Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/3ec59e-ea85-40cb-a285-07ded20e3c63/1/5zoQHc_3uQie0mu0GeIproWh8eA.roa
File: 5zoQHc_3uQie0mu0GeIproWh8eA.roa (raw, json)
Hash identifier: dX4cNCfjGC4SGnJX4ZrTB43PpezXLD6oMzMsnxIgBFk=
Subject key identifier: E7:3A:10:1D:CF:F7:B9:08:9E:D2:6B:B4:19:E2:29:AE:85:A1:F1:E0
Certificate issuer: /CN=873ec15b98e26e8b29bb7dcf4a6052cace6d2683
Certificate serial: 018BC9C11913E86494B4DE288237C5CBBE45
Authority key identifier: 87:3E:C1:5B:98:E2:6E:8B:29:BB:7D:CF:4A:60:52:CA:CE:6D:26:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hz7BW5jibospu33PSmBSys5tJoM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/3ec59e-ea85-40cb-a285-07ded20e3c63/1/5zoQHc_3uQie0mu0GeIproWh8eA.roa
Signing time: Mon 13 Nov 2023 17:35:57 +0000
ROA not before: Mon 13 Nov 2023 17:35:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 142019
IP address blocks: 176.53.147.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c9:c1:19:13:e8:64:94:b4:de:28:82:37:c5:cb:be:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=873ec15b98e26e8b29bb7dcf4a6052cace6d2683
Validity
Not Before: Nov 13 17:35:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e73a101dcff7b9089ed26bb419e229ae85a1f1e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:62:6c:ec:d9:47:d5:df:80:ca:5b:8e:e2:34:
ec:82:68:48:46:81:14:56:1c:b2:28:ae:7c:72:e4:
6c:36:1e:ea:9a:e7:53:be:1a:d2:07:45:30:ee:63:
b9:59:cd:c2:6f:60:41:a1:90:79:2d:8c:79:6c:b4:
a1:e1:4b:bb:9b:93:f5:4c:25:2a:12:9c:a1:4f:94:
c2:73:c5:c8:da:19:fa:1a:68:15:5f:07:7a:1f:ca:
fe:88:50:09:60:03:5c:6d:0b:8d:e3:d5:7a:00:9a:
c6:20:c1:d6:68:31:fd:94:05:af:58:66:95:a9:41:
3e:33:46:33:f7:5c:02:93:f0:1d:ca:ea:b9:9c:49:
42:67:a8:d4:57:7a:63:30:99:bf:d5:38:c9:df:1a:
0d:e0:9a:1a:64:02:80:7f:b4:64:c5:32:67:e9:64:
72:0c:a2:27:67:26:6b:06:b9:7d:0f:c6:62:94:5e:
78:b5:ed:a9:78:67:12:51:17:de:48:11:2a:33:71:
d0:2f:a0:bb:ea:ca:42:1e:3f:99:37:c3:d2:af:92:
46:f7:cc:c1:ef:06:71:88:8e:0d:d6:83:14:ba:05:
43:b9:a5:b1:ef:8e:f4:1d:d3:dd:c1:dc:5f:fc:d7:
b9:5e:7b:ae:5b:db:bb:90:1f:71:6a:cd:08:3c:86:
53:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:3A:10:1D:CF:F7:B9:08:9E:D2:6B:B4:19:E2:29:AE:85:A1:F1:E0
X509v3 Authority Key Identifier:
keyid:87:3E:C1:5B:98:E2:6E:8B:29:BB:7D:CF:4A:60:52:CA:CE:6D:26:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hz7BW5jibospu33PSmBSys5tJoM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/3ec59e-ea85-40cb-a285-07ded20e3c63/1/5zoQHc_3uQie0mu0GeIproWh8eA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/3ec59e-ea85-40cb-a285-07ded20e3c63/1/hz7BW5jibospu33PSmBSys5tJoM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.53.147.0/24
Signature Algorithm: sha256WithRSAEncryption
38:08:fb:e3:51:dd:0f:c9:1b:d6:b8:7b:68:e6:20:8d:59:66:
d2:5b:00:5f:25:5a:ce:10:40:8e:a5:be:34:64:91:63:18:da:
26:54:cb:24:3f:65:1f:77:ae:09:0a:88:b9:a3:af:01:33:f5:
63:a5:f7:9e:f5:67:00:d8:8e:ad:76:21:bc:52:ee:5a:13:35:
d5:c2:c0:38:14:0b:20:03:93:2c:53:30:49:3e:5a:b2:5b:a0:
62:0c:74:8f:f4:03:d2:6a:9f:25:f4:d4:46:ba:b4:92:ae:80:
e6:65:a7:33:20:00:cb:c7:0f:d5:fc:e2:89:4e:ba:0a:33:8b:
8c:30:1b:a1:df:02:16:bd:b2:5a:82:d7:4e:ed:3e:ef:37:4a:
10:c8:6b:8d:7e:81:4e:2e:0e:16:30:98:dc:e5:a2:e1:1e:08:
aa:e7:84:58:86:9d:d5:3c:c1:a6:69:a2:af:4e:0b:1b:d7:73:
2a:3f:f7:46:8e:12:11:f3:fa:88:7b:23:8a:fa:75:39:ae:d4:
b0:63:92:7a:69:39:a1:1b:3a:ef:b8:9a:83:5d:41:1a:ca:d7:
b2:15:f6:d9:8e:ae:64:6a:a0:43:f4:0c:bd:9f:55:87:25:7d:
c0:63:de:6d:9d:9a:b0:e2:bb:8e:52:7d:da:b0:f4:97:75:28:
f6:5a:87:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:58 2024 by rpki-client on console-fra.rpki-client.org