Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/18fecb-14a5-434b-bf15-c89e2798b7bd/1/oKbp9hWYLSBhPNDZu3YWjzfOoUs.roa
File: oKbp9hWYLSBhPNDZu3YWjzfOoUs.roa (raw, json)
Hash identifier: hnkiuogaEXr5Yqt7jLYul5kG1sByTkorqUU/vIlnyns=
Subject key identifier: A0:A6:E9:F6:15:98:2D:20:61:3C:D0:D9:BB:76:16:8F:37:CE:A1:4B
Certificate issuer: /CN=ac4c9b4c9ffe7be1093481e459e73b411e7e1c33
Certificate serial: C53911
Authority key identifier: AC:4C:9B:4C:9F:FE:7B:E1:09:34:81:E4:59:E7:3B:41:1E:7E:1C:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rEybTJ_-e-EJNIHkWec7QR5-HDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/18fecb-14a5-434b-bf15-c89e2798b7bd/1/oKbp9hWYLSBhPNDZu3YWjzfOoUs.roa
Signing time: Sat 01 Jan 2022 09:58:01 +0000
ROA not before: Sat 01 Jan 2022 09:58:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49392
IP address blocks: 213.109.202.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12925201 (0xc53911)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac4c9b4c9ffe7be1093481e459e73b411e7e1c33
Validity
Not Before: Jan 1 09:58:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a0a6e9f615982d20613cd0d9bb76168f37cea14b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:2d:c9:57:c4:89:59:76:e8:b8:0f:a0:d1:af:
10:14:fb:fa:c1:09:6e:d7:b5:74:7c:f1:dc:73:a7:
75:4a:fd:8b:1a:24:27:9b:f9:64:91:94:c8:ac:e5:
25:cc:24:28:af:42:41:1f:30:32:03:89:e5:44:11:
59:31:02:90:8a:e1:75:44:d4:f9:b8:46:1c:7d:60:
6e:79:04:c0:de:14:f6:a8:bc:a2:ad:bd:c7:1f:ea:
63:08:d3:c8:66:01:30:3a:ce:b2:7b:16:0b:69:0c:
f2:a6:9d:fe:07:0f:aa:c8:2e:40:52:e0:61:32:85:
f1:33:da:ae:57:6e:54:95:2e:5b:91:f2:bf:ac:16:
f4:81:d0:ba:4a:84:66:cd:df:72:76:18:c9:8b:48:
b4:d7:56:95:1b:85:03:3b:e0:b8:d2:e2:fb:d5:8d:
89:1e:28:b8:e9:f5:19:da:1f:82:6c:3d:67:2f:34:
75:cc:69:0b:69:80:e5:9b:57:e6:5b:b7:55:e8:4b:
30:61:cc:ec:b0:88:ac:0f:d6:22:e7:e0:84:85:32:
da:9f:b5:30:40:0b:77:2b:c6:03:b3:d0:d6:07:8d:
99:c1:69:35:05:90:8a:30:37:b2:7b:bf:e3:a5:4b:
22:d5:f8:52:c0:85:50:2d:d3:c8:e5:25:9e:99:7b:
24:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:A6:E9:F6:15:98:2D:20:61:3C:D0:D9:BB:76:16:8F:37:CE:A1:4B
X509v3 Authority Key Identifier:
keyid:AC:4C:9B:4C:9F:FE:7B:E1:09:34:81:E4:59:E7:3B:41:1E:7E:1C:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rEybTJ_-e-EJNIHkWec7QR5-HDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/18fecb-14a5-434b-bf15-c89e2798b7bd/1/oKbp9hWYLSBhPNDZu3YWjzfOoUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/18fecb-14a5-434b-bf15-c89e2798b7bd/1/rEybTJ_-e-EJNIHkWec7QR5-HDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.202.0/24
Signature Algorithm: sha256WithRSAEncryption
43:79:bd:eb:54:cc:c5:c4:2d:89:f9:2d:c3:28:83:dd:9f:45:
93:f1:85:53:0c:4e:8a:13:28:52:06:22:f1:26:f3:92:da:7c:
a8:b0:cf:4f:ad:cc:23:90:91:64:54:85:9b:df:ed:01:d7:c5:
55:a6:ba:aa:e5:da:bf:0a:13:99:aa:d9:f1:18:68:33:7d:ee:
57:22:80:63:69:b6:f7:5d:37:49:87:e4:c0:73:3f:5a:4b:49:
01:9b:a0:d5:3d:e3:23:a5:89:7e:e9:2c:c8:84:b9:57:a7:f7:
62:94:75:33:20:9a:db:92:e6:00:2a:52:b4:15:9d:26:11:93:
90:15:70:ef:a4:9f:07:d2:a8:98:21:cb:01:26:e8:f9:01:3a:
94:75:fe:c3:85:c8:3f:b6:21:75:f2:37:fc:a3:9d:81:19:10:
eb:e2:7b:c4:b8:0e:21:6f:55:2a:fc:24:7a:28:bc:68:4a:3d:
21:a6:fa:b9:e9:d0:31:46:46:b4:18:32:2c:59:0a:94:70:07:
c7:3a:71:56:88:21:cc:4a:4a:4a:ee:4c:ef:6a:5b:de:af:97:
e7:87:b1:ce:70:5b:67:a5:a7:ac:84:f7:91:b4:33:7e:6a:ba:
f4:5a:43:5f:cf:9e:59:47:54:e1:4f:2b:b3:a0:d4:cc:a9:fe:
8c:8b:2d:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:31 2024 by rpki-client on console-fra.rpki-client.org