Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/e3494d-e7aa-4d21-a8ad-7d4c0b7d7861/1/XS_GUWGFqFoBDk5F9xm_chnChYw.roa
File: XS_GUWGFqFoBDk5F9xm_chnChYw.roa (raw, json)
Hash identifier: /13lmpLLSrcVF/9TrshECCgzH+fv7UFlkOdyNcBDUns=
Subject key identifier: 5D:2F:C6:51:61:85:A8:5A:01:0E:4E:45:F7:19:BF:72:19:C2:85:8C
Certificate issuer: /CN=73588934a0b0d648daf94dd9e629d3dd22ed5abf
Certificate serial: 018CB597912B89898D2618D8CE42A3CE5173
Authority key identifier: 73:58:89:34:A0:B0:D6:48:DA:F9:4D:D9:E6:29:D3:DD:22:ED:5A:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c1iJNKCw1kja-U3Z5inT3SLtWr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/e3494d-e7aa-4d21-a8ad-7d4c0b7d7861/1/XS_GUWGFqFoBDk5F9xm_chnChYw.roa
Signing time: Fri 29 Dec 2023 12:40:58 +0000
ROA not before: Fri 29 Dec 2023 12:40:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210574
IP address blocks: 2.59.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b5:97:91:2b:89:89:8d:26:18:d8:ce:42:a3:ce:51:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73588934a0b0d648daf94dd9e629d3dd22ed5abf
Validity
Not Before: Dec 29 12:40:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5d2fc6516185a85a010e4e45f719bf7219c2858c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:0f:0c:f2:bf:8a:cb:6b:ea:60:83:63:e7:62:
15:64:db:a7:a0:86:ee:11:43:31:e6:94:f4:6a:cb:
65:ef:6a:42:af:1b:9b:33:a7:e8:55:f5:cf:e1:81:
d6:8e:31:2a:a9:43:77:76:6d:83:42:b6:aa:6c:14:
2e:d0:2a:c5:2b:d5:1b:ae:5c:b2:4f:20:2a:88:0d:
06:47:f0:14:2b:f3:f8:bd:fa:5f:79:6b:d7:8c:e9:
7e:48:40:40:80:42:a7:15:6f:d6:9e:09:5f:ac:9d:
72:8b:66:81:df:14:39:ab:6a:5b:47:08:e1:b4:0e:
a3:ac:30:fc:81:5e:9c:29:53:f1:7c:63:58:50:78:
09:b0:f3:7c:4b:f5:65:dd:7d:75:3b:06:e7:58:13:
c9:73:87:36:6d:98:45:54:e1:a5:ab:48:c4:8e:6d:
23:56:3f:f0:bf:41:c3:d6:8b:10:00:d2:7c:a4:82:
1e:fb:b3:8a:f1:2a:0e:0e:18:e5:b0:f4:39:aa:fa:
de:a3:65:e0:1d:d8:1e:11:91:3b:73:d6:de:da:18:
44:b5:6b:ae:c2:78:f9:35:21:f5:fb:02:5c:d5:4a:
0c:c1:3a:4d:83:f5:77:f2:8d:6d:5c:66:df:7f:b2:
3b:81:5e:4c:7e:04:44:49:f4:19:30:49:87:1b:a5:
c9:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:2F:C6:51:61:85:A8:5A:01:0E:4E:45:F7:19:BF:72:19:C2:85:8C
X509v3 Authority Key Identifier:
keyid:73:58:89:34:A0:B0:D6:48:DA:F9:4D:D9:E6:29:D3:DD:22:ED:5A:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1iJNKCw1kja-U3Z5inT3SLtWr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/e3494d-e7aa-4d21-a8ad-7d4c0b7d7861/1/XS_GUWGFqFoBDk5F9xm_chnChYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/e3494d-e7aa-4d21-a8ad-7d4c0b7d7861/1/c1iJNKCw1kja-U3Z5inT3SLtWr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.117.0/24
Signature Algorithm: sha256WithRSAEncryption
05:5a:67:d4:39:ed:b1:34:da:63:62:69:0d:8c:93:db:32:63:
49:83:87:a1:3a:fe:85:a0:5b:a1:0f:c8:83:b1:26:e8:11:eb:
98:e4:8b:a3:96:fa:46:93:8f:20:e8:9d:e1:c6:20:9f:93:1b:
90:f9:13:61:ef:43:07:38:69:1d:2d:f8:a0:b4:60:8b:e7:ba:
06:15:eb:59:56:8d:ac:f2:6d:78:23:76:c1:c5:03:ed:ac:de:
07:3d:39:18:a9:3d:d1:d8:db:c9:37:4c:3b:6e:e9:24:e0:cb:
4f:9a:41:06:fd:ba:42:d4:e0:eb:c1:a6:e2:5b:6f:64:6c:52:
d5:06:1e:e2:6c:b0:4a:38:94:90:0a:f6:b8:a1:67:26:a1:22:
bd:89:38:7d:b7:10:6c:8d:f1:34:02:20:4b:eb:ba:34:c1:be:
2f:a1:d9:fa:72:d1:8d:be:04:03:0f:71:95:11:82:4a:7e:0b:
79:16:5e:cf:2b:67:1f:8a:71:37:0d:16:ce:1e:df:03:cb:e8:
84:15:48:3a:57:23:24:a3:85:f6:c8:69:14:56:5b:81:6d:3a:
44:f0:fc:bc:84:f1:62:97:f0:e6:eb:8c:9b:3a:a4:e3:91:d5:
cf:2b:55:65:54:d2:00:ca:b3:2d:a8:b8:fe:ac:d7:b9:99:8d:
af:df:7e:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:19 2024 by rpki-client on console-fra.rpki-client.org