Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/d09a6e-5081-4674-aa57-244d84094c0f/1/1-lnOHZXXKqOSJM0BpSSTbygM478.roa
File: 1-lnOHZXXKqOSJM0BpSSTbygM478.roa (raw, json)
Hash identifier: hnr6YHlLZn2qlo7NmVfg+zYbzgS7ZGAFuieRAoD9KRU=
Subject key identifier: FA:59:CE:1D:95:D7:2A:A3:92:24:CD:01:A5:24:93:6F:28:0C:E3:BF
Certificate issuer: /CN=03d4c874a8fbaf51c9ec43ca009b22dc1d503976
Certificate serial: 045E21DC
Authority key identifier: 03:D4:C8:74:A8:FB:AF:51:C9:EC:43:CA:00:9B:22:DC:1D:50:39:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A9TIdKj7r1HJ7EPKAJsi3B1QOXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/d09a6e-5081-4674-aa57-244d84094c0f/1/1-lnOHZXXKqOSJM0BpSSTbygM478.roa
Signing time: Wed 01 Jun 2022 16:12:21 +0000
ROA not before: Wed 01 Jun 2022 16:12:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 185.115.108.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73277916 (0x45e21dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03d4c874a8fbaf51c9ec43ca009b22dc1d503976
Validity
Not Before: Jun 1 16:12:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa59ce1d95d72aa39224cd01a524936f280ce3bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f2:19:a5:b8:d2:44:97:28:5b:6d:05:82:e2:
ea:c8:bf:6b:6d:27:f9:4f:b4:43:d7:f5:35:d6:8b:
60:37:9c:c2:21:b0:39:48:89:0b:3f:dd:d3:99:aa:
34:d1:c0:16:1d:9e:4b:5e:9f:46:6b:0c:14:20:b4:
be:46:61:2a:e9:54:d4:0c:b1:d8:d6:32:75:52:2d:
9e:9e:13:54:9b:31:3e:40:50:18:24:fc:6f:b2:5c:
6d:36:32:85:55:59:7e:02:21:65:02:1c:9d:63:3e:
9f:3e:30:c3:99:43:7b:f5:32:0c:1d:72:ea:6b:1f:
a4:f6:df:71:79:a7:35:f7:db:89:f9:3b:96:89:33:
32:27:af:ee:92:1a:6b:53:8b:f3:5e:4a:ea:86:f7:
d8:43:66:85:d2:98:98:58:11:55:8b:2b:2c:2b:5f:
cd:4b:f7:73:bd:33:0a:0c:5f:a3:ec:07:1b:df:05:
db:ce:82:5b:36:7c:55:83:38:c1:37:ce:ee:87:eb:
fd:2a:6a:12:00:d9:44:4b:52:19:e7:ad:53:dc:ea:
ff:71:37:3c:48:af:30:77:a1:35:ad:b6:d4:dd:8c:
bb:1f:ec:bc:9d:d6:a3:6f:5f:d0:3a:65:6d:09:4b:
14:8a:15:6d:5c:9e:d3:ff:ec:7a:54:a1:87:c4:5e:
54:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:59:CE:1D:95:D7:2A:A3:92:24:CD:01:A5:24:93:6F:28:0C:E3:BF
X509v3 Authority Key Identifier:
keyid:03:D4:C8:74:A8:FB:AF:51:C9:EC:43:CA:00:9B:22:DC:1D:50:39:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A9TIdKj7r1HJ7EPKAJsi3B1QOXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/d09a6e-5081-4674-aa57-244d84094c0f/1/1-lnOHZXXKqOSJM0BpSSTbygM478.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/d09a6e-5081-4674-aa57-244d84094c0f/1/A9TIdKj7r1HJ7EPKAJsi3B1QOXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.115.108.0/22
Signature Algorithm: sha256WithRSAEncryption
25:68:47:43:68:6d:8c:21:bf:1c:41:77:05:20:b4:8d:b5:56:
25:7b:4f:54:87:2c:ae:be:e5:8a:66:c3:35:f9:7e:b0:eb:36:
30:ea:ad:e0:4e:bb:98:4a:b9:8b:57:86:98:e7:6f:f0:91:cf:
5b:69:0c:58:b3:a0:5b:02:54:46:74:54:a7:e2:d7:74:7a:b4:
ee:2b:0c:dc:e2:6e:a3:ab:38:21:02:53:30:15:7f:62:f6:6c:
45:6e:5c:4a:8c:02:70:36:c5:da:49:69:41:40:2c:21:b9:13:
2f:a9:12:64:d0:a1:da:a3:b8:ab:fd:7b:a6:31:0b:b6:6d:de:
4b:5f:62:42:fa:9f:03:ea:1e:0a:59:00:ba:e2:9d:ec:31:72:
2d:2c:b0:c6:99:cd:69:ee:b2:2f:05:3f:96:d5:54:d3:f4:1e:
14:53:e4:5f:01:fd:96:54:43:2a:46:95:16:92:b2:6b:48:23:
27:73:81:8d:96:78:97:44:07:f2:9c:45:1e:18:4c:d8:62:5f:
13:29:35:1e:ad:7d:56:26:cd:60:63:ed:d0:47:b1:32:ed:1a:
fd:9f:c9:f1:ac:a1:ee:72:bb:06:ef:4a:d3:a3:b6:6f:f0:7e:
02:7d:f8:6c:8a:1f:a4:ce:6b:9c:d3:8f:d7:ae:0e:ed:a6:de:
1e:14:00:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:32 2024 by rpki-client on console-ams.rpki-client.org