Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/5fea5a-78f6-4312-be03-e0beddb5a883/1/tNP5HubgVEHWooVHEFmoG_ljzvw.roa
File: tNP5HubgVEHWooVHEFmoG_ljzvw.roa (raw, json)
Hash identifier: VUBL5hO/GtBtgYScmNuiMXz3h6bhTN6iIdillTkOf/c=
Subject key identifier: B4:D3:F9:1E:E6:E0:54:41:D6:A2:85:47:10:59:A8:1B:F9:63:CE:FC
Certificate issuer: /CN=1c21987841c048859fda3499a5a4c274275d0212
Certificate serial: 9F1474
Authority key identifier: 1C:21:98:78:41:C0:48:85:9F:DA:34:99:A5:A4:C2:74:27:5D:02:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCGYeEHASIWf2jSZpaTCdCddAhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/5fea5a-78f6-4312-be03-e0beddb5a883/1/tNP5HubgVEHWooVHEFmoG_ljzvw.roa
Signing time: Sat 01 Jan 2022 00:53:52 +0000
ROA not before: Sat 01 Jan 2022 00:53:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48031
IP address blocks: 176.97.223.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10425460 (0x9f1474)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c21987841c048859fda3499a5a4c274275d0212
Validity
Not Before: Jan 1 00:53:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b4d3f91ee6e05441d6a285471059a81bf963cefc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:11:75:99:7f:37:3e:ef:7b:0a:3e:71:58:38:
6d:21:80:b2:df:e9:a7:d1:ca:cf:98:03:85:b2:b9:
59:87:a5:b4:26:6e:af:1a:5b:79:2f:ee:f2:f8:2e:
02:1c:0b:a9:17:72:e5:18:5d:1c:42:e1:15:48:3b:
d8:8b:66:91:75:3b:c1:51:67:f1:27:67:1f:a1:14:
85:7c:72:02:2e:d9:98:c9:ef:98:95:80:7f:ac:0e:
3e:f9:ce:c8:ca:e7:aa:04:d4:87:c6:a7:d4:1c:7c:
3a:aa:8a:1e:df:b3:6c:d9:e1:d9:2b:76:c4:7a:bb:
98:02:b0:0a:c5:60:5f:21:36:36:5b:ef:94:d1:1c:
79:78:71:57:28:fe:48:96:57:e9:b7:aa:c4:22:8f:
74:52:2e:2f:70:22:7a:cb:f5:d0:6e:cb:85:65:f8:
99:a4:9d:08:91:b8:cf:fa:b7:a2:e0:e0:16:50:d0:
42:52:0d:67:66:e1:31:56:bf:61:02:43:bf:b3:e3:
fe:af:7f:bf:fb:1f:7c:50:c4:24:a1:99:8f:47:da:
24:bb:74:06:64:ce:31:5a:05:d8:6e:86:f6:a8:09:
7a:77:c5:84:0c:5d:e6:93:0e:bd:23:f7:de:3d:be:
88:47:e3:11:3b:37:d9:75:2a:32:c6:d0:38:8f:de:
c3:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:D3:F9:1E:E6:E0:54:41:D6:A2:85:47:10:59:A8:1B:F9:63:CE:FC
X509v3 Authority Key Identifier:
keyid:1C:21:98:78:41:C0:48:85:9F:DA:34:99:A5:A4:C2:74:27:5D:02:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCGYeEHASIWf2jSZpaTCdCddAhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/5fea5a-78f6-4312-be03-e0beddb5a883/1/tNP5HubgVEHWooVHEFmoG_ljzvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/5fea5a-78f6-4312-be03-e0beddb5a883/1/HCGYeEHASIWf2jSZpaTCdCddAhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.223.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:bd:16:6b:f2:83:d1:c8:20:ae:56:e5:f0:39:31:ce:27:86:
d0:b4:32:44:ca:ad:69:da:02:23:27:2f:7c:84:6a:cc:12:f2:
30:20:80:e0:db:7c:9c:d7:fc:67:e2:64:e8:d9:6c:8a:3f:5f:
a6:ae:7b:61:f0:df:cb:c6:80:1a:a8:d0:17:a4:c2:f6:70:57:
4a:87:16:f1:59:06:d6:5f:9e:7a:c5:96:e2:52:af:0a:5e:e6:
18:1a:c0:b8:ff:a8:a1:97:5c:72:0b:f8:b4:5f:3e:51:2a:36:
24:9b:51:ed:d1:7f:dd:99:85:56:38:df:7c:f3:7a:3a:f6:2d:
07:b0:d0:52:e5:cb:7b:60:d6:97:1a:f0:40:e6:f9:73:d5:6b:
11:a5:0b:b0:b3:ce:05:7d:75:32:58:fc:4a:f6:52:76:19:9a:
d6:78:b7:2a:24:cb:72:55:99:ae:b4:35:1d:7d:49:71:94:65:
73:e2:57:fc:a5:43:19:d5:bc:64:39:b0:aa:e8:e7:b8:41:c8:
47:b6:cd:a8:56:66:48:20:14:f2:43:96:96:e4:6d:58:b9:9e:
85:96:4c:dd:fd:56:10:b1:66:1b:ea:24:f2:1e:c8:2c:e0:8f:
d3:c2:54:c1:9f:6c:ed:a6:98:1b:80:20:23:da:7b:8b:a0:8e:
bd:a1:a8:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:52 2024 by rpki-client on console-fra.rpki-client.org