Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/13f1e4-d7fe-424c-87c2-dbb9a25f6012/1/gWoAHJqB07FrcHxG8dKJQw4kn70.roa
File: gWoAHJqB07FrcHxG8dKJQw4kn70.roa (raw, json)
Hash identifier: oIiqDjpZVFnEmRrPZSx9bXAC/ZTmzyQk68vw6+sn9Bc=
Subject key identifier: 81:6A:00:1C:9A:81:D3:B1:6B:70:7C:46:F1:D2:89:43:0E:24:9F:BD
Certificate issuer: /CN=9e090317adda08e323ebceed7d54565212742dba
Certificate serial: 01856EA6AF1AFAAD481B543DF6396FD97785
Authority key identifier: 9E:09:03:17:AD:DA:08:E3:23:EB:CE:ED:7D:54:56:52:12:74:2D:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ngkDF63aCOMj687tfVRWUhJ0Lbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/13f1e4-d7fe-424c-87c2-dbb9a25f6012/1/gWoAHJqB07FrcHxG8dKJQw4kn70.roa
Signing time: Sun 01 Jan 2023 18:44:55 +0000
ROA not before: Sun 01 Jan 2023 18:44:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204019
IP address blocks: 194.1.253.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:af:1a:fa:ad:48:1b:54:3d:f6:39:6f:d9:77:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e090317adda08e323ebceed7d54565212742dba
Validity
Not Before: Jan 1 18:44:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=816a001c9a81d3b16b707c46f1d289430e249fbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:87:cf:27:65:52:3b:4c:da:f0:ff:fd:7c:24:
8d:fa:59:82:9c:1d:f7:60:57:30:5c:17:23:90:0c:
fe:bf:e3:eb:7b:9e:f6:0e:c2:5c:87:a3:d6:20:27:
b6:c1:30:85:98:a6:32:ad:e7:6f:e4:2f:09:c3:9f:
62:d1:b0:1e:96:71:0b:45:a1:5f:cc:49:d9:19:b0:
55:56:6a:84:32:b8:84:f7:83:5b:59:e4:b2:f5:04:
71:08:62:f0:64:d8:a9:8b:ab:1c:8c:9e:7b:db:f7:
97:df:00:16:7b:0b:27:2d:74:be:2f:d5:95:6b:2c:
df:f4:42:68:76:b0:8e:29:1c:68:2a:85:e8:c6:a3:
fb:9e:06:07:04:d5:71:b9:db:3e:e7:99:e8:12:8e:
28:bb:4c:9c:2f:fc:c6:63:d1:30:ad:20:11:41:d9:
e9:0e:8f:12:3b:c7:46:c5:0f:20:e8:b4:83:81:c4:
3f:ea:86:5f:a6:40:eb:c5:dc:fa:f7:bb:42:64:39:
3a:f6:76:9e:5e:79:cc:53:14:b8:76:dc:38:c3:86:
bf:a9:3a:2c:1a:a1:05:c2:f0:1b:0b:67:6e:b0:fb:
1b:cd:f3:39:4d:1e:0f:71:b1:8b:2e:45:bd:e0:29:
84:a7:20:25:4c:b0:a5:ff:67:00:e8:f6:e5:5c:e1:
05:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:6A:00:1C:9A:81:D3:B1:6B:70:7C:46:F1:D2:89:43:0E:24:9F:BD
X509v3 Authority Key Identifier:
keyid:9E:09:03:17:AD:DA:08:E3:23:EB:CE:ED:7D:54:56:52:12:74:2D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ngkDF63aCOMj687tfVRWUhJ0Lbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/13f1e4-d7fe-424c-87c2-dbb9a25f6012/1/gWoAHJqB07FrcHxG8dKJQw4kn70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/13f1e4-d7fe-424c-87c2-dbb9a25f6012/1/ngkDF63aCOMj687tfVRWUhJ0Lbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.1.253.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:0d:ba:45:7c:8d:28:21:47:1b:47:26:be:d2:9b:ba:cf:9a:
bb:1a:b4:42:e1:8b:cd:49:da:70:66:0e:28:3b:29:a0:51:96:
53:da:ba:1c:c6:4c:2a:f9:d3:a1:90:a3:f2:56:58:62:08:a4:
bf:d0:44:88:21:53:e4:18:4b:31:1f:89:27:fd:b9:4b:b6:0c:
72:44:f7:14:ad:5b:23:0e:7e:17:70:a1:49:d3:0e:8b:7e:f6:
e0:ef:be:c9:8e:e8:fc:c6:b9:4c:b6:3b:16:7e:a6:91:c2:5a:
89:96:a2:ae:12:c4:59:7b:39:08:cc:ea:34:47:a9:7a:f5:2f:
30:a8:a0:14:97:62:ce:7c:55:6e:23:49:9a:48:bd:0e:d2:d6:
51:8f:6e:52:7a:3a:3c:b4:4d:27:1c:8b:a0:5a:bc:66:54:42:
a0:ff:50:a4:f5:f2:7d:7a:06:b2:a8:e4:33:4c:b1:fc:19:77:
6b:98:8c:35:89:73:20:ce:a8:2e:30:b1:85:5a:a0:9d:7e:fa:
bf:c0:2f:3e:95:f3:50:e5:37:af:2e:43:ee:59:b7:31:08:5c:
95:76:71:fd:86:16:32:a8:fe:d0:29:ec:82:08:05:e0:8f:4f:
b1:bf:4d:68:d4:7a:dd:c6:82:cf:8e:c4:c3:59:78:3c:4d:d7:
a7:55:f3:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:06 2024 by rpki-client on console-ams.rpki-client.org