Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/ca44ee-01f3-4a29-840b-38d55790c04b/1/IWdRluVEi4NAtMNv_r7LWuQ8ZSU.roa
File: IWdRluVEi4NAtMNv_r7LWuQ8ZSU.roa (raw, json)
Hash identifier: Kamoz0QUMN/ceW/RcpwBIJvnhtI/jT9+7ZjAJuY2Vw0=
Subject key identifier: 21:67:51:96:E5:44:8B:83:40:B4:C3:6F:FE:BE:CB:5A:E4:3C:65:25
Certificate issuer: /CN=52b554da0ebbe41bf54fb2d813e0b2ec6d482c54
Certificate serial: 0183EA5A54C0B8B47468F33CC39994308A05
Authority key identifier: 52:B5:54:DA:0E:BB:E4:1B:F5:4F:B2:D8:13:E0:B2:EC:6D:48:2C:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UrVU2g675Bv1T7LYE-Cy7G1ILFQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/ca44ee-01f3-4a29-840b-38d55790c04b/1/IWdRluVEi4NAtMNv_r7LWuQ8ZSU.roa
Signing time: Tue 18 Oct 2022 09:08:51 +0000
ROA not before: Tue 18 Oct 2022 09:08:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43655
IP address blocks: 193.148.2.0/23 maxlen: 23
78.24.136.0/21 maxlen: 24
2a00:e70::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ea:5a:54:c0:b8:b4:74:68:f3:3c:c3:99:94:30:8a:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52b554da0ebbe41bf54fb2d813e0b2ec6d482c54
Validity
Not Before: Oct 18 09:08:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=21675196e5448b8340b4c36ffebecb5ae43c6525
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:11:22:d2:7f:1e:2d:0a:e6:df:e5:25:ec:ab:
c5:22:c1:b7:32:42:5c:88:a6:70:f5:6f:fc:17:97:
d0:0b:b5:c9:4a:77:6c:3a:2d:9a:b8:af:55:49:09:
58:a5:c5:61:3b:36:da:b3:0e:c2:e0:20:5d:1b:8c:
4c:c7:ac:c3:62:d5:9e:e4:77:be:db:f8:14:99:8d:
dc:97:6a:59:db:2c:9c:c2:64:fb:f4:94:4f:b9:a7:
21:28:19:b6:a2:e6:80:f1:72:ba:a1:f5:70:1d:ea:
b6:74:41:f6:df:a2:95:40:f7:55:70:c5:68:95:23:
44:34:23:52:1e:c2:eb:48:08:3b:3d:3a:38:46:82:
74:d1:8f:2e:87:e7:23:94:c3:e0:b0:32:8f:bb:39:
bb:76:e4:57:40:1f:6f:7b:7c:c6:3c:c7:fb:28:be:
14:cb:4c:8b:ff:2a:cc:54:5f:b2:93:a4:67:08:39:
3d:06:ac:31:6d:1a:27:fa:53:6d:43:41:da:68:3c:
ea:5e:74:d4:33:11:51:ee:b1:9a:78:52:c1:ec:f8:
5d:5c:68:f5:be:41:64:e2:25:c6:1e:25:35:68:1c:
ca:8e:19:5e:dd:59:43:c4:62:7c:6d:87:38:35:f4:
ad:8f:04:27:74:31:4d:2a:03:11:e3:9b:e2:7f:31:
fa:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:67:51:96:E5:44:8B:83:40:B4:C3:6F:FE:BE:CB:5A:E4:3C:65:25
X509v3 Authority Key Identifier:
keyid:52:B5:54:DA:0E:BB:E4:1B:F5:4F:B2:D8:13:E0:B2:EC:6D:48:2C:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UrVU2g675Bv1T7LYE-Cy7G1ILFQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/ca44ee-01f3-4a29-840b-38d55790c04b/1/IWdRluVEi4NAtMNv_r7LWuQ8ZSU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/ca44ee-01f3-4a29-840b-38d55790c04b/1/UrVU2g675Bv1T7LYE-Cy7G1ILFQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.24.136.0/21
193.148.2.0/23
IPv6:
2a00:e70::/32
Signature Algorithm: sha256WithRSAEncryption
92:b2:37:73:7d:26:fa:d6:4f:39:05:3a:98:61:2c:6d:dd:d2:
f4:89:49:71:92:7e:a6:03:36:26:4b:22:6c:a0:a8:c2:2f:06:
fc:03:cd:22:47:f4:b6:3b:71:58:42:9a:25:37:44:d9:8e:d7:
96:50:8b:0a:00:87:8c:52:87:5c:b4:dc:16:61:31:f8:1e:1f:
66:ef:e6:20:df:28:66:b1:6c:e9:1a:9f:a8:34:3c:20:6e:59:
e1:60:7b:41:b5:53:f5:78:bd:fc:de:11:7e:0e:50:41:b8:30:
39:67:e6:3a:f3:97:40:57:dd:8b:86:3b:94:ef:32:0a:f7:56:
27:e1:9d:b8:7f:79:37:b9:f1:a0:5b:a8:d3:f0:41:8f:df:6b:
c8:53:95:fb:5c:df:92:37:f2:9e:d2:84:9e:f1:46:13:2f:5a:
a6:e4:74:c8:fa:0a:2f:74:16:1e:50:e6:12:b9:71:61:69:33:
46:a2:75:69:a0:44:71:18:10:22:5b:5e:38:6d:cc:bb:ec:65:
ce:d4:ad:3d:de:aa:77:20:d9:fd:f8:dc:2a:fa:73:9b:99:42:
e0:15:31:af:04:bf:19:b8:b2:29:23:cc:80:93:cb:dd:31:d9:
12:4c:cf:ad:6a:1c:67:c9:3d:d5:f0:09:68:fe:3c:52:f7:0a:
b3:19:a2:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:20 2024 by rpki-client on console-ams.rpki-client.org