Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/WQ-RzHJGHl0L5rOYEVqrfqbHzGs.roa
File: WQ-RzHJGHl0L5rOYEVqrfqbHzGs.roa (raw, json)
Hash identifier: 8QInsJEHQOKg2G51+dyLy04B1gRuxdluGOwGuZqcHW8=
Subject key identifier: 59:0F:91:CC:72:46:1E:5D:0B:E6:B3:98:11:5A:AB:7E:A6:C7:CC:6B
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 018CC870723D96CD7F5DCA60618562BACAF4
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/WQ-RzHJGHl0L5rOYEVqrfqbHzGs.roa
Signing time: Tue 02 Jan 2024 04:31:01 +0000
ROA not before: Tue 02 Jan 2024 04:31:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29538
IP address blocks: 185.244.106.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:70:72:3d:96:cd:7f:5d:ca:60:61:85:62:ba:ca:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Jan 2 04:31:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=590f91cc72461e5d0be6b398115aab7ea6c7cc6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c7:40:9f:df:74:e7:e5:03:c1:f2:12:e0:fc:
72:da:76:16:7f:cd:2c:cb:22:e7:01:50:73:e9:53:
f3:fb:5c:87:5b:a3:64:84:6a:1a:dc:d5:d9:82:9e:
39:7a:f5:2a:85:72:11:d1:58:f6:f2:34:05:09:47:
2a:d2:2f:67:b5:1f:ca:bd:58:66:1c:e7:44:9d:b0:
26:97:c7:b2:78:b5:77:d8:15:d2:22:99:66:57:47:
43:1e:49:75:d3:c6:aa:88:29:85:ec:f7:9c:ad:e4:
57:c2:30:92:c7:40:a3:8a:16:be:e1:41:f7:72:60:
a6:cd:4f:81:60:15:eb:e5:81:94:03:80:cb:66:e8:
14:8d:20:e6:ff:e9:56:ed:d6:49:47:a5:98:f4:b9:
f2:45:eb:ae:8e:cf:26:06:96:47:3d:42:1e:5e:0b:
b8:76:d3:82:5f:cb:44:ca:72:05:56:e1:46:7e:dd:
47:f1:ed:33:9d:ac:d7:b6:23:df:4a:65:4c:da:1f:
49:bd:c4:ff:9c:13:9e:35:49:17:14:23:50:d2:1a:
d4:4d:fe:f3:1b:1e:c6:01:fa:76:f4:76:f0:cd:d8:
3d:5b:63:44:87:02:b8:2a:26:41:b3:c9:12:dc:dc:
27:91:e3:f2:f3:83:82:0d:ed:e8:f3:6d:fa:f1:d8:
76:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:0F:91:CC:72:46:1E:5D:0B:E6:B3:98:11:5A:AB:7E:A6:C7:CC:6B
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/WQ-RzHJGHl0L5rOYEVqrfqbHzGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.106.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:fa:c4:e4:a7:7c:b1:63:04:39:81:b9:01:60:df:a5:0a:41:
98:54:b9:87:53:5d:05:76:0f:b9:9b:c1:67:f4:0c:9c:6a:a6:
f9:69:52:af:8b:ec:10:18:cb:46:e7:31:fd:d0:de:be:63:dd:
b0:f1:26:9b:8d:d3:4b:79:5e:b0:25:40:28:c4:18:f0:41:7b:
65:ab:db:74:ad:cf:72:de:ce:fe:67:8f:26:16:b0:0c:88:67:
95:81:78:00:e6:ea:33:cb:d9:35:3c:d0:37:72:8c:7d:79:6f:
a9:85:f3:59:84:d0:8b:9b:7c:a7:fc:4b:0e:df:02:61:a5:8c:
aa:43:ff:ac:c3:9d:0b:76:7a:2e:c8:b9:c0:23:8d:5c:df:ff:
bf:d3:68:4f:bc:27:40:4e:73:53:51:be:7f:a2:51:5d:40:6f:
68:e7:25:98:72:a0:fe:ed:1e:73:da:06:37:f2:6f:24:bd:c8:
20:29:d8:96:9d:ec:34:61:c8:1c:5f:37:90:ba:96:ef:50:23:
f0:b1:c2:20:55:38:c4:ca:a6:a6:0e:f4:f7:8b:d9:4b:6e:91:
0a:6c:f2:c7:7d:70:d2:7e:05:63:20:c8:9e:ec:31:ca:a3:27:
a0:38:4c:45:1d:56:ee:13:06:52:4f:cc:35:40:49:fd:b4:0d:
06:3b:7a:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:09 2024 by rpki-client on console-fra.rpki-client.org