Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/7aff68-bae6-498a-9f58-f559cda8d49f/1/tO9HtIpFfLi53V2bat9CJNtLp78.roa
File: tO9HtIpFfLi53V2bat9CJNtLp78.roa (raw, json)
Hash identifier: AzdZsMzbyxVSe4aUOGnhicPRkhlLminwUEWGae+NwPI=
Subject key identifier: B4:EF:47:B4:8A:45:7C:B8:B9:DD:5D:9B:6A:DF:42:24:DB:4B:A7:BF
Certificate issuer: /CN=50ba5b744e8df503d94f41fb29024289c6fa5e5b
Certificate serial: 0185D32C1A888148285DBDD9AAF1E7DA5181
Authority key identifier: 50:BA:5B:74:4E:8D:F5:03:D9:4F:41:FB:29:02:42:89:C6:FA:5E:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ULpbdE6N9QPZT0H7KQJCicb6Xls.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/7aff68-bae6-498a-9f58-f559cda8d49f/1/tO9HtIpFfLi53V2bat9CJNtLp78.roa
Signing time: Sat 21 Jan 2023 07:12:40 +0000
ROA not before: Sat 21 Jan 2023 07:12:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49999
IP address blocks: 109.122.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:d3:2c:1a:88:81:48:28:5d:bd:d9:aa:f1:e7:da:51:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50ba5b744e8df503d94f41fb29024289c6fa5e5b
Validity
Not Before: Jan 21 07:12:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b4ef47b48a457cb8b9dd5d9b6adf4224db4ba7bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ac:98:0c:54:20:18:ea:66:bf:aa:7b:15:3d:
65:31:c4:4c:5e:31:04:26:af:fc:6b:bf:5f:cf:03:
b7:f1:bd:65:4c:ad:04:8f:45:3d:89:a4:8a:d7:2e:
20:78:ff:e7:c8:6e:c6:84:70:2f:1e:bf:5e:80:f5:
9f:d7:e9:57:a9:56:ba:79:d6:b8:78:26:40:63:08:
e4:40:30:f7:99:e3:86:37:3c:af:78:25:30:05:79:
20:53:96:e8:43:5b:9f:54:e1:4b:3c:5e:06:ca:f9:
29:a3:ae:e6:f2:c8:36:e5:fb:70:c8:ee:61:43:cc:
35:4b:56:ca:83:64:04:1a:06:1a:de:45:11:e6:9e:
c1:67:9a:8b:99:4f:02:66:e8:b3:c1:df:01:75:f0:
8c:8f:81:14:b0:f8:b8:33:e5:8e:04:57:85:07:5a:
fe:15:39:4b:13:a4:48:17:40:ed:d7:35:b6:2a:4b:
73:0b:5f:85:ba:35:59:e2:5f:ab:cd:c3:a7:d5:53:
ff:8f:d2:d3:c6:86:b6:83:dd:7c:62:f3:5d:da:33:
5f:68:64:03:b4:54:b4:78:10:9c:1f:28:4a:bc:e1:
c0:8a:16:cb:bd:61:69:8e:db:97:7c:5b:74:40:7f:
76:e7:ac:47:2c:a0:b4:e2:69:89:b8:6d:4b:03:8c:
8e:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:EF:47:B4:8A:45:7C:B8:B9:DD:5D:9B:6A:DF:42:24:DB:4B:A7:BF
X509v3 Authority Key Identifier:
keyid:50:BA:5B:74:4E:8D:F5:03:D9:4F:41:FB:29:02:42:89:C6:FA:5E:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ULpbdE6N9QPZT0H7KQJCicb6Xls.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/7aff68-bae6-498a-9f58-f559cda8d49f/1/tO9HtIpFfLi53V2bat9CJNtLp78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/7aff68-bae6-498a-9f58-f559cda8d49f/1/ULpbdE6N9QPZT0H7KQJCicb6Xls.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.192.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:b9:ef:5a:a1:ad:4a:51:e8:ea:c8:99:0f:af:33:90:aa:15:
6a:24:0c:a6:41:d1:f2:23:61:3d:fb:bf:2c:be:56:85:9b:35:
2b:3f:85:c3:e3:48:d7:ff:47:54:90:b9:23:0b:20:3d:27:59:
95:89:8c:3d:cf:db:f5:cd:34:d2:19:40:cf:9a:b0:b5:45:aa:
a7:a1:f5:0b:8a:0a:4e:46:a0:ed:8e:84:85:ca:0f:34:09:c7:
46:a6:b9:0f:ee:6a:b3:d4:d9:f5:c4:e4:aa:7f:da:a4:12:b3:
83:50:da:32:ba:f0:b3:25:17:33:a0:c5:2f:87:19:69:07:c8:
4f:6c:27:f1:7f:03:f6:d7:c7:08:b1:9b:f4:8b:36:23:4a:f7:
3c:4f:bb:96:82:02:97:8e:0f:53:61:81:76:ad:88:40:79:88:
87:e1:c4:19:e8:1b:38:fa:31:c9:04:50:14:c6:c1:1a:0f:32:
5c:8f:cd:a6:1b:d6:9e:af:c5:82:8f:c1:79:d9:6c:94:dc:4e:
3f:dd:7b:98:c0:18:1c:20:67:3d:54:7c:3d:78:84:16:5d:4e:
69:b5:42:f5:1e:33:f8:e3:56:43:c0:aa:dd:89:3f:d5:21:ef:
fc:12:e3:ec:b8:bf:9a:01:0f:06:92:9a:20:b9:bc:12:be:a3:
5d:e8:9e:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:37 2023 by rpki-client on console-fra.rpki-client.org