Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/cf7f6d-b225-4bdf-9504-838ebf412a61/1/4Olcppu4o44t3oCz5pirrQurYhI.roa
File: 4Olcppu4o44t3oCz5pirrQurYhI.roa (raw, json)
Hash identifier: ++Su0SDzgf91zGiMlCXwz7OVmya1PO6KK21mxqhFJVo=
Subject key identifier: E0:E9:5C:A6:9B:B8:A3:8E:2D:DE:80:B3:E6:98:AB:AD:0B:AB:62:12
Certificate issuer: /CN=2b8966d0f14fd59993ca4878e774fa4779036694
Certificate serial: 018C3EBBF6E57FE8E1E5E6D5E6E0EE061147
Authority key identifier: 2B:89:66:D0:F1:4F:D5:99:93:CA:48:78:E7:74:FA:47:79:03:66:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K4lm0PFP1ZmTykh453T6R3kDZpQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/cf7f6d-b225-4bdf-9504-838ebf412a61/1/4Olcppu4o44t3oCz5pirrQurYhI.roa
Signing time: Wed 06 Dec 2023 10:45:54 +0000
ROA not before: Wed 06 Dec 2023 10:45:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200780
IP address blocks: 185.40.102.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3e:bb:f6:e5:7f:e8:e1:e5:e6:d5:e6:e0:ee:06:11:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b8966d0f14fd59993ca4878e774fa4779036694
Validity
Not Before: Dec 6 10:45:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e0e95ca69bb8a38e2dde80b3e698abad0bab6212
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:85:18:5c:7c:19:0a:3d:b5:4e:c4:29:03:1b:
95:a2:b3:33:95:cd:60:f2:6b:cf:70:fe:85:a6:10:
a2:0e:7f:6f:f9:90:01:f0:c4:ee:5d:15:85:9a:95:
d5:bb:6a:58:a9:f2:a9:36:43:5d:46:ee:da:dd:c2:
c3:c9:9a:03:48:fe:55:42:a8:4c:f1:35:0f:0a:a4:
ac:c3:dc:7b:a3:2d:ed:6a:c6:9c:31:8a:0f:d8:65:
d4:4c:28:f5:2c:29:3f:f7:dc:a3:20:ca:2d:36:0c:
19:99:b9:d5:8c:da:b2:10:63:6b:a8:38:b2:42:6d:
bb:dc:b5:6e:f6:bd:72:ee:29:9c:72:c1:b0:ab:81:
56:8d:54:58:63:ba:dc:af:dd:3f:c0:d9:2f:1a:a7:
16:e6:52:ac:01:a0:ad:80:4f:f7:1e:69:5e:a5:33:
32:a0:69:f2:4a:5c:f4:a7:fb:8f:56:cf:93:d9:b8:
c4:ba:52:04:ab:02:4a:3a:9a:3b:30:86:37:52:14:
cf:46:a2:b6:a1:8b:a6:89:07:d6:be:34:31:8f:aa:
0e:fd:f6:e7:5d:8c:06:3a:ec:93:d7:43:82:99:6a:
83:14:48:e7:8f:c8:16:3b:5c:79:3d:10:8b:33:fb:
7b:da:b7:6e:c4:6b:d8:c7:35:96:d1:da:47:31:1d:
33:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:E9:5C:A6:9B:B8:A3:8E:2D:DE:80:B3:E6:98:AB:AD:0B:AB:62:12
X509v3 Authority Key Identifier:
keyid:2B:89:66:D0:F1:4F:D5:99:93:CA:48:78:E7:74:FA:47:79:03:66:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K4lm0PFP1ZmTykh453T6R3kDZpQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/cf7f6d-b225-4bdf-9504-838ebf412a61/1/4Olcppu4o44t3oCz5pirrQurYhI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/cf7f6d-b225-4bdf-9504-838ebf412a61/1/K4lm0PFP1ZmTykh453T6R3kDZpQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.40.102.0/23
Signature Algorithm: sha256WithRSAEncryption
30:74:e9:e6:c9:af:d0:46:15:21:25:3b:d9:15:d6:4e:80:f8:
e9:9a:82:ff:dd:49:6c:74:3a:05:3c:b9:51:d9:9d:ce:71:9b:
34:eb:f9:43:01:cd:b8:69:16:1b:41:f8:94:08:22:3d:a6:d5:
7c:a2:c8:80:78:ca:f0:d1:b2:46:70:d8:46:c6:ad:77:c1:6e:
c1:31:2c:d9:75:d7:6f:23:a0:7a:54:05:2f:dc:52:0c:46:90:
0b:db:20:ab:ec:eb:8b:98:48:3e:73:ad:ae:ab:2e:0a:1c:0b:
8c:3b:66:fe:bc:a4:52:71:c8:68:ff:ad:05:e7:72:f4:39:d8:
d1:c7:26:0b:ea:95:9b:84:bc:fd:0a:fd:7c:ab:26:61:a8:1c:
9c:a2:93:1e:ae:25:b5:9a:66:27:77:d6:43:32:39:3e:32:99:
86:92:bc:7e:37:cd:09:16:c0:b8:ff:1f:df:ec:72:6e:92:9f:
8b:1f:6e:cc:c6:ce:66:a8:8c:be:d4:a2:00:9e:3c:36:8d:2e:
98:9e:51:7f:d4:a8:f1:6a:b0:b3:fb:27:06:9c:dc:ca:8f:27:
78:e1:59:cc:29:3f:56:15:fe:08:ab:93:58:80:12:02:84:9d:
fd:3d:78:06:23:9f:8c:31:d2:12:c7:de:e6:fc:6b:5e:18:51:
13:b2:cf:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:05 2024 by rpki-client on console-fra.rpki-client.org