Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/d5460e-0de1-4a74-951b-3e77d567ccc8/1/AO8QXiT3JLStJNMrNeDGZg73mL8.roa
File: AO8QXiT3JLStJNMrNeDGZg73mL8.roa (raw, json)
Hash identifier: bGBw2Ed4uZbYIwZgBRjLh5x61jLihV0ZMIOKl1iPUxk=
Subject key identifier: 00:EF:10:5E:24:F7:24:B4:AD:24:D3:2B:35:E0:C6:66:0E:F7:98:BF
Certificate issuer: /CN=122b2d2fa8bcf5f836210b9f49211ee6d094d0d2
Certificate serial: 018562FA33718598DC7EA38D829DA4571894
Authority key identifier: 12:2B:2D:2F:A8:BC:F5:F8:36:21:0B:9F:49:21:1E:E6:D0:94:D0:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EistL6i89fg2IQufSSEe5tCU0NI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/d5460e-0de1-4a74-951b-3e77d567ccc8/1/AO8QXiT3JLStJNMrNeDGZg73mL8.roa
Signing time: Fri 30 Dec 2022 12:20:42 +0000
ROA not before: Fri 30 Dec 2022 12:20:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203950
IP address blocks: 185.170.65.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:62:fa:33:71:85:98:dc:7e:a3:8d:82:9d:a4:57:18:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=122b2d2fa8bcf5f836210b9f49211ee6d094d0d2
Validity
Not Before: Dec 30 12:20:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00ef105e24f724b4ad24d32b35e0c6660ef798bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:1e:c0:0d:66:13:59:de:b7:3d:29:70:7c:b3:
6d:96:22:88:33:15:47:36:0f:f4:8e:ed:eb:a0:65:
77:bc:3e:89:47:2f:9c:c8:0b:55:45:b1:db:db:85:
e5:8d:56:1e:f2:44:47:24:72:62:f3:65:2f:98:a8:
b1:58:0b:ac:4e:22:dc:85:d1:04:c7:cb:17:b3:7b:
39:32:87:30:51:a4:d6:92:29:84:23:ea:30:67:59:
12:9e:37:a3:4f:af:84:5e:0f:f2:49:1d:9e:e4:6c:
fc:d2:ae:b9:ef:7b:53:a7:17:b0:56:90:14:c8:a3:
ab:a0:66:02:6c:e3:d4:28:1c:7a:30:87:c3:91:5b:
bf:50:0c:e2:e7:9c:4d:23:0d:99:32:88:a8:13:01:
df:9c:be:1d:4b:8b:0b:1c:b2:eb:71:d4:1b:c1:d5:
84:6b:e1:1c:f8:ed:e8:86:4e:00:94:4f:de:80:63:
0d:f1:85:d3:41:f5:ef:2c:7a:40:58:b1:65:f8:33:
3f:0c:b9:d9:6c:c5:90:4f:55:9e:c8:99:8b:54:1f:
b7:5c:83:ea:58:33:68:32:eb:fa:d2:3f:37:1b:95:
41:03:77:9f:6f:d5:3b:7c:32:8d:72:4b:7e:db:8c:
9b:20:78:50:13:93:7c:7a:3d:8e:89:00:53:b6:fa:
e6:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:EF:10:5E:24:F7:24:B4:AD:24:D3:2B:35:E0:C6:66:0E:F7:98:BF
X509v3 Authority Key Identifier:
keyid:12:2B:2D:2F:A8:BC:F5:F8:36:21:0B:9F:49:21:1E:E6:D0:94:D0:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EistL6i89fg2IQufSSEe5tCU0NI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d5460e-0de1-4a74-951b-3e77d567ccc8/1/AO8QXiT3JLStJNMrNeDGZg73mL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d5460e-0de1-4a74-951b-3e77d567ccc8/1/EistL6i89fg2IQufSSEe5tCU0NI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.170.65.0/24
Signature Algorithm: sha256WithRSAEncryption
80:2d:7c:7e:49:6a:26:33:0e:fb:d3:f8:6f:27:3f:5d:47:53:
e5:64:1b:e9:fc:9c:f3:0f:9f:b2:d3:7a:7d:94:a4:27:f5:07:
3e:a6:90:48:08:b9:eb:a3:a7:c5:a6:26:31:a7:0a:47:b7:e3:
b0:c0:dd:08:dd:92:b0:a2:cd:35:f6:c4:c2:29:73:c1:49:fa:
52:d2:00:59:7b:c1:6e:aa:45:4e:7a:40:ef:f5:a3:a8:0a:bb:
b4:09:86:5b:cf:e7:88:b1:ea:45:52:3a:2d:45:39:0a:ff:8c:
62:bf:64:2e:47:a3:c2:d0:51:78:0a:df:45:8f:d3:2f:e9:89:
ff:e9:63:5b:9d:49:04:a6:74:9e:6a:02:2e:3c:2a:a5:c6:c2:
5f:fa:02:2b:28:eb:91:60:85:eb:f6:fd:4d:12:7c:95:a7:a7:
4e:fc:c4:8c:4c:8a:68:c1:92:b6:d3:7b:98:bf:e0:1f:49:0e:
20:28:d5:6e:f2:be:a3:f0:96:ad:e1:0d:5a:80:b8:8e:3f:98:
cc:18:84:8f:a1:b6:c6:26:a0:ca:44:44:25:15:53:ab:10:a2:
32:52:c3:9a:b4:f4:60:bd:0d:71:cf:8b:50:9b:2e:12:6a:8c:
e8:05:28:ab:b5:8c:40:9a:6b:29:5e:07:0a:66:d0:b4:4a:63:
0d:68:7d:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:48 2023 by rpki-client on console-ams.rpki-client.org