Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/d09a6e-5081-4674-aa57-244d84094c0f/1/goi1ETJoD_SA99bUiAuTA_lwixw.roa
File: goi1ETJoD_SA99bUiAuTA_lwixw.roa (raw, json)
Hash identifier: 8lQbu/civPydkLl7ffLPebg6AN5+58P+xBBg0CUJ8a0=
Subject key identifier: 82:88:B5:11:32:68:0F:F4:80:F7:D6:D4:88:0B:93:03:F9:70:8B:1C
Certificate issuer: /CN=03d4c874a8fbaf51c9ec43ca009b22dc1d503976
Certificate serial: 02FDFC60
Authority key identifier: 03:D4:C8:74:A8:FB:AF:51:C9:EC:43:CA:00:9B:22:DC:1D:50:39:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A9TIdKj7r1HJ7EPKAJsi3B1QOXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/d09a6e-5081-4674-aa57-244d84094c0f/1/goi1ETJoD_SA99bUiAuTA_lwixw.roa
Signing time: Sat 01 Jan 2022 13:07:51 +0000
ROA not before: Sat 01 Jan 2022 13:07:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 185.115.108.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50199648 (0x2fdfc60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03d4c874a8fbaf51c9ec43ca009b22dc1d503976
Validity
Not Before: Jan 1 13:07:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8288b51132680ff480f7d6d4880b9303f9708b1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0e:5b:b5:ca:0e:0e:90:2b:a8:36:dd:20:dc:
22:94:cc:14:c3:74:d0:0d:0e:16:b7:bf:1d:12:d5:
8c:33:78:4c:09:ed:ab:c8:b5:47:2e:88:21:48:68:
c1:ea:c1:4d:b1:28:86:fa:1d:45:1d:c5:2d:15:f7:
a3:57:77:79:91:7d:d5:21:67:4d:2d:8a:87:31:07:
e5:0b:04:75:04:58:c5:9c:e3:8d:27:5a:d6:81:db:
69:06:34:d3:ab:48:e4:93:c8:76:0a:35:11:9e:b3:
8a:a7:b4:61:a0:3a:bc:26:9f:03:a2:e7:68:b1:dc:
45:46:8b:a2:c4:d8:33:75:69:5c:47:c6:ed:74:21:
a9:40:b0:5b:01:f9:9e:11:78:e3:17:23:84:f7:0b:
04:41:4c:e1:ca:6e:e5:3d:c8:9b:15:3f:dc:cf:1b:
b3:28:b8:66:14:6a:19:79:ad:d8:14:f2:67:f9:d1:
99:ee:3c:a7:5b:dc:b0:59:c7:68:82:32:45:62:cc:
31:88:82:13:02:66:ff:fe:f2:7d:9d:a6:f6:fb:0e:
d1:00:71:1f:72:1f:08:13:95:dd:ed:65:32:48:94:
5f:83:9c:5c:4d:50:3e:1a:a3:ca:49:6e:2a:e9:06:
89:43:e5:81:59:48:ae:b8:86:e9:a1:84:ae:ee:fa:
6c:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:88:B5:11:32:68:0F:F4:80:F7:D6:D4:88:0B:93:03:F9:70:8B:1C
X509v3 Authority Key Identifier:
keyid:03:D4:C8:74:A8:FB:AF:51:C9:EC:43:CA:00:9B:22:DC:1D:50:39:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A9TIdKj7r1HJ7EPKAJsi3B1QOXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/d09a6e-5081-4674-aa57-244d84094c0f/1/goi1ETJoD_SA99bUiAuTA_lwixw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/d09a6e-5081-4674-aa57-244d84094c0f/1/A9TIdKj7r1HJ7EPKAJsi3B1QOXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.115.108.0/22
Signature Algorithm: sha256WithRSAEncryption
ae:24:a0:d7:6e:36:b9:c6:44:2e:50:75:76:89:d4:9b:5a:ce:
43:61:f3:c7:6a:e8:f8:f7:67:58:4f:2c:a8:21:9b:75:40:2b:
8a:cf:cc:aa:04:e6:8d:dc:b1:41:7c:cd:fa:89:2d:26:02:d9:
4b:11:ad:14:32:64:e6:cc:9b:cf:56:d5:38:68:f6:b4:78:58:
6f:e2:0e:e1:c0:ba:a0:bd:19:9d:b1:d2:25:a8:ad:52:c9:f8:
8f:7f:7d:08:62:5c:32:e9:eb:86:67:ca:72:f7:5a:cc:74:f2:
83:41:b5:7c:32:0b:8e:ce:9f:20:08:c5:b8:bc:fc:48:4c:7d:
d4:fd:81:84:98:6a:81:c5:f9:94:89:dc:3f:96:20:db:ee:78:
f2:df:6f:14:b6:db:a0:0d:c8:1b:bb:f7:04:49:46:70:b8:63:
29:9a:4e:05:37:d0:3c:48:6c:d4:a4:24:4a:87:3c:a5:c5:a2:
72:df:c3:1b:af:c1:6d:5e:65:1b:cb:1c:ea:3e:ca:12:10:e2:
00:14:55:be:ad:6d:27:51:b6:ba:d0:0a:1c:df:d3:16:ad:56:
eb:c1:48:30:3f:c0:1a:47:cc:51:1a:ce:9f:fc:45:20:8a:bb:
5d:3d:ad:f3:2b:ad:1d:8f:67:4b:9e:f6:0c:2d:bc:ff:3b:61:
ac:4c:38:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:32 2024 by rpki-client on console-ams.rpki-client.org