Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/c57b65-c9cf-47e7-8931-8d51a71e8637/1/dCzca2ITY7BwclBMSXbTjGivmbk.roa
File: dCzca2ITY7BwclBMSXbTjGivmbk.roa (raw, json)
Hash identifier: RxIWtSoGB6of1HsDAGAkmpI1C/Tdx8t+FrBFHwmGB08=
Subject key identifier: 74:2C:DC:6B:62:13:63:B0:70:72:50:4C:49:76:D3:8C:68:AF:99:B9
Certificate issuer: /CN=775984a0e1d3d427f6e03f279f66067ede80eb6b
Certificate serial: 09763AB6
Authority key identifier: 77:59:84:A0:E1:D3:D4:27:F6:E0:3F:27:9F:66:06:7E:DE:80:EB:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d1mEoOHT1Cf24D8nn2YGft6A62s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/c57b65-c9cf-47e7-8931-8d51a71e8637/1/dCzca2ITY7BwclBMSXbTjGivmbk.roa
Signing time: Sat 01 Jan 2022 01:52:52 +0000
ROA not before: Sat 01 Jan 2022 01:52:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41412
IP address blocks: 194.1.181.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158743222 (0x9763ab6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=775984a0e1d3d427f6e03f279f66067ede80eb6b
Validity
Not Before: Jan 1 01:52:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=742cdc6b621363b07072504c4976d38c68af99b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:95:c3:3e:10:80:b5:37:7a:c3:f0:e4:dd:d2:
77:d8:a9:9d:59:b8:cc:a7:78:be:a4:ed:a7:d4:ef:
5d:26:4a:46:af:80:66:27:bd:79:32:96:10:40:b2:
ce:cd:a6:b3:fd:aa:d7:93:e2:2a:d6:de:e5:7e:13:
bd:ed:87:dd:b8:85:a7:0b:a0:8e:03:3e:f9:79:48:
72:e9:e8:e1:ad:d4:e7:4c:50:55:df:b0:03:27:a7:
e6:da:97:8c:69:55:aa:65:db:0c:37:0c:43:d1:6e:
d4:e7:3a:4d:7b:1f:a9:0a:b0:ea:aa:65:37:df:a8:
45:a9:65:2f:0c:65:66:95:08:f6:82:37:9b:83:47:
46:18:62:0d:8c:f3:f1:03:87:b0:1b:1e:c5:72:ab:
f9:b4:84:d3:ee:83:3f:91:40:e9:73:a0:02:b0:c6:
e7:ee:7e:fe:94:8d:35:e1:3c:ec:a9:98:eb:e3:94:
5b:ba:e6:c4:35:82:7c:d7:b6:42:c0:58:16:da:36:
18:72:84:37:ff:b0:4d:38:e0:71:03:39:d3:f1:39:
c5:ed:82:58:b9:00:29:b3:f9:aa:3e:6b:25:a1:42:
6e:bb:5a:21:8c:3a:95:ed:1c:4a:ef:b2:f8:1d:bd:
83:65:8f:27:ab:5a:6c:72:7c:98:a5:bd:7a:e3:24:
9d:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:2C:DC:6B:62:13:63:B0:70:72:50:4C:49:76:D3:8C:68:AF:99:B9
X509v3 Authority Key Identifier:
keyid:77:59:84:A0:E1:D3:D4:27:F6:E0:3F:27:9F:66:06:7E:DE:80:EB:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1mEoOHT1Cf24D8nn2YGft6A62s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c57b65-c9cf-47e7-8931-8d51a71e8637/1/dCzca2ITY7BwclBMSXbTjGivmbk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c57b65-c9cf-47e7-8931-8d51a71e8637/1/d1mEoOHT1Cf24D8nn2YGft6A62s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.1.181.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:7e:09:a6:c8:89:e0:7a:01:87:f9:e1:98:39:83:7a:a0:08:
fe:a7:85:d4:66:5e:a5:d5:8a:b3:04:9f:99:2c:04:55:92:4f:
ed:08:12:71:ed:ad:5a:c8:ac:d9:59:78:55:58:bf:56:83:a1:
0f:bb:01:40:6b:eb:10:4f:f8:cc:19:46:d4:3e:81:d7:7f:88:
64:d8:81:c0:ef:cc:97:30:f1:43:ef:63:3a:e4:89:8d:71:d4:
17:9b:de:89:f3:28:c7:78:3f:8f:e5:f8:25:26:c2:4e:7e:be:
03:a2:2c:c1:77:20:df:af:02:71:bb:34:04:5d:9b:d8:a0:ad:
18:07:f8:12:6c:44:4a:5f:37:ae:79:35:b7:fa:08:8a:b7:f1:
da:e2:84:d3:6e:c8:d8:c5:f0:d2:7f:51:3a:ab:e8:f0:ee:c9:
6d:6a:bf:79:37:af:9b:22:db:04:60:64:a3:74:0d:49:53:2f:
ee:7e:84:fa:04:d4:c7:7d:ce:72:7a:b5:9a:12:af:f5:36:eb:
73:3d:fa:93:e1:b8:42:02:2b:f9:a8:7d:2e:42:18:64:38:f5:
ab:a8:ea:23:ea:4f:f9:8f:bb:21:8a:d0:a9:e5:1d:0f:58:c4:
d9:1c:35:e7:fd:2c:19:5f:dd:d1:85:7e:4d:73:11:3d:72:08:
c9:94:57:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:44 2024 by rpki-client on console-fra.rpki-client.org