Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/f1d818-5cb7-4683-96b3-5f212e685277/1/oD21D5AvVx6wqmdyGGUJCJRPNqo.roa
File: oD21D5AvVx6wqmdyGGUJCJRPNqo.roa (raw, json)
Hash identifier: +i29J04U9KBcaZOCsV94VbG9iQudB02gYb9iGaw7jOQ=
Subject key identifier: A0:3D:B5:0F:90:2F:57:1E:B0:AA:67:72:18:65:09:08:94:4F:36:AA
Certificate issuer: /CN=e399d8f7ca68a2c2373b45eb76442d044afacdd9
Certificate serial: 01B460BF
Authority key identifier: E3:99:D8:F7:CA:68:A2:C2:37:3B:45:EB:76:44:2D:04:4A:FA:CD:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/45nY98poosI3O0XrdkQtBEr6zdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/f1d818-5cb7-4683-96b3-5f212e685277/1/oD21D5AvVx6wqmdyGGUJCJRPNqo.roa
Signing time: Sat 01 Jan 2022 06:05:50 +0000
ROA not before: Sat 01 Jan 2022 06:05:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41155
IP address blocks: 194.1.200.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28598463 (0x1b460bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e399d8f7ca68a2c2373b45eb76442d044afacdd9
Validity
Not Before: Jan 1 06:05:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a03db50f902f571eb0aa677218650908944f36aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:9d:31:44:9c:8c:e4:11:d9:03:de:5a:61:b0:
ac:c2:2e:53:59:84:63:10:be:cc:57:82:19:44:64:
c0:20:10:60:4b:80:a1:e7:7f:ac:ca:63:9a:4e:d9:
00:96:24:fd:30:4c:bb:06:d5:b3:ca:24:34:27:87:
47:3f:72:7e:35:1d:da:1b:f2:04:b2:0f:fd:b3:d5:
2c:6d:f8:16:47:77:9c:8e:7b:c0:14:04:85:55:f6:
be:9d:da:51:f1:a0:57:19:54:76:c3:81:b6:b6:64:
92:26:27:aa:4d:a9:13:45:ab:81:7e:79:8a:0e:d2:
66:f2:5b:d3:54:26:6e:40:6a:43:e3:f3:d7:48:ae:
62:a6:7b:20:a2:4d:ef:88:59:07:64:de:cf:88:67:
b8:ef:6b:1c:aa:15:0b:cd:50:d9:fe:da:7f:e3:c4:
03:cc:41:cd:83:16:a7:db:21:d3:24:60:68:84:8a:
12:2f:ec:2c:7e:10:4f:2b:60:9a:86:7b:05:7d:01:
dd:50:bf:75:9e:d2:54:b2:e0:77:a2:36:47:18:fd:
40:b1:82:dc:97:42:c0:1c:ef:48:65:78:64:70:d2:
fe:14:a8:d6:6d:c1:fe:33:69:88:fd:a4:0c:30:5b:
cf:e4:ec:2c:b3:35:26:76:36:55:fe:7c:37:7e:b9:
0a:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:3D:B5:0F:90:2F:57:1E:B0:AA:67:72:18:65:09:08:94:4F:36:AA
X509v3 Authority Key Identifier:
keyid:E3:99:D8:F7:CA:68:A2:C2:37:3B:45:EB:76:44:2D:04:4A:FA:CD:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/45nY98poosI3O0XrdkQtBEr6zdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/f1d818-5cb7-4683-96b3-5f212e685277/1/oD21D5AvVx6wqmdyGGUJCJRPNqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/f1d818-5cb7-4683-96b3-5f212e685277/1/45nY98poosI3O0XrdkQtBEr6zdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.1.200.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:16:f0:33:c8:4b:ab:8e:6b:cb:13:07:a6:99:09:11:66:46:
72:5a:d7:fe:db:6d:ff:d0:80:17:cd:15:6e:c0:57:b6:c7:18:
c0:2c:cf:31:3b:3b:5f:6c:98:6a:6e:d7:43:8a:f4:d4:6f:36:
a1:2a:f9:78:be:f1:59:cc:91:f1:1b:a9:cf:f5:a6:71:18:ef:
33:c3:71:4e:1f:62:c5:32:c0:5f:d9:27:9f:f7:26:7c:82:66:
29:98:03:3a:1a:b1:d9:a0:5d:57:7d:1b:1d:5f:36:d7:1a:f1:
54:62:e4:6b:bc:de:05:03:d7:90:56:ad:c4:41:23:c8:4a:fc:
69:9a:29:35:d1:80:e0:fb:41:b9:3a:0b:47:b6:da:0b:7a:bc:
3a:c9:a5:5b:3a:55:cd:57:83:46:90:01:46:89:a1:e0:e7:30:
48:63:16:3c:9f:d6:19:4f:d2:6b:a4:0b:11:27:61:6a:01:f6:
69:ce:de:25:63:f9:3f:4c:0b:28:80:23:b5:ba:9b:a6:a0:f3:
6f:71:3f:13:5d:6f:e7:59:b5:b8:8f:1e:90:f5:f0:f0:6b:50:
b9:8c:43:3e:9e:c0:55:bd:61:03:da:3f:e1:dc:83:93:6d:38:
31:1b:3e:e0:e3:00:4d:94:49:12:a2:36:e1:27:01:76:23:f5:
0c:0a:bf:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:11 2024 by rpki-client on console-ams.rpki-client.org