Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/9f4053-dd88-4fbc-ad90-2eeb0c14a470/1/97PWQNXC7dFuIcd5JB2OxB1a_ik.roa
File: 97PWQNXC7dFuIcd5JB2OxB1a_ik.roa (raw, json)
Hash identifier: eI1eJAUvvEc3GzU46lG/G0InOGgV+I/KySUBGQmjFSE=
Subject key identifier: F7:B3:D6:40:D5:C2:ED:D1:6E:21:C7:79:24:1D:8E:C4:1D:5A:FE:29
Certificate issuer: /CN=425e3038f75e70fecf8d2347f0464c88d3161af7
Certificate serial: 8443
Authority key identifier: 42:5E:30:38:F7:5E:70:FE:CF:8D:23:47:F0:46:4C:88:D3:16:1A:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ql4wOPdecP7PjSNH8EZMiNMWGvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/9f4053-dd88-4fbc-ad90-2eeb0c14a470/1/97PWQNXC7dFuIcd5JB2OxB1a_ik.roa
Signing time: Tue 08 Feb 2022 18:38:06 +0000
ROA not before: Tue 08 Feb 2022 18:38:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48031
IP address blocks: 217.198.180.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33859 (0x8443)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=425e3038f75e70fecf8d2347f0464c88d3161af7
Validity
Not Before: Feb 8 18:38:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f7b3d640d5c2edd16e21c779241d8ec41d5afe29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:06:73:82:9d:39:1f:c0:3a:51:90:27:36:89:
98:95:a5:b3:0f:fa:de:87:05:ff:0a:f2:13:b9:58:
11:96:07:fa:44:7c:eb:30:f1:fc:cf:49:bb:7f:67:
49:60:a6:f4:ba:79:56:f3:cf:e3:83:cc:ce:5e:aa:
fd:03:58:d1:b4:91:82:b4:ad:45:a7:37:44:f2:2f:
2c:2d:05:ef:5a:89:90:d8:6c:c2:ba:72:aa:1d:20:
75:3e:04:86:65:09:c4:87:f3:b7:07:34:7e:13:65:
aa:a7:a7:73:1f:12:d3:21:ab:23:bf:e4:1d:46:23:
06:5f:be:8a:7c:44:1f:33:e8:c5:12:af:05:70:5d:
dd:f6:3a:6c:2c:1b:10:dc:7c:f6:d8:c3:d2:f3:fa:
ba:f8:de:50:70:ff:ca:b6:db:6c:26:01:ba:0f:f3:
1f:27:94:79:6f:e2:e9:c4:73:80:ce:40:e1:cd:3b:
47:50:50:8c:dc:97:06:c2:d8:0d:1a:c1:11:5a:bb:
1b:e4:df:57:85:cc:7a:95:db:58:26:e6:cd:b3:4e:
d3:f7:b6:a8:c8:5d:21:8c:ac:2c:65:4f:64:b9:16:
af:0f:ee:9b:1a:6c:c0:12:43:33:d1:f2:63:ae:a0:
e0:d3:d7:80:b3:21:1e:c6:6e:fc:f0:0c:33:fb:ef:
fb:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:B3:D6:40:D5:C2:ED:D1:6E:21:C7:79:24:1D:8E:C4:1D:5A:FE:29
X509v3 Authority Key Identifier:
keyid:42:5E:30:38:F7:5E:70:FE:CF:8D:23:47:F0:46:4C:88:D3:16:1A:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ql4wOPdecP7PjSNH8EZMiNMWGvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/9f4053-dd88-4fbc-ad90-2eeb0c14a470/1/97PWQNXC7dFuIcd5JB2OxB1a_ik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/9f4053-dd88-4fbc-ad90-2eeb0c14a470/1/Ql4wOPdecP7PjSNH8EZMiNMWGvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.198.180.0/24
Signature Algorithm: sha256WithRSAEncryption
44:ae:08:bc:fc:2a:77:b2:b6:38:fa:2d:73:35:18:9d:28:ac:
21:2c:d5:0d:88:76:1a:9f:b2:47:a4:66:c1:e6:d3:ba:2a:7b:
ff:39:7b:74:6b:34:d7:85:3f:4e:68:20:c9:fc:95:dc:7a:dc:
5a:2c:19:34:96:e6:5d:18:fc:ae:c8:df:f6:11:1d:4c:3e:d4:
3a:ca:e2:cb:28:c8:79:c5:24:ba:fb:14:48:83:b0:01:1e:55:
7d:16:35:7a:2e:68:8d:68:18:0a:69:51:6b:3a:5a:b9:b3:c9:
d7:95:7d:41:e5:59:b4:8a:b4:e2:f4:73:25:e0:c4:56:da:09:
19:ac:24:b4:51:b0:3a:de:11:f9:04:51:be:68:52:d5:18:4a:
87:6a:c3:d8:cc:b1:ce:0a:04:5f:a2:a1:05:cf:06:88:13:1c:
54:4f:dc:a9:dd:c0:96:74:0d:a3:df:48:b9:c8:01:7c:0e:29:
e6:7f:a8:95:5e:5b:68:fe:a3:01:57:1e:90:90:e5:e5:4d:2e:
95:52:92:06:67:19:41:7a:d7:c2:c7:e8:96:26:05:c3:cb:49:
77:b9:ba:d0:fd:1f:7d:3e:04:96:4b:e5:a1:60:36:29:62:b5:
6c:1e:fc:69:aa:b7:94:09:df:28:48:1c:7d:e0:0f:56:c1:f6:
ad:32:da:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:52 2024 by rpki-client on console-fra.rpki-client.org