Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/58a62d-4ff1-4013-b554-2d930f23e4c6/1/OclxdoYj2Vx7UynuN_mB2bxCJt4.roa
File: OclxdoYj2Vx7UynuN_mB2bxCJt4.roa (raw, json)
Hash identifier: 9siJIfX0tc06s/FTNQnsfF4BAOkbrrN2GD/VAoyl31Y=
Subject key identifier: 39:C9:71:76:86:23:D9:5C:7B:53:29:EE:37:F9:81:D9:BC:42:26:DE
Certificate issuer: /CN=aa424a763a879b1e5d418d24cdfb3670db9c9702
Certificate serial: 018AFB44642F5DABF4F7968DA6F6C11831CD
Authority key identifier: AA:42:4A:76:3A:87:9B:1E:5D:41:8D:24:CD:FB:36:70:DB:9C:97:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qkJKdjqHmx5dQY0kzfs2cNuclwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/58a62d-4ff1-4013-b554-2d930f23e4c6/1/OclxdoYj2Vx7UynuN_mB2bxCJt4.roa
Signing time: Wed 04 Oct 2023 15:17:57 +0000
ROA not before: Wed 04 Oct 2023 15:17:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1241
IP address blocks: 176.97.196.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fb:44:64:2f:5d:ab:f4:f7:96:8d:a6:f6:c1:18:31:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa424a763a879b1e5d418d24cdfb3670db9c9702
Validity
Not Before: Oct 4 15:17:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=39c971768623d95c7b5329ee37f981d9bc4226de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:a5:31:fb:fb:0f:c0:de:ae:62:da:e2:39:e4:
91:f4:6c:2f:1c:44:2f:40:f5:43:e8:1c:c9:6e:20:
77:04:63:01:10:50:47:40:47:d7:f2:fe:be:ff:84:
95:b7:98:8b:61:4a:ca:e2:d4:ea:d2:29:69:ec:34:
56:27:15:7c:a1:d7:6f:35:d6:3b:5d:08:48:12:7d:
6b:2f:65:ac:10:1b:c0:e6:0d:f2:34:c0:83:c6:61:
56:aa:8f:ea:f4:c2:f4:6e:3d:3a:78:52:1f:fb:16:
80:78:aa:76:94:9e:b4:82:5a:b1:2d:6c:d8:e7:ea:
67:22:c3:93:ed:83:04:fd:13:a0:70:29:f6:99:d8:
96:0e:d6:c8:e1:81:1f:b0:f5:dc:25:9e:1e:8a:65:
03:9f:14:44:ae:23:1d:db:e6:3b:25:36:e9:cf:33:
06:d9:b3:59:6c:d4:40:ff:10:35:ff:04:5f:6d:03:
c9:d8:c3:1b:1c:f6:5e:8a:14:ef:af:3d:83:cc:45:
64:80:17:26:e2:25:dd:0a:08:ec:e0:ee:ad:35:1a:
d5:b4:e1:ee:c6:f1:e3:d7:3d:d8:a8:50:f7:10:06:
ab:38:c0:86:6e:ed:03:69:9a:22:67:d2:ab:8a:00:
32:e2:68:74:25:1c:9a:2b:21:de:c0:c3:a3:57:24:
64:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:C9:71:76:86:23:D9:5C:7B:53:29:EE:37:F9:81:D9:BC:42:26:DE
X509v3 Authority Key Identifier:
keyid:AA:42:4A:76:3A:87:9B:1E:5D:41:8D:24:CD:FB:36:70:DB:9C:97:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qkJKdjqHmx5dQY0kzfs2cNuclwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/58a62d-4ff1-4013-b554-2d930f23e4c6/1/OclxdoYj2Vx7UynuN_mB2bxCJt4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/58a62d-4ff1-4013-b554-2d930f23e4c6/1/qkJKdjqHmx5dQY0kzfs2cNuclwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.196.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:3d:82:18:e7:0b:33:98:f5:31:cd:b8:86:5a:a2:a6:96:09:
04:d0:e6:34:80:de:b3:5c:11:d5:4e:ab:f6:c0:6c:96:cb:53:
d4:e1:b9:5b:d1:0d:14:71:dc:5a:96:93:68:31:ac:5a:e8:90:
20:20:1b:55:bf:6f:ab:a6:69:6c:87:39:3b:3b:5c:27:9e:6c:
66:7b:8f:bf:d2:e4:3b:41:70:18:86:c1:fc:73:da:95:15:f9:
b7:da:c4:e5:b4:2c:79:e0:ab:3d:3e:77:99:c8:76:48:33:1e:
1c:c2:f6:9c:80:22:0f:99:a2:3e:6b:7e:f7:86:df:79:c0:a3:
97:8f:f3:82:e4:d0:0f:3d:e9:89:6c:bd:37:01:c7:48:9b:74:
fd:02:4f:7c:a7:98:1f:7f:a9:e9:9b:4f:4c:77:f0:51:8f:61:
24:98:a1:b7:70:a0:43:97:60:c2:70:3f:19:06:79:f9:9c:a9:
c9:46:e4:3a:29:aa:ba:a6:c2:70:4a:fb:c3:7e:21:28:fd:a5:
f0:1e:7b:7b:28:2d:34:50:f5:51:6a:31:dd:ee:39:ab:f3:b5:
0e:3c:ab:86:3e:84:1f:ad:35:00:9c:b1:8f:e5:ca:a4:1f:f6:
32:34:6e:1d:c8:fe:e0:58:e4:99:ed:76:f9:29:53:26:3c:05:
41:1e:24:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:23 2024 by rpki-client on console-fra.rpki-client.org