Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/3b9416-763a-4e4e-820b-6f4a06440768/1/3HKTKz7TTViLXmvfcQ-UPvShqYY.roa
File: 3HKTKz7TTViLXmvfcQ-UPvShqYY.roa (raw, json)
Hash identifier: Z8FhCPn4W/q4DBbPKyuli+OISCPK3lodYiIvc7NeUjc=
Subject key identifier: DC:72:93:2B:3E:D3:4D:58:8B:5E:6B:DF:71:0F:94:3E:F4:A1:A9:86
Certificate issuer: /CN=516bc5c6e1920215b96d6e6fc05ecf7b312657fc
Certificate serial: 02A3A200
Authority key identifier: 51:6B:C5:C6:E1:92:02:15:B9:6D:6E:6F:C0:5E:CF:7B:31:26:57:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UWvFxuGSAhW5bW5vwF7PezEmV_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/3b9416-763a-4e4e-820b-6f4a06440768/1/3HKTKz7TTViLXmvfcQ-UPvShqYY.roa
Signing time: Sat 01 Jan 2022 12:55:38 +0000
ROA not before: Sat 01 Jan 2022 12:55:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212242
IP address blocks: 193.84.71.0/24 maxlen: 24
2a10:ff00::/31 maxlen: 31
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44278272 (0x2a3a200)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=516bc5c6e1920215b96d6e6fc05ecf7b312657fc
Validity
Not Before: Jan 1 12:55:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dc72932b3ed34d588b5e6bdf710f943ef4a1a986
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:2b:b4:b5:a9:d9:f7:21:04:11:b5:e1:95:5b:
48:0f:6b:f6:59:5c:7b:0b:7e:a0:8f:ca:3b:d9:85:
fa:f3:00:b2:8b:02:0c:c2:de:7a:63:6e:4c:e6:68:
78:df:cd:8d:a8:09:23:18:3c:18:45:91:e1:ba:3e:
d0:53:33:d3:d7:0e:56:7e:48:3f:b3:cd:6d:95:e4:
29:b5:d0:e8:ce:69:82:f0:94:e0:90:5c:94:12:c2:
71:e8:51:ed:68:cb:cb:72:f1:65:90:bc:c5:e2:3e:
9d:d7:99:ae:09:a3:76:cb:6b:a5:e9:d6:d2:08:a1:
bb:ec:72:91:ca:f0:cb:01:ac:88:ca:86:40:3b:8a:
de:c0:33:57:83:b5:9a:7f:6c:eb:a6:ed:04:45:fe:
c7:9d:1a:a9:6d:3a:da:55:16:0a:61:9f:6d:f8:21:
b7:88:a8:d5:76:cd:df:da:8f:cb:6f:08:d0:02:1b:
5a:75:79:cf:7d:6f:8c:95:bb:05:b7:ed:dd:66:ef:
2f:a9:82:be:69:6a:b7:47:2e:a8:85:ed:1b:96:33:
b4:b3:0e:32:63:dc:7a:9e:12:5b:b8:66:ab:cf:3e:
7f:4a:bc:55:eb:86:70:e2:f8:92:8f:dd:f6:16:e0:
4b:92:85:77:37:74:0f:b4:3f:84:a8:16:3d:4f:91:
11:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:72:93:2B:3E:D3:4D:58:8B:5E:6B:DF:71:0F:94:3E:F4:A1:A9:86
X509v3 Authority Key Identifier:
keyid:51:6B:C5:C6:E1:92:02:15:B9:6D:6E:6F:C0:5E:CF:7B:31:26:57:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UWvFxuGSAhW5bW5vwF7PezEmV_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/3b9416-763a-4e4e-820b-6f4a06440768/1/3HKTKz7TTViLXmvfcQ-UPvShqYY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/3b9416-763a-4e4e-820b-6f4a06440768/1/UWvFxuGSAhW5bW5vwF7PezEmV_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.71.0/24
IPv6:
2a10:ff00::/31
Signature Algorithm: sha256WithRSAEncryption
5c:79:d6:f9:cb:02:15:16:4e:9c:8a:b1:29:95:91:06:5d:d6:
61:be:4c:03:ab:d0:ee:0f:83:91:cc:9d:65:8c:a0:6f:11:b2:
e0:e0:40:aa:4a:d4:0b:1a:7b:2e:4d:4e:71:b8:af:41:50:89:
d2:32:31:53:bf:9b:a6:e3:bd:8e:66:ba:dc:71:f5:a7:60:2e:
f4:57:84:43:6f:e5:60:87:53:62:e1:54:13:ed:df:d5:15:fc:
38:e7:1c:dc:53:f9:b0:91:64:d1:ca:c2:ea:1e:c9:24:27:6b:
2c:07:62:cd:90:17:36:01:44:b6:83:d0:bc:19:c1:fa:09:55:
2a:14:e7:4e:f9:8c:db:67:fd:e8:45:f0:81:e2:97:95:24:f3:
7e:7f:32:e6:ca:ce:51:5c:4f:80:83:e0:94:38:38:89:62:50:
57:37:f6:2c:12:03:fc:9d:39:b0:aa:50:a4:11:b3:87:89:3e:
e4:bc:6d:22:87:30:38:fc:3c:3e:32:62:c9:2c:ec:1c:53:cc:
46:bf:60:4b:f0:e8:b5:f5:66:be:8a:a9:8c:0b:32:24:b0:c2:
16:57:bf:95:1b:c8:89:cd:0b:ae:f5:78:5c:95:cb:03:1f:49:
ae:ff:10:68:05:86:c6:23:0c:10:e1:ea:7c:c3:bc:7f:73:0a:
01:5c:45:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:24 2024 by rpki-client on console-ams.rpki-client.org