Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/fe9c1a-e27d-4277-b75c-c20767bf58a5/1/IqOnciWjVKlRggyTDQBReT5eRzE.roa
File: IqOnciWjVKlRggyTDQBReT5eRzE.roa (raw, json)
Hash identifier: ZlaMTgpmwmOdBn7m6Qm+9tkwYqslRi+4i/0bBxxhVL8=
Subject key identifier: 22:A3:A7:72:25:A3:54:A9:51:82:0C:93:0D:00:51:79:3E:5E:47:31
Certificate issuer: /CN=daa1708726d32349bfbb2a120f58daa20d1d2cca
Certificate serial: 018CC56E081D304E18D98DC801047B5B32F7
Authority key identifier: DA:A1:70:87:26:D3:23:49:BF:BB:2A:12:0F:58:DA:A2:0D:1D:2C:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2qFwhybTI0m_uyoSD1jaog0dLMo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/fe9c1a-e27d-4277-b75c-c20767bf58a5/1/IqOnciWjVKlRggyTDQBReT5eRzE.roa
Signing time: Mon 01 Jan 2024 14:29:31 +0000
ROA not before: Mon 01 Jan 2024 14:29:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60064
IP address blocks: 185.155.103.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:08:1d:30:4e:18:d9:8d:c8:01:04:7b:5b:32:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daa1708726d32349bfbb2a120f58daa20d1d2cca
Validity
Not Before: Jan 1 14:29:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=22a3a77225a354a951820c930d0051793e5e4731
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:62:76:b3:6d:8d:c8:a2:d6:cc:89:e5:45:0d:
ec:f8:27:74:97:3d:79:9f:f0:82:3a:bd:8d:47:f9:
b2:1b:f8:ff:c4:e3:56:e9:f4:05:f8:47:66:9f:b8:
74:35:40:44:4b:fc:a1:2a:f4:7d:df:0d:90:90:5e:
d1:5a:47:6d:c3:a4:51:fb:7f:fb:b3:71:25:a7:3e:
3b:2c:6a:be:af:0f:5c:50:f9:5a:a6:61:c2:61:f0:
70:d6:36:f8:a4:c9:03:09:d7:d0:1e:9c:a3:dc:5a:
c8:ab:94:22:4d:89:d4:68:6d:58:56:5c:c0:82:da:
f9:96:36:ac:cf:4d:4c:6e:1d:90:19:e3:d3:32:ad:
a6:be:22:a6:ea:8c:49:4f:d3:91:e3:b6:87:e8:f5:
68:d5:56:8b:fa:ab:ae:12:08:00:75:e1:e7:00:7d:
9d:c3:11:cc:ae:40:38:04:36:63:a7:66:24:ca:04:
10:45:4f:85:fd:5a:15:60:4a:74:3c:e3:fd:65:27:
cb:18:bf:1f:3c:50:23:31:8c:59:3c:63:75:36:d0:
09:13:ee:49:87:55:ea:b0:33:79:9a:3e:ea:bb:26:
37:94:2d:f1:35:09:f6:ee:b2:ca:44:98:23:06:63:
c9:54:43:01:9a:06:9a:34:4c:bb:2d:38:01:7e:07:
bc:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:A3:A7:72:25:A3:54:A9:51:82:0C:93:0D:00:51:79:3E:5E:47:31
X509v3 Authority Key Identifier:
keyid:DA:A1:70:87:26:D3:23:49:BF:BB:2A:12:0F:58:DA:A2:0D:1D:2C:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2qFwhybTI0m_uyoSD1jaog0dLMo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/fe9c1a-e27d-4277-b75c-c20767bf58a5/1/IqOnciWjVKlRggyTDQBReT5eRzE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/fe9c1a-e27d-4277-b75c-c20767bf58a5/1/2qFwhybTI0m_uyoSD1jaog0dLMo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.103.0/24
Signature Algorithm: sha256WithRSAEncryption
78:73:8a:3d:ad:68:db:ca:61:a6:a5:1c:8d:28:80:74:ff:02:
c5:98:a0:51:7f:e6:81:7e:f2:61:7b:53:10:db:15:06:29:71:
af:46:c7:38:56:af:54:53:d8:f1:8a:fb:b1:bd:8d:14:97:45:
91:d1:fc:90:66:a7:df:8e:ad:d5:8e:bf:4b:e9:bf:6f:2c:a4:
fb:f0:c1:55:56:b8:e6:a0:7e:41:8a:2a:24:70:a6:56:65:45:
bc:60:7e:46:7c:37:4e:f9:e1:f7:c8:ac:48:89:30:c5:1d:ca:
66:a8:b4:6e:b3:b7:8e:9e:7b:4c:c6:b5:07:7b:e9:26:2b:f6:
3f:9c:c6:cd:29:56:2a:f2:87:d3:8f:1d:b9:f3:00:20:39:98:
b7:79:c9:2c:13:fb:54:79:83:ed:44:1a:24:93:8b:c7:2a:26:
92:5c:32:7a:be:3f:97:57:80:40:14:1d:71:61:e4:ac:d5:c6:
fb:7a:f3:b3:89:e2:36:57:78:08:0a:69:6f:f4:db:91:fd:91:
0d:dc:30:6e:5b:b8:71:73:e7:b2:cf:49:34:8c:fc:d7:10:68:
90:c6:c2:88:c0:4c:56:b1:cc:2c:bf:74:47:c8:f9:92:6f:05:
56:06:8c:4b:61:1c:f6:86:67:6e:4d:a6:2c:1f:64:2c:91:c8:
29:05:c1:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 31 14:51:06 2024 by rpki-client on console-fra.rpki-client.org