Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/a3a4e8-1fc9-4589-97e8-1e58bd74be60/1/a9_Q9u0jHG04OhLKtP_ycgIJhlQ.roa
File: a9_Q9u0jHG04OhLKtP_ycgIJhlQ.roa (raw, json)
Hash identifier: sw9RuQB6ZGI5QuB8sGdJm8e4YFf6Sjn0TIhnoNsr2UI=
Subject key identifier: 6B:DF:D0:F6:ED:23:1C:6D:38:3A:12:CA:B4:FF:F2:72:02:09:86:54
Certificate issuer: /CN=c34c13ecf26ac702f768c99110bf662e99139794
Certificate serial: 04EACE9F
Authority key identifier: C3:4C:13:EC:F2:6A:C7:02:F7:68:C9:91:10:BF:66:2E:99:13:97:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w0wT7PJqxwL3aMmREL9mLpkTl5Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/a3a4e8-1fc9-4589-97e8-1e58bd74be60/1/a9_Q9u0jHG04OhLKtP_ycgIJhlQ.roa
Signing time: Sat 01 Jan 2022 03:53:50 +0000
ROA not before: Sat 01 Jan 2022 03:53:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140500
IP address blocks: 185.145.244.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82497183 (0x4eace9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c34c13ecf26ac702f768c99110bf662e99139794
Validity
Not Before: Jan 1 03:53:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6bdfd0f6ed231c6d383a12cab4fff27202098654
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ae:d7:a2:4c:04:1e:96:47:e0:7f:0e:27:55:
62:eb:24:58:3e:47:35:dd:f6:34:17:9e:ca:ba:64:
57:fa:7c:a2:d7:6c:74:a2:40:37:ff:64:8a:5a:8e:
50:d9:d6:c0:1d:76:90:f7:72:cb:b5:ff:fd:c7:59:
cb:a5:dc:70:fe:4c:92:8d:93:ad:32:24:19:f5:aa:
da:3a:d5:fd:dc:34:07:f3:f8:4e:79:1e:32:0b:9a:
4a:1e:85:ac:fc:53:8a:6f:2a:ed:bc:e1:74:8c:5e:
e9:e2:64:d9:84:23:c7:e2:11:d8:e7:83:c9:46:d0:
92:04:b2:74:01:ab:22:5f:06:01:8b:e1:1d:41:eb:
f9:68:1c:18:fd:d3:9b:56:cb:e1:c2:72:16:05:f0:
69:4e:67:5a:56:41:fb:9e:9b:0f:ff:fb:1b:20:b0:
a9:da:6a:07:be:a7:1e:12:8a:8a:97:42:ac:f7:31:
63:07:09:f2:d1:8b:4c:04:a1:85:6d:79:5b:e7:8f:
8e:d1:ab:7b:87:2a:2c:63:e2:7e:64:9a:95:e6:c5:
c7:e6:83:0e:23:40:3d:b1:aa:3b:45:64:6c:3f:43:
02:a4:21:9c:80:d1:1a:4a:25:14:1a:e9:4e:89:7d:
a1:e8:20:0b:59:cb:ce:12:16:9b:29:ae:c5:ef:ce:
ba:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:DF:D0:F6:ED:23:1C:6D:38:3A:12:CA:B4:FF:F2:72:02:09:86:54
X509v3 Authority Key Identifier:
keyid:C3:4C:13:EC:F2:6A:C7:02:F7:68:C9:91:10:BF:66:2E:99:13:97:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w0wT7PJqxwL3aMmREL9mLpkTl5Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/a3a4e8-1fc9-4589-97e8-1e58bd74be60/1/a9_Q9u0jHG04OhLKtP_ycgIJhlQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/a3a4e8-1fc9-4589-97e8-1e58bd74be60/1/w0wT7PJqxwL3aMmREL9mLpkTl5Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.244.0/24
Signature Algorithm: sha256WithRSAEncryption
91:63:9f:40:6e:6f:7e:42:cd:94:72:7b:91:7b:c6:7e:68:8d:
8e:1d:24:86:ce:aa:92:ac:c3:1d:e1:45:8f:f1:a6:12:89:73:
f1:7f:94:c2:77:51:7b:d0:b6:79:8b:5a:3a:fb:c2:b3:f3:99:
b3:13:c4:74:a4:0c:2f:5d:5a:e9:b8:de:a4:46:9f:e2:34:fb:
51:15:04:b1:71:f3:0a:37:58:53:cb:83:b6:2d:46:64:cf:b6:
87:50:fa:94:fb:c2:ef:78:6d:f9:42:b7:04:07:5b:db:9f:f2:
33:9c:29:e7:b5:61:a4:1c:78:06:d3:98:c0:1a:e6:a8:6b:09:
9d:e0:67:f0:34:de:5d:9d:57:61:2d:d1:99:44:33:40:ad:65:
6e:6a:c5:d5:59:37:7d:2f:52:89:14:55:20:c6:e1:95:e9:06:
43:a3:50:b7:ae:5b:08:0a:82:4b:b5:82:d0:1c:c8:2f:80:f6:
d9:d8:61:02:ca:24:e1:82:e3:1e:5f:25:15:af:f2:d5:1a:73:
8a:86:41:77:3a:35:0c:28:2c:1e:6e:14:b1:f9:ab:e6:2c:23:
fd:45:c1:a9:1c:06:93:c8:72:c5:02:dc:3b:45:df:c9:48:96:
a1:85:0a:2f:13:7f:e5:4e:79:c3:9f:96:06:a1:0c:70:66:cf:
e0:7b:6a:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:52 2024 by rpki-client on console-fra.rpki-client.org