Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/d09a6e-5081-4674-aa57-244d84094c0f/1/JGG0KlhSxTDtcYgNNStSMl062nY.roa
File: JGG0KlhSxTDtcYgNNStSMl062nY.roa (raw, json)
Hash identifier: tSOavpmhxM1lbhGxXek9Lqd2A/SdWhq8COce5e8wrxY=
Subject key identifier: 24:61:B4:2A:58:52:C5:30:ED:71:88:0D:35:2B:52:32:5D:3A:DA:76
Certificate issuer: /CN=03d4c874a8fbaf51c9ec43ca009b22dc1d503976
Certificate serial: 03BC23D8
Authority key identifier: 03:D4:C8:74:A8:FB:AF:51:C9:EC:43:CA:00:9B:22:DC:1D:50:39:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A9TIdKj7r1HJ7EPKAJsi3B1QOXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/d09a6e-5081-4674-aa57-244d84094c0f/1/JGG0KlhSxTDtcYgNNStSMl062nY.roa
Signing time: Tue 22 Mar 2022 10:29:48 +0000
ROA not before: Tue 22 Mar 2022 10:29:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 185.115.108.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62661592 (0x3bc23d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03d4c874a8fbaf51c9ec43ca009b22dc1d503976
Validity
Not Before: Mar 22 10:29:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2461b42a5852c530ed71880d352b52325d3ada76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:67:b4:3d:74:3e:17:60:65:ad:7e:76:01:fc:
1d:ac:79:33:18:a8:cd:01:26:86:a7:9b:e2:80:a8:
ce:7a:cb:62:28:c2:ee:51:ad:20:5c:73:6c:4a:b3:
74:b8:44:50:7e:d3:05:aa:f0:68:ce:21:c3:d8:dd:
ee:a0:08:6e:f5:a6:39:61:67:22:ad:39:cc:df:3c:
2c:a2:49:35:be:9b:e9:ad:98:bf:84:71:71:9f:80:
95:55:e0:3d:18:b1:7b:a7:9c:f5:64:6f:e3:ac:50:
87:35:6e:f2:17:30:44:b4:52:78:ba:91:91:f4:1e:
05:21:d5:bc:2c:72:90:a2:ba:5c:a1:e7:7c:84:c7:
e9:02:1d:e8:33:22:08:e6:17:ef:70:8b:79:d1:d7:
ad:7e:f1:79:b2:5c:75:4a:8d:02:7f:74:3c:30:3a:
cd:f2:2b:9b:bc:f2:47:2a:cc:cf:7f:ce:35:68:00:
bd:10:34:db:fe:5c:ce:7c:ad:e4:c7:b5:2f:df:5f:
5b:8f:50:c0:b2:77:3a:79:f1:c0:68:e7:50:16:af:
53:af:42:14:9c:02:7f:38:2b:f8:59:9b:74:29:ff:
3b:92:ac:a4:2c:db:d8:cd:c8:8d:e3:29:8f:61:d7:
54:90:6a:18:aa:50:21:28:97:32:4a:da:f9:31:87:
3f:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:61:B4:2A:58:52:C5:30:ED:71:88:0D:35:2B:52:32:5D:3A:DA:76
X509v3 Authority Key Identifier:
keyid:03:D4:C8:74:A8:FB:AF:51:C9:EC:43:CA:00:9B:22:DC:1D:50:39:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A9TIdKj7r1HJ7EPKAJsi3B1QOXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/d09a6e-5081-4674-aa57-244d84094c0f/1/JGG0KlhSxTDtcYgNNStSMl062nY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/d09a6e-5081-4674-aa57-244d84094c0f/1/A9TIdKj7r1HJ7EPKAJsi3B1QOXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.115.108.0/22
Signature Algorithm: sha256WithRSAEncryption
87:ff:c7:22:35:08:c7:64:14:77:15:0d:5e:71:4a:9f:bc:c7:
9e:ea:94:d0:66:2a:91:55:4f:cc:64:4f:f3:7f:dc:ec:aa:b0:
12:07:28:fe:b5:9b:34:95:0e:14:9e:4e:c9:6b:1a:9c:7d:ef:
51:4c:7f:9c:ba:d2:6a:06:8d:e1:e4:fd:52:9a:6e:59:00:c4:
fc:ce:e4:fc:cb:ed:76:19:19:9f:50:8b:13:1f:7a:42:f5:c2:
8b:95:eb:d9:d2:28:b4:92:76:62:a6:10:f1:07:70:c3:6e:f7:
db:ad:be:f1:63:8a:b3:37:c0:b9:b3:d9:a3:4c:a5:16:c1:7e:
ce:40:d5:5c:8a:b2:27:25:0e:17:c3:32:54:1e:21:50:b0:21:
24:1f:2b:4d:22:cf:b3:70:4e:9f:4f:f3:75:88:51:8d:15:ad:
d3:24:e2:3b:91:6e:b0:b4:74:93:32:cb:9b:55:93:75:67:a9:
cb:19:78:b9:82:93:f9:07:14:23:89:72:c1:6b:6b:ad:a5:6e:
45:88:cf:f7:5a:66:30:43:85:83:23:a0:5a:ed:7e:50:3e:e1:
f8:1e:6d:db:e1:de:ef:19:7b:35:d7:23:fd:25:74:81:c8:94:
13:b9:bb:65:61:17:0f:a6:0e:52:d4:9a:00:55:86:82:c0:64:
80:f4:c7:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:10 2024 by rpki-client on console-fra.rpki-client.org