Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/a3cd28-ca3b-45ae-8135-387e7a5b150a/1/6z693e8615WQQ7RYHRsLe-6YUWI.roa
File: 6z693e8615WQQ7RYHRsLe-6YUWI.roa (raw, json)
Hash identifier: oR4nOKl2GEJteZW3/dn9xMvtCCkhpaDlheW8riRF7qY=
Subject key identifier: EB:3E:BD:DD:EF:3A:D7:95:90:43:B4:58:1D:1B:0B:7B:EE:98:51:62
Certificate issuer: /CN=1f41ba8a1cefdb8948113701bfd1d076dea6767d
Certificate serial: 021D0C
Authority key identifier: 1F:41:BA:8A:1C:EF:DB:89:48:11:37:01:BF:D1:D0:76:DE:A6:76:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0G6ihzv24lIETcBv9HQdt6mdn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/a3cd28-ca3b-45ae-8135-387e7a5b150a/1/6z693e8615WQQ7RYHRsLe-6YUWI.roa
Signing time: Fri 25 Mar 2022 10:59:47 +0000
ROA not before: Fri 25 Mar 2022 10:59:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204464
IP address blocks: 185.248.96.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138508 (0x21d0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f41ba8a1cefdb8948113701bfd1d076dea6767d
Validity
Not Before: Mar 25 10:59:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eb3ebdddef3ad7959043b4581d1b0b7bee985162
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:b1:df:f9:13:cd:01:ad:c8:02:ce:08:c0:d3:
25:e8:b7:3b:a9:31:10:44:5a:f7:2a:4e:3f:14:b5:
7b:5a:2e:5a:d8:02:54:0b:47:21:fd:c7:28:cf:3b:
f9:9c:46:d1:b9:a8:f8:24:43:bd:b4:53:bd:14:8d:
83:01:35:94:30:cc:cb:47:c9:7a:ce:08:07:be:b2:
c1:9d:26:c9:6f:19:b0:d9:f9:6d:1b:54:04:97:79:
c0:dc:ef:1e:8c:94:ce:74:cc:63:9d:1c:7c:96:0e:
ef:18:5a:0b:28:7a:77:2f:a8:c4:37:fe:d4:8a:50:
f9:13:27:24:d7:6a:be:5e:90:93:0d:db:b1:b7:79:
c2:7a:71:05:22:c1:3c:ca:b4:07:96:fd:85:f9:0d:
03:19:9c:7a:0f:c6:5f:89:8c:8d:33:eb:3f:2d:78:
5b:81:b3:36:93:c2:9d:ed:d7:20:c3:18:df:b6:f6:
b3:83:17:79:99:37:fd:de:2f:c9:0e:12:85:fb:92:
82:60:f1:60:b4:83:3a:91:e5:03:73:fa:71:ff:2b:
40:27:7c:9a:a9:b6:83:f7:d4:44:0a:c4:ab:a5:5c:
87:49:c2:8c:e4:e0:2a:61:16:f2:8d:c5:9d:0a:39:
ae:d8:71:76:f1:65:24:ee:a2:11:2d:7f:ef:e7:6f:
4b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:3E:BD:DD:EF:3A:D7:95:90:43:B4:58:1D:1B:0B:7B:EE:98:51:62
X509v3 Authority Key Identifier:
keyid:1F:41:BA:8A:1C:EF:DB:89:48:11:37:01:BF:D1:D0:76:DE:A6:76:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0G6ihzv24lIETcBv9HQdt6mdn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a3cd28-ca3b-45ae-8135-387e7a5b150a/1/6z693e8615WQQ7RYHRsLe-6YUWI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a3cd28-ca3b-45ae-8135-387e7a5b150a/1/H0G6ihzv24lIETcBv9HQdt6mdn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.248.96.0/22
Signature Algorithm: sha256WithRSAEncryption
23:47:8a:e2:9f:42:04:ca:23:5a:12:32:8a:e4:b8:e4:1c:f5:
6d:5d:ad:78:d2:62:9a:a0:b6:83:e6:b3:30:e5:03:37:7f:f0:
a4:98:10:84:2e:86:8b:76:bf:7e:f9:66:af:85:2a:df:8e:04:
a1:bd:3c:cf:c9:26:74:8d:33:bc:f8:a6:b6:d6:82:53:8b:8c:
c0:6c:c6:4a:75:6c:35:a8:2e:15:7b:7a:ef:20:8c:8a:ad:63:
81:ce:0c:76:72:91:5b:44:f4:fa:61:ed:5b:ca:f8:9d:a9:71:
96:6a:86:3a:aa:d7:4a:2c:30:88:d4:82:76:6f:1d:da:6f:ca:
f0:fb:b2:90:f8:3a:23:89:55:c5:64:46:a2:62:ea:2b:5f:94:
24:0a:c6:76:0d:7a:1e:9c:de:b0:97:48:01:1c:e7:df:5c:00:
67:be:56:c3:2b:79:7e:fc:03:86:30:86:71:22:83:ec:ee:0d:
17:24:c0:3e:dd:28:79:41:4d:10:cf:56:ea:31:54:8b:5e:3e:
b3:11:38:79:67:5d:30:4e:f0:3e:02:3c:2a:ac:48:aa:f4:dc:
35:85:13:7e:6b:ac:60:18:09:56:77:91:36:31:e3:17:9c:e0:
0c:de:b4:0f:67:cb:98:d1:ec:40:5a:93:82:f5:b6:eb:62:cc:
b1:8e:78:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:48 2024 by rpki-client on console-ams.rpki-client.org