Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/d40dc2-5736-4444-8d56-d41bbd1d6fe8/1/UtMr2O3_l7pMz5LoX8gpbMK_Vq8.roa
File: UtMr2O3_l7pMz5LoX8gpbMK_Vq8.roa (raw, json)
Hash identifier: Nh6OizWM8u6eAukTe5Rp4Yu2sFotjZqOeIe2tGLuzj0=
Subject key identifier: 52:D3:2B:D8:ED:FF:97:BA:4C:CF:92:E8:5F:C8:29:6C:C2:BF:56:AF
Certificate issuer: /CN=6c9a34c521ea6073e09c204934f7ce0ea086ba1b
Certificate serial: 799582
Authority key identifier: 6C:9A:34:C5:21:EA:60:73:E0:9C:20:49:34:F7:CE:0E:A0:86:BA:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bJo0xSHqYHPgnCBJNPfODqCGuhs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/d40dc2-5736-4444-8d56-d41bbd1d6fe8/1/UtMr2O3_l7pMz5LoX8gpbMK_Vq8.roa
Signing time: Sat 01 Jan 2022 01:53:01 +0000
ROA not before: Sat 01 Jan 2022 01:53:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 109.205.184.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7968130 (0x799582)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c9a34c521ea6073e09c204934f7ce0ea086ba1b
Validity
Not Before: Jan 1 01:53:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=52d32bd8edff97ba4ccf92e85fc8296cc2bf56af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:1a:16:53:0a:10:81:f3:11:aa:4d:6b:6a:bc:
d2:8d:1e:7f:96:48:93:2e:fa:b3:d6:89:18:f1:96:
b7:b4:b1:53:26:0d:03:86:cf:cb:76:ff:23:97:e7:
f6:56:93:78:00:17:ca:55:9c:22:02:a4:3b:cf:91:
a9:11:93:ed:7b:0b:a0:25:bd:7b:8c:d4:a4:f7:3b:
e9:e7:29:ea:28:6e:a0:32:da:af:82:16:6a:96:2a:
6e:33:1d:d0:f9:70:6c:5e:50:95:72:40:40:8d:d4:
d2:6a:a1:eb:ff:dd:5d:9a:b0:80:00:75:9c:80:de:
6e:1c:6f:a2:30:53:ff:e3:5e:64:6c:e1:63:4b:aa:
33:a9:f8:30:a0:c4:ff:07:2f:df:98:21:13:bd:2b:
3c:de:55:57:ef:9a:ba:24:76:80:6b:74:ff:82:a9:
50:6e:74:52:f2:3c:a8:ab:a6:78:73:0b:f0:59:db:
2b:a9:57:d8:59:8a:7d:88:93:41:da:c5:88:d5:ad:
c1:12:18:2d:49:cc:fa:80:f9:be:15:17:bc:98:26:
7a:80:51:0f:94:60:40:87:31:15:c1:5d:6d:1a:e7:
3f:d1:95:61:36:c8:d9:24:7c:b3:51:2d:76:c4:fb:
48:be:66:91:d1:52:f2:f6:60:46:52:ca:07:3b:7d:
2f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:D3:2B:D8:ED:FF:97:BA:4C:CF:92:E8:5F:C8:29:6C:C2:BF:56:AF
X509v3 Authority Key Identifier:
keyid:6C:9A:34:C5:21:EA:60:73:E0:9C:20:49:34:F7:CE:0E:A0:86:BA:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bJo0xSHqYHPgnCBJNPfODqCGuhs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d40dc2-5736-4444-8d56-d41bbd1d6fe8/1/UtMr2O3_l7pMz5LoX8gpbMK_Vq8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d40dc2-5736-4444-8d56-d41bbd1d6fe8/1/bJo0xSHqYHPgnCBJNPfODqCGuhs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.184.0/24
Signature Algorithm: sha256WithRSAEncryption
94:3f:a7:f4:84:82:d5:74:92:75:93:b9:30:4d:ef:da:89:a5:
23:8b:68:be:6a:9a:a6:8e:ff:cb:a9:8a:f8:dc:13:be:27:e9:
0a:fe:cc:49:6a:3f:27:bf:9f:92:42:a5:fb:b4:80:16:1e:58:
fd:25:a7:52:b9:b0:8b:3d:75:b8:d4:29:6d:b6:48:51:d1:36:
69:cc:42:09:7f:3b:56:1f:31:a1:81:20:e0:90:1b:1a:b2:89:
5c:2e:2d:f0:8f:3e:60:2c:66:59:b2:cb:93:68:6a:2f:9b:64:
be:ae:8b:68:cb:60:0a:4f:8f:18:e1:76:42:4c:ce:3c:b4:98:
34:6d:90:dd:1d:c0:b7:b7:88:8d:d3:07:91:32:92:7f:f5:e8:
41:f6:5a:dd:82:04:4f:05:fe:bd:34:84:fb:40:64:0b:14:50:
50:97:64:d6:5b:74:01:91:58:44:01:e0:dd:28:ba:5f:0e:95:
03:16:d9:67:b8:a9:35:a7:ba:e5:47:82:5e:a7:ae:38:5f:71:
4d:c4:20:bd:c3:80:aa:fa:41:26:27:97:33:d0:e6:e8:39:87:
c2:42:dd:bf:60:e3:76:a8:dd:1b:83:ba:1e:6c:b5:fc:80:01:
5f:27:ad:24:d0:d3:76:6f:5f:b0:46:cc:0f:81:12:1c:77:55:
9d:7f:ab:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:11 2024 by rpki-client on console-fra.rpki-client.org