Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/df6e61-0812-4e85-b25e-f52d3caed011/1/CTrZ33xp6wEqTyNkximR4imWK8s.roa
File: CTrZ33xp6wEqTyNkximR4imWK8s.roa (raw, json)
Hash identifier: q2Zi3MoWqp221l0TRM4PJBQJyThesttJ+QzTHUuwjBc=
Subject key identifier: 09:3A:D9:DF:7C:69:EB:01:2A:4F:23:64:C6:29:91:E2:29:96:2B:CB
Certificate issuer: /CN=764c878142c2f16f41292a628e24be4d95517409
Certificate serial: 056FB048
Authority key identifier: 76:4C:87:81:42:C2:F1:6F:41:29:2A:62:8E:24:BE:4D:95:51:74:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dkyHgULC8W9BKSpijiS-TZVRdAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/df6e61-0812-4e85-b25e-f52d3caed011/1/CTrZ33xp6wEqTyNkximR4imWK8s.roa
Signing time: Sat 01 Jan 2022 08:04:01 +0000
ROA not before: Sat 01 Jan 2022 08:04:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 194.120.109.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91205704 (0x56fb048)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764c878142c2f16f41292a628e24be4d95517409
Validity
Not Before: Jan 1 08:04:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=093ad9df7c69eb012a4f2364c62991e229962bcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e0:c1:93:1d:80:52:56:9a:b5:03:22:68:93:
9c:ae:d4:c4:2a:de:61:5d:12:d4:8d:f0:2b:90:0a:
53:7f:cc:87:e7:ce:89:e9:53:0d:3e:20:58:04:f7:
fa:89:da:9a:c5:6d:3b:de:84:fd:56:23:6b:01:92:
b1:16:da:cd:79:07:19:9e:e9:c3:93:dd:2d:b9:79:
22:64:93:cb:59:f7:b3:7b:16:c9:09:59:ad:6c:17:
13:3c:70:be:98:3b:f8:94:42:da:44:8a:8c:b8:96:
b4:fe:98:af:9e:69:48:ff:bc:fd:8c:ef:29:c1:ad:
08:cc:d0:d9:00:7b:3d:42:e4:a9:22:10:78:8e:34:
0d:db:09:a7:93:0a:d0:f3:6b:d4:7e:cf:14:16:54:
56:3d:e7:94:62:5f:e7:16:e7:cf:35:8b:28:bc:97:
25:33:77:79:31:80:bf:b1:07:30:8d:7e:3e:f7:93:
f1:f8:9e:b1:83:b6:47:4e:6b:8c:93:4a:98:8f:d1:
01:69:4c:c3:1e:4f:35:0c:0d:e5:b9:b2:b7:90:75:
08:83:51:f2:10:95:6c:79:66:5a:11:6f:28:8a:02:
29:25:6a:ef:6c:a0:d5:15:93:a0:7c:a1:3a:7d:88:
e5:58:41:61:3b:9d:51:20:f8:58:86:2c:99:ae:ad:
15:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:3A:D9:DF:7C:69:EB:01:2A:4F:23:64:C6:29:91:E2:29:96:2B:CB
X509v3 Authority Key Identifier:
keyid:76:4C:87:81:42:C2:F1:6F:41:29:2A:62:8E:24:BE:4D:95:51:74:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dkyHgULC8W9BKSpijiS-TZVRdAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/df6e61-0812-4e85-b25e-f52d3caed011/1/CTrZ33xp6wEqTyNkximR4imWK8s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/df6e61-0812-4e85-b25e-f52d3caed011/1/dkyHgULC8W9BKSpijiS-TZVRdAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.120.109.0/24
Signature Algorithm: sha256WithRSAEncryption
02:52:b3:4a:d9:6b:b5:7d:18:a3:c9:8e:f9:da:dd:26:28:8b:
68:4f:7c:88:53:b9:fe:3f:98:39:b5:24:95:5f:21:26:a6:6d:
2f:56:23:a7:f3:88:8c:44:cd:78:b3:d1:75:a7:d8:84:41:8b:
c5:2b:9c:3e:17:8e:7c:8d:9a:b2:ec:3b:be:ca:4f:5b:0d:e4:
1a:58:1a:bf:a7:f4:60:5c:ba:89:c8:14:60:3f:c6:1d:e5:5a:
65:86:e6:9e:48:1e:14:f6:69:15:07:40:63:d0:5d:7f:8d:59:
a0:10:66:d7:0b:db:d5:ec:49:d3:60:99:7f:90:65:f0:27:12:
e5:2d:e0:44:b6:37:e1:a2:3c:a1:f4:c8:83:ae:2f:f4:61:41:
ca:e1:3b:01:fb:87:bd:26:52:90:05:09:7c:ec:38:1e:9c:e2:
69:c7:0c:e8:85:0b:8a:5f:fe:f1:9b:7a:c4:bb:aa:a5:9a:a1:
27:78:27:4e:d7:90:f8:0b:6d:4a:6b:84:b6:64:85:c8:f3:42:
ae:76:1e:76:7c:3d:e4:dc:98:54:fc:5b:f0:9a:65:f2:6b:d4:
0f:7c:36:a9:1c:ea:a6:3d:b8:4b:d4:84:4e:55:4c:b1:87:0e:
4c:07:98:02:e9:5e:a4:31:c2:1e:75:f0:e0:49:79:42:28:5f:
b8:42:32:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:02 2024 by rpki-client on console-fra.rpki-client.org