5:8d:91:7e:64:f9:7d:46:75:45:0c:
69:c0:16:70:3a:c8:26:4c:91:fe:f2:7d:0d:fc:da:17:4c:74:
1b:bb:2a:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:28 2024 by rpki-client on console-ams.rpki-client.org