Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/997f3f-1046-4d7a-9cf9-1dc073c17218/1/YWqMtS7dPLky7lLWTyfVSR1022M.roa
File: YWqMtS7dPLky7lLWTyfVSR1022M.roa (raw, json)
Hash identifier: QWvn258Jw0Bb2bTXjhbXPCu8yxKYuMTPghc7CL+1DbM=
Subject key identifier: 61:6A:8C:B5:2E:DD:3C:B9:32:EE:52:D6:4F:27:D5:49:1D:74:DB:63
Certificate issuer: /CN=a3ffd5c38e44f1bb4c3be3f3611f8927eee4d7f7
Certificate serial: 01856C7837264DB3C8A238E2E245BA4D4F7A
Authority key identifier: A3:FF:D5:C3:8E:44:F1:BB:4C:3B:E3:F3:61:1F:89:27:EE:E4:D7:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o__Vw45E8btMO-PzYR-JJ-7k1_c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/997f3f-1046-4d7a-9cf9-1dc073c17218/1/YWqMtS7dPLky7lLWTyfVSR1022M.roa
Signing time: Sun 01 Jan 2023 08:34:55 +0000
ROA not before: Sun 01 Jan 2023 08:34:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212667
IP address blocks: 176.56.36.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:78:37:26:4d:b3:c8:a2:38:e2:e2:45:ba:4d:4f:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3ffd5c38e44f1bb4c3be3f3611f8927eee4d7f7
Validity
Not Before: Jan 1 08:34:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=616a8cb52edd3cb932ee52d64f27d5491d74db63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a7:9a:3e:2c:c8:fb:d5:96:52:d4:27:f5:4e:
94:de:d2:bf:de:03:90:95:d0:ab:6d:5d:bc:0d:36:
67:44:bb:cf:2c:5c:49:37:94:e5:84:41:a4:02:05:
cc:39:d1:66:6d:75:9b:fd:dd:d8:1c:60:f5:53:e4:
01:09:33:a5:ed:3b:df:bc:69:ca:06:62:dd:bc:98:
5e:87:cb:44:82:20:c7:d0:3a:be:64:aa:66:06:bc:
ed:51:e9:7a:75:80:1b:69:36:85:8d:29:41:16:8d:
96:98:7b:f5:ee:e3:e9:6f:72:0f:a4:c4:b2:53:bf:
d2:d9:34:e3:e9:2c:9f:69:5b:1a:87:0b:77:13:dd:
29:c4:4f:2c:9d:02:b4:b9:d3:9e:e3:fc:ec:27:54:
3c:53:de:6c:1f:d2:a0:f5:94:11:eb:d4:1c:08:fb:
10:97:08:07:24:51:dc:8a:9b:ca:9b:65:12:e4:28:
a3:63:ba:54:06:f5:11:49:2a:ff:ad:80:4d:a3:3d:
56:cb:be:1d:1c:59:d4:ec:08:7b:d6:eb:35:d9:92:
ad:68:9b:92:1c:63:30:1e:4f:60:b7:41:ac:c9:28:
7e:99:e7:b0:09:4b:9a:5a:9a:72:19:c7:7a:65:2a:
2f:45:7c:f7:5c:d4:cf:b1:bf:2e:f5:9b:20:87:b5:
e4:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:6A:8C:B5:2E:DD:3C:B9:32:EE:52:D6:4F:27:D5:49:1D:74:DB:63
X509v3 Authority Key Identifier:
keyid:A3:FF:D5:C3:8E:44:F1:BB:4C:3B:E3:F3:61:1F:89:27:EE:E4:D7:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o__Vw45E8btMO-PzYR-JJ-7k1_c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/997f3f-1046-4d7a-9cf9-1dc073c17218/1/YWqMtS7dPLky7lLWTyfVSR1022M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/997f3f-1046-4d7a-9cf9-1dc073c17218/1/o__Vw45E8btMO-PzYR-JJ-7k1_c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.56.36.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:2c:0c:2b:25:65:47:a2:64:b5:7f:97:18:ce:50:18:54:d4:
b5:78:c1:5b:fb:05:c3:41:32:f2:8f:3c:f8:11:8e:d3:f2:82:
1c:aa:be:97:e0:52:19:54:97:3c:b7:38:63:d0:fd:b2:f5:92:
3e:4e:bb:c4:74:36:39:75:10:fa:c1:ca:c5:f2:a2:5f:b9:fb:
09:1a:96:a8:11:95:16:62:45:1b:d5:a3:4c:43:ad:65:f5:11:
f6:be:82:17:2c:bb:4f:d2:de:dd:4d:1b:0d:89:3a:c5:65:1b:
32:10:6f:61:9d:a2:ba:90:9c:98:41:17:f9:19:cf:fa:18:f3:
d3:80:e3:f8:41:95:f4:03:f4:72:0b:44:b4:b7:70:54:d1:c5:
7e:63:4d:c7:f4:bb:ac:df:c1:fc:8e:e3:cd:d2:82:1f:e4:3c:
6b:67:64:77:2e:e7:2f:97:81:42:26:b0:fc:8c:4f:7a:e1:19:
57:7b:eb:70:65:68:a0:6c:83:20:5c:5d:05:b9:9a:7b:c1:7d:
93:7f:42:d1:24:b5:4c:4c:b6:6f:a5:69:32:4f:57:b5:a2:00:
dd:a1:01:a6:bb:59:e1:a7:5e:ce:f9:13:58:51:d0:35:45:da:
f1:65:9d:b7:2a:48:09:a0:0a:3e:71:ce:2a:4a:04:ca:fb:f8:
08:5a:d0:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:03 2024 by rpki-client on console-ams.rpki-client.org