Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/965bf3-e86c-4078-8f92-0c9198be2669/1/q9reRbPM0BEgoDumAqK5MZsm-PU.roa
File: q9reRbPM0BEgoDumAqK5MZsm-PU.roa (raw, json)
Hash identifier: 0SU9DLPYdOhLJFZNe8Ty6a2o+KB6rdSIcEwd+uBovvU=
Subject key identifier: AB:DA:DE:45:B3:CC:D0:11:20:A0:3B:A6:02:A2:B9:31:9B:26:F8:F5
Certificate issuer: /CN=b05e6a6417457576b9ac5a06944a9fe2ac46277d
Certificate serial: 01856FDDD27CCAF9940251AAA6E0E0973953
Authority key identifier: B0:5E:6A:64:17:45:75:76:B9:AC:5A:06:94:4A:9F:E2:AC:46:27:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sF5qZBdFdXa5rFoGlEqf4qxGJ30.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/965bf3-e86c-4078-8f92-0c9198be2669/1/q9reRbPM0BEgoDumAqK5MZsm-PU.roa
Signing time: Mon 02 Jan 2023 00:24:46 +0000
ROA not before: Mon 02 Jan 2023 00:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58212
IP address blocks: 185.94.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:dd:d2:7c:ca:f9:94:02:51:aa:a6:e0:e0:97:39:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b05e6a6417457576b9ac5a06944a9fe2ac46277d
Validity
Not Before: Jan 2 00:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=abdade45b3ccd01120a03ba602a2b9319b26f8f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e8:76:f9:ed:26:b7:84:06:1a:8f:9e:1d:eb:
94:7a:f8:15:09:cb:ba:b9:a8:58:ce:99:a6:d0:95:
49:de:b5:6b:f4:5b:17:70:ca:d4:ab:31:0b:a3:bf:
ac:17:e7:69:a3:da:f9:1d:55:b4:ec:15:db:42:af:
b8:06:a4:a1:14:5a:9b:bf:79:38:cf:f1:98:56:83:
f3:09:b5:6d:3d:d2:6b:f2:d8:66:a6:86:fd:bc:7d:
7b:ba:08:27:5c:e5:1e:ee:1b:15:46:53:3f:d8:7f:
a8:7e:9d:af:dc:c3:fc:2f:82:64:ab:80:9e:3f:d7:
e5:34:4e:d4:6c:df:5d:e6:07:e3:31:23:5e:ea:93:
a5:c1:9e:39:5f:77:cf:f5:62:79:37:0c:30:df:81:
d3:2d:8d:ee:22:3a:da:e9:e4:76:e5:2b:bf:ed:fa:
c3:07:57:e2:aa:72:22:b6:21:8c:fa:89:e2:ea:dd:
88:c2:fd:c0:de:d8:19:d3:8a:c6:ed:82:cb:aa:91:
b8:46:48:8e:48:6a:85:7e:ee:11:86:b1:f9:41:d7:
50:a1:6b:9b:e1:c5:e8:8e:0a:85:67:68:8f:9b:4a:
db:52:fc:97:60:92:3a:57:42:05:08:7d:e7:a2:d7:
3d:69:bd:e9:eb:56:3c:3a:05:89:9b:b3:92:cb:28:
64:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:DA:DE:45:B3:CC:D0:11:20:A0:3B:A6:02:A2:B9:31:9B:26:F8:F5
X509v3 Authority Key Identifier:
keyid:B0:5E:6A:64:17:45:75:76:B9:AC:5A:06:94:4A:9F:E2:AC:46:27:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sF5qZBdFdXa5rFoGlEqf4qxGJ30.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/965bf3-e86c-4078-8f92-0c9198be2669/1/q9reRbPM0BEgoDumAqK5MZsm-PU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/965bf3-e86c-4078-8f92-0c9198be2669/1/sF5qZBdFdXa5rFoGlEqf4qxGJ30.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.94.29.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:be:ed:e5:40:50:da:2b:9d:34:12:c1:fc:96:16:d7:cc:ad:
90:a8:f1:a1:a6:ab:df:55:01:c5:ca:80:ac:a2:19:87:0e:67:
61:b7:9f:09:32:f9:a7:5d:2d:33:eb:37:24:3b:01:f7:0c:3e:
43:20:a1:0c:5e:8e:52:90:12:bd:64:c8:0b:21:c0:f5:f1:30:
cf:93:56:ae:cf:ee:25:99:45:cf:63:06:d8:3c:7a:7d:18:61:
0d:8d:44:f5:2b:e8:5e:4b:98:4a:65:22:0e:a2:b0:e2:8d:f6:
b6:75:55:8e:91:f3:84:d8:e1:53:99:bc:f8:85:58:14:2e:32:
a2:fb:e1:ea:6b:0b:2e:f0:a8:7f:f8:8c:95:1b:2f:e4:b1:7f:
22:e4:c5:f5:ac:d8:95:ee:c5:84:1f:ff:11:50:7d:66:5d:5f:
82:b7:1f:da:0a:88:5a:69:e1:d1:2a:88:53:c7:e7:69:26:fa:
d8:22:3d:ba:dc:95:94:55:2e:27:f5:40:ce:55:fd:36:7b:ae:
43:9c:b9:20:55:e5:ce:87:18:61:16:9e:6e:df:96:06:68:38:
e4:28:3b:d7:28:f0:a7:66:78:ea:6c:b0:78:e5:3a:9d:07:ff:
d8:03:6a:0b:fd:1f:5f:a9:a4:2e:0a:7b:5d:22:ff:2b:fe:2e:
a8:50:80:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:48 2023 by rpki-client on console-ams.rpki-client.org