Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/3ec59e-ea85-40cb-a285-07ded20e3c63/1/3WtjeqR9U9fWTWF7aYmNVkb7PhU.roa
File: 3WtjeqR9U9fWTWF7aYmNVkb7PhU.roa (raw, json)
Hash identifier: XapP3O5MSvY8dS70IBobaX6bdoyF7wAzbd8GhUWE+GA=
Subject key identifier: DD:6B:63:7A:A4:7D:53:D7:D6:4D:61:7B:69:89:8D:56:46:FB:3E:15
Certificate issuer: /CN=873ec15b98e26e8b29bb7dcf4a6052cace6d2683
Certificate serial: 018A45044E822F01E765E70338F1FBE288A7
Authority key identifier: 87:3E:C1:5B:98:E2:6E:8B:29:BB:7D:CF:4A:60:52:CA:CE:6D:26:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hz7BW5jibospu33PSmBSys5tJoM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/3ec59e-ea85-40cb-a285-07ded20e3c63/1/3WtjeqR9U9fWTWF7aYmNVkb7PhU.roa
Signing time: Wed 30 Aug 2023 05:57:04 +0000
ROA not before: Wed 30 Aug 2023 05:57:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 142019
IP address blocks: 176.53.147.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:45:04:4e:82:2f:01:e7:65:e7:03:38:f1:fb:e2:88:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=873ec15b98e26e8b29bb7dcf4a6052cace6d2683
Validity
Not Before: Aug 30 05:57:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dd6b637aa47d53d7d64d617b69898d5646fb3e15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:68:82:d8:34:67:49:5b:c6:c7:7e:b7:4e:bb:
3f:dc:bb:8f:f7:c4:71:b4:8b:5d:77:1c:08:7b:8b:
d2:e6:6e:d1:b3:65:67:75:ce:9e:6c:ac:da:fd:74:
95:e9:c1:5e:d0:a3:a9:cf:ec:de:91:ea:b0:79:65:
e4:8b:c3:66:74:0d:59:09:df:02:df:c6:9f:d3:7c:
68:7b:53:df:95:e9:7e:9f:ed:e2:5b:b2:8d:a4:8b:
69:8b:f0:db:3d:11:94:bb:92:fa:75:8b:76:3e:de:
7b:93:45:b5:cb:99:82:d7:1d:4b:40:82:03:7c:db:
3c:5e:35:53:f2:69:1b:ad:27:78:3e:11:9f:42:0f:
6d:05:12:f8:2e:8f:c1:53:3f:39:f9:3a:89:6a:41:
99:47:d6:ad:ba:6e:1b:0b:6d:0f:d5:4b:84:02:6a:
f9:d8:bb:ff:40:20:e4:9a:40:bf:19:a9:67:69:93:
2f:c2:88:6e:e7:60:cd:ff:61:d1:56:f4:5f:51:aa:
3a:19:85:d5:f8:9c:99:79:b2:fa:e9:b2:88:e2:0d:
78:a3:2b:6b:4c:fd:63:21:3e:b2:03:35:cb:28:52:
60:0d:1d:8b:0e:66:7f:b2:86:9c:3f:6d:34:18:86:
7a:27:b1:52:54:ca:f8:5e:e9:b2:c3:47:e4:78:51:
3d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:6B:63:7A:A4:7D:53:D7:D6:4D:61:7B:69:89:8D:56:46:FB:3E:15
X509v3 Authority Key Identifier:
keyid:87:3E:C1:5B:98:E2:6E:8B:29:BB:7D:CF:4A:60:52:CA:CE:6D:26:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hz7BW5jibospu33PSmBSys5tJoM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/3ec59e-ea85-40cb-a285-07ded20e3c63/1/3WtjeqR9U9fWTWF7aYmNVkb7PhU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/3ec59e-ea85-40cb-a285-07ded20e3c63/1/hz7BW5jibospu33PSmBSys5tJoM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.53.147.0/24
Signature Algorithm: sha256WithRSAEncryption
62:9e:4d:ba:e9:a5:5a:94:e0:b5:b6:10:d4:12:d1:5a:2a:61:
1d:f6:58:7f:67:1c:d4:8a:e9:9b:2a:a2:72:31:f0:1e:c0:32:
2d:55:93:ac:74:51:89:49:88:28:d3:31:40:9c:0c:1d:e8:57:
f2:96:11:19:2b:71:c6:6f:28:1f:ab:91:7b:80:67:9c:ce:9d:
b8:ce:d6:75:23:01:d0:d2:a2:67:04:96:92:c8:61:e0:64:7e:
6e:1d:82:bb:d5:f9:61:1a:ee:37:0a:1a:e9:0e:4e:5d:d5:dc:
bc:af:7b:02:fc:3c:2b:51:98:82:bf:65:24:16:ad:25:0e:e8:
6f:b3:b3:c1:8b:0b:2e:7f:2b:c3:e6:71:5e:60:0c:4a:c1:26:
0c:ed:00:f3:0c:53:78:af:e0:9e:6e:95:06:5e:55:ba:2d:62:
0f:19:68:96:76:0a:64:04:c1:48:15:91:61:64:8a:9d:8b:b3:
d6:8d:d2:d5:81:7b:b5:57:5f:ae:18:72:f7:24:ae:c8:d9:ed:
96:8d:c0:3b:63:0e:e7:0d:64:0e:00:b0:24:4e:32:12:ea:10:
e4:7f:af:50:5f:e5:da:df:ef:f2:f3:7b:17:08:94:d6:3a:ab:
b7:d1:3a:b9:d4:b7:96:d7:69:1d:9f:3a:3d:cf:b1:cd:8d:48:
f3:a4:ef:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:58 2024 by rpki-client on console-fra.rpki-client.org