Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/3ec59e-ea85-40cb-a285-07ded20e3c63/1/wzbb2zGEu4hFon3LvZoHz0P_YQs.roa
File: wzbb2zGEu4hFon3LvZoHz0P_YQs.roa (raw, json)
Hash identifier: D+qc74ALqdEhkQMcXXKCiEsyDiNvHhzDHWXcDZQU5XA=
Subject key identifier: C3:36:DB:DB:31:84:BB:88:45:A2:7D:CB:BD:9A:07:CF:43:FF:61:0B
Certificate issuer: /CN=873ec15b98e26e8b29bb7dcf4a6052cace6d2683
Certificate serial: 018CC64A789C8D94367A07B9ABFF64BB3C7C
Authority key identifier: 87:3E:C1:5B:98:E2:6E:8B:29:BB:7D:CF:4A:60:52:CA:CE:6D:26:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hz7BW5jibospu33PSmBSys5tJoM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/3ec59e-ea85-40cb-a285-07ded20e3c63/1/wzbb2zGEu4hFon3LvZoHz0P_YQs.roa
Signing time: Mon 01 Jan 2024 18:30:18 +0000
ROA not before: Mon 01 Jan 2024 18:30:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 142019
IP address blocks: 176.53.147.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:78:9c:8d:94:36:7a:07:b9:ab:ff:64:bb:3c:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=873ec15b98e26e8b29bb7dcf4a6052cace6d2683
Validity
Not Before: Jan 1 18:30:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c336dbdb3184bb8845a27dcbbd9a07cf43ff610b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:18:d1:43:29:4c:9f:81:30:36:dc:6c:87:38:
e9:48:77:44:01:36:83:8b:03:bc:c7:32:fb:88:1e:
f9:77:18:8e:ae:04:5e:9f:aa:61:cc:26:7f:c3:c5:
c7:03:9b:70:49:b7:4b:85:9e:11:fd:51:c7:18:d9:
27:8b:9c:56:89:3a:41:70:a9:fa:08:78:2f:76:29:
ff:30:a0:19:e6:29:d3:78:48:61:3f:f2:de:01:44:
e8:2a:14:fa:c4:80:e0:97:cf:b1:a0:45:34:55:9d:
75:e7:a7:4d:74:f1:b3:4c:37:88:5e:19:2a:fc:9d:
c0:8b:ee:67:11:67:1a:b8:bd:08:54:f1:fa:ca:f8:
48:6e:5b:a1:d4:59:d0:f4:bd:e9:5d:55:e5:fb:68:
ea:f5:12:91:e1:9d:d9:3e:bf:98:0a:b6:d6:00:2e:
68:ef:9b:34:e8:fe:0b:20:9b:57:5f:c0:90:5d:bd:
1a:e4:17:7f:42:51:a0:3a:6a:d8:21:65:8f:bd:92:
b5:4c:ec:f9:75:c5:b0:33:fd:c8:d2:92:e2:f4:86:
86:db:6c:63:e4:35:e3:e7:25:8a:76:54:f0:c0:3d:
26:c4:93:72:48:03:73:ee:59:7c:fd:16:00:c3:fd:
ea:2c:ef:31:e2:9f:68:ac:3c:16:a9:85:cc:3b:92:
67:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:36:DB:DB:31:84:BB:88:45:A2:7D:CB:BD:9A:07:CF:43:FF:61:0B
X509v3 Authority Key Identifier:
keyid:87:3E:C1:5B:98:E2:6E:8B:29:BB:7D:CF:4A:60:52:CA:CE:6D:26:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hz7BW5jibospu33PSmBSys5tJoM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/3ec59e-ea85-40cb-a285-07ded20e3c63/1/wzbb2zGEu4hFon3LvZoHz0P_YQs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/3ec59e-ea85-40cb-a285-07ded20e3c63/1/hz7BW5jibospu33PSmBSys5tJoM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.53.147.0/24
Signature Algorithm: sha256WithRSAEncryption
60:8f:56:17:5b:59:62:f9:24:e8:1d:6e:b0:06:63:02:11:cd:
2d:f3:13:7f:9a:2a:09:91:34:71:ee:32:34:f5:a6:74:14:b3:
f6:67:5e:3c:1d:9b:e4:fe:14:5a:8e:80:21:39:f9:d1:c6:27:
3b:5e:53:92:70:98:89:5d:1b:b0:56:56:54:0a:49:40:51:22:
4d:c7:8a:f9:16:f9:41:d7:16:34:c1:54:8e:f9:5c:c5:bf:36:
49:a1:dc:7e:df:c9:84:52:e9:61:20:da:8f:3d:9c:71:82:b9:
ce:84:d3:de:88:2e:b9:78:a8:cc:98:3c:c1:21:9a:a0:0a:a9:
be:75:21:5c:d7:25:28:fe:b9:36:14:67:57:42:91:9a:e4:ee:
2e:3a:9e:b5:c7:6d:7f:e4:65:d1:25:87:21:75:7e:e0:6a:bc:
2d:45:67:b3:7d:b5:38:69:aa:b9:b8:c6:75:c5:1d:e6:c9:f1:
a2:ea:64:58:e0:e4:5e:fa:ea:3f:37:a6:90:e7:87:1f:57:f2:
91:88:94:6a:48:99:30:30:d5:03:40:48:de:07:96:93:d9:d5:
96:85:59:41:5a:46:45:95:1e:a4:4b:cf:c9:59:c7:3a:02:e6:
19:43:a9:e0:31:92:67:da:3b:b0:41:58:92:94:61:7b:2d:8d:
90:be:bd:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:48 2024 by rpki-client on console-ams.rpki-client.org