Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/829b02-d326-4c83-93f4-8cc231555e51/1/NuQfEqp5Nx3sFpeiPjcSRJHEgEg.roa
File: NuQfEqp5Nx3sFpeiPjcSRJHEgEg.roa (raw, json)
Hash identifier: jrrkRArBxSujzPns4EuKP5tAFxH/foJEdZBzvlyGaD4=
Subject key identifier: 36:E4:1F:12:AA:79:37:1D:EC:16:97:A2:3E:37:12:44:91:C4:80:48
Certificate issuer: /CN=cfba970db187d18e19a91e64f00b0d3160860db5
Certificate serial: 018CC4935AA41141EFF90A91A1D82CD6EB74
Authority key identifier: CF:BA:97:0D:B1:87:D1:8E:19:A9:1E:64:F0:0B:0D:31:60:86:0D:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z7qXDbGH0Y4ZqR5k8AsNMWCGDbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/829b02-d326-4c83-93f4-8cc231555e51/1/NuQfEqp5Nx3sFpeiPjcSRJHEgEg.roa
Signing time: Mon 01 Jan 2024 10:30:40 +0000
ROA not before: Mon 01 Jan 2024 10:30:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 22773
IP address blocks: 185.5.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:5a:a4:11:41:ef:f9:0a:91:a1:d8:2c:d6:eb:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfba970db187d18e19a91e64f00b0d3160860db5
Validity
Not Before: Jan 1 10:30:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=36e41f12aa79371dec1697a23e37124491c48048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:b0:f6:f4:d1:70:94:18:4f:a9:12:32:5a:92:
ec:bf:e8:3a:06:ef:30:c6:c6:c6:d0:28:1a:39:69:
8f:ec:78:72:7b:3a:ac:8a:a7:1c:86:ed:c1:f0:d4:
d9:ed:29:6c:8c:17:13:c3:c3:34:5f:42:98:43:29:
be:15:6a:62:90:60:6b:d9:6f:1e:93:bd:40:18:81:
06:34:51:f1:70:1d:cf:92:b5:9c:cf:02:90:91:c5:
16:ba:79:56:64:87:5d:d1:dd:28:e8:0f:bc:86:bb:
61:91:e5:8a:59:89:a3:78:a2:4d:11:1f:b4:a7:c0:
84:75:10:3d:2c:a0:8f:25:45:3a:fe:93:c6:37:60:
ca:2e:f3:9b:3f:82:0e:f9:de:e3:9f:8c:4d:81:10:
ed:33:66:c1:6c:c6:ff:d2:f1:74:09:ae:2f:e4:e4:
a3:39:3f:9e:2f:ec:06:fd:d7:94:74:8a:9c:d2:03:
ce:e9:c6:06:dc:0f:e8:c1:07:cd:9c:6f:51:e9:01:
ed:62:ed:f7:7c:20:0e:19:93:77:61:e8:66:c5:09:
49:d7:c8:39:aa:ed:76:bc:19:f8:5e:4b:ef:eb:60:
2b:4a:a2:1a:42:b8:bd:ac:e1:4f:bb:6e:7a:d7:37:
57:ae:00:44:8e:12:c4:db:4a:a1:98:6b:b8:df:a3:
f6:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:E4:1F:12:AA:79:37:1D:EC:16:97:A2:3E:37:12:44:91:C4:80:48
X509v3 Authority Key Identifier:
keyid:CF:BA:97:0D:B1:87:D1:8E:19:A9:1E:64:F0:0B:0D:31:60:86:0D:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z7qXDbGH0Y4ZqR5k8AsNMWCGDbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/829b02-d326-4c83-93f4-8cc231555e51/1/NuQfEqp5Nx3sFpeiPjcSRJHEgEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/829b02-d326-4c83-93f4-8cc231555e51/1/z7qXDbGH0Y4ZqR5k8AsNMWCGDbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.5.144.0/24
Signature Algorithm: sha256WithRSAEncryption
86:93:b5:9c:df:2f:39:b6:38:30:20:42:3a:78:48:ce:d1:7c:
e9:bb:9f:7d:7d:e4:29:c4:d4:d8:1e:b4:f7:1a:32:ca:b5:7a:
1f:df:61:d3:22:c1:4f:8f:5d:79:a5:0f:68:38:12:ba:a0:58:
32:c5:13:46:20:2e:33:30:bc:e2:85:96:fa:b0:c3:f4:1f:12:
9e:75:ed:1d:0e:9f:4d:dc:0d:93:1b:2b:62:df:21:86:ab:88:
9a:6b:93:e7:1a:ff:dd:a6:93:1b:fb:80:fc:04:d1:e6:21:de:
b0:71:c6:a8:5e:83:c6:f5:9a:b0:dd:05:af:af:1e:9f:fe:0a:
7e:12:c3:59:bd:5b:b8:8f:f4:4e:51:3b:f6:06:38:cc:76:74:
d4:2a:81:72:f6:72:8f:7f:75:77:68:b0:30:a1:1f:f2:24:8a:
2a:fe:ab:9c:21:cf:8b:95:e9:6e:6c:a5:25:01:34:0d:56:30:
9c:e5:af:b3:a6:37:cb:f6:0b:24:20:ab:16:b2:1c:2f:17:0b:
8d:e3:d7:3b:3c:b4:b0:89:0f:b9:40:47:da:72:90:84:ea:d1:
95:96:2f:bc:67:d9:3e:14:70:2c:0c:5a:4b:00:55:45:cd:6f:
51:61:0c:6f:4f:21:b6:e9:94:78:e6:17:4d:60:1f:3c:53:ee:
70:64:da:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 16:58:42 2024 by rpki-client on console-fra.rpki-client.org