Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/c272c2-debb-41a3-8ba0-fe530aeb144b/1/j9bp9TnH7PBmcAvMnkbzuYqSIOQ.roa
File: j9bp9TnH7PBmcAvMnkbzuYqSIOQ.roa (raw, json)
Hash identifier: pSwNX4GjSNEEnZ0if4HcIQZIweO8dgEHNVLAV4+u7O0=
Subject key identifier: 8F:D6:E9:F5:39:C7:EC:F0:66:70:0B:CC:9E:46:F3:B9:8A:92:20:E4
Certificate issuer: /CN=830286f9e94205b58a409ec1f246654335509500
Certificate serial: 051ADD92
Authority key identifier: 83:02:86:F9:E9:42:05:B5:8A:40:9E:C1:F2:46:65:43:35:50:95:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gwKG-elCBbWKQJ7B8kZlQzVQlQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/c272c2-debb-41a3-8ba0-fe530aeb144b/1/j9bp9TnH7PBmcAvMnkbzuYqSIOQ.roa
Signing time: Sat 01 Jan 2022 07:02:44 +0000
ROA not before: Sat 01 Jan 2022 07:02:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43824
IP address blocks: 185.128.126.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85646738 (0x51add92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830286f9e94205b58a409ec1f246654335509500
Validity
Not Before: Jan 1 07:02:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8fd6e9f539c7ecf066700bcc9e46f3b98a9220e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:97:0d:f5:f1:26:2c:38:e8:8f:0f:2b:a5:67:
bf:ae:f7:db:ec:99:06:f7:ef:4f:95:ee:e2:c3:af:
61:e8:da:67:c5:7c:c1:ca:32:8b:05:b5:5d:62:83:
a2:8e:d4:6e:2f:93:96:33:13:77:6e:1d:e5:79:d5:
92:dd:06:91:c0:9d:99:d8:63:62:85:e3:ab:d4:2a:
81:21:16:b4:86:f6:84:92:48:ff:63:e1:16:f1:9c:
4a:4f:f6:ba:7d:f7:a3:9b:ca:50:94:1d:ef:e0:c5:
bd:df:f0:31:82:c7:31:37:f1:b3:e0:d3:82:f6:a4:
e7:b8:1d:c9:aa:c9:26:4d:f9:7b:a7:46:69:ce:4a:
8e:df:f0:d5:02:13:25:df:64:d9:94:8c:28:cf:da:
70:ef:30:45:c1:3d:ed:09:be:9c:17:cd:a2:f5:fb:
8d:15:f9:a8:b1:60:18:35:d7:7e:ef:74:f4:93:74:
7b:15:ed:82:0c:33:99:98:7e:9a:45:8d:74:41:1c:
c2:96:f2:3f:71:35:53:31:ad:84:02:c6:a1:d0:e3:
95:db:f5:ca:89:a7:41:61:50:27:02:8c:07:15:c0:
fd:14:46:f6:61:94:6d:67:6a:82:c4:f9:02:06:21:
f3:22:61:1f:33:a7:84:e8:6c:c3:30:02:61:38:ae:
3b:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:D6:E9:F5:39:C7:EC:F0:66:70:0B:CC:9E:46:F3:B9:8A:92:20:E4
X509v3 Authority Key Identifier:
keyid:83:02:86:F9:E9:42:05:B5:8A:40:9E:C1:F2:46:65:43:35:50:95:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gwKG-elCBbWKQJ7B8kZlQzVQlQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/c272c2-debb-41a3-8ba0-fe530aeb144b/1/j9bp9TnH7PBmcAvMnkbzuYqSIOQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/c272c2-debb-41a3-8ba0-fe530aeb144b/1/gwKG-elCBbWKQJ7B8kZlQzVQlQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.126.0/24
Signature Algorithm: sha256WithRSAEncryption
39:84:b7:1a:c9:46:d7:bc:b2:3c:04:ba:33:de:5e:b3:dc:de:
47:e4:1d:42:5f:2c:32:dd:ca:db:c9:f8:ee:0d:b5:83:e2:d7:
4d:e0:6e:45:f7:fd:09:99:12:d9:74:8d:82:1c:c2:1f:72:07:
cd:5e:6a:75:6a:99:39:82:d8:fc:66:8c:77:60:0f:dd:0d:81:
e0:1a:fa:f8:10:ae:85:e9:d9:10:6f:fe:7d:9f:e2:65:f1:de:
c4:16:fa:05:37:77:d5:4a:40:55:d7:3c:c8:be:d4:f6:3b:5f:
5d:65:cd:ca:2a:19:34:c3:05:25:93:1f:fe:ce:c3:43:04:90:
4a:6b:ef:a5:49:19:7f:de:54:28:f2:fa:60:27:69:84:e0:2e:
99:c2:7f:da:70:79:a6:b7:dc:39:ad:46:8e:93:95:fa:40:55:
3a:f6:c3:83:f4:90:d1:23:4f:fe:db:24:aa:e9:e4:74:f1:8d:
81:c3:f0:bc:9b:35:d2:2b:7b:13:6d:df:a0:b7:ea:09:49:f2:
9d:d5:23:38:bc:9c:da:ca:33:e0:b6:52:43:c6:c6:c8:69:8c:
d9:a7:a8:ac:4c:e7:fa:d2:b3:53:16:3d:b0:d2:48:52:e2:0c:
c8:6e:b9:27:76:33:b4:fc:bf:23:e6:84:c3:e0:07:52:a5:ab:
81:10:f2:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:31 2024 by rpki-client on console-fra.rpki-client.org