Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/4RLHRovM3B6SoMx1-2ybVg5Wu_4.roa
File: 4RLHRovM3B6SoMx1-2ybVg5Wu_4.roa (raw, json)
Hash identifier: Ty7t6HG7xiMondUV4t3iyoi3ahyfFuuv9ZfGcVNs1Fs=
Subject key identifier: E1:12:C7:46:8B:CC:DC:1E:92:A0:CC:75:FB:6C:9B:56:0E:56:BB:FE
Certificate issuer: /CN=5324defbaade93e998e13a942029dd593b8b2ea3
Certificate serial: 018B89E87A3A74800588CB530F860F79A1BA
Authority key identifier: 53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/4RLHRovM3B6SoMx1-2ybVg5Wu_4.roa
Signing time: Wed 01 Nov 2023 08:03:16 +0000
ROA not before: Wed 01 Nov 2023 08:03:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44547
IP address blocks: 185.118.141.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:89:e8:7a:3a:74:80:05:88:cb:53:0f:86:0f:79:a1:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5324defbaade93e998e13a942029dd593b8b2ea3
Validity
Not Before: Nov 1 08:03:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e112c7468bccdc1e92a0cc75fb6c9b560e56bbfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:73:6c:4b:ea:4a:7b:c0:c6:f8:ad:60:e0:e3:
16:6e:36:17:aa:65:3d:99:cf:de:c0:0d:b3:b4:4c:
d9:cb:72:c0:f5:9f:42:14:d6:c1:98:44:71:78:f7:
12:be:05:f5:29:3f:4a:70:58:1a:04:4e:92:02:7c:
6a:eb:89:d2:c8:19:f8:fe:b7:9d:6a:ec:cf:19:7e:
1e:e5:0c:de:a3:a5:05:cd:e0:af:b9:f2:6a:aa:8b:
6d:ee:77:43:92:c0:68:f8:a9:f3:22:2b:2f:bb:e2:
b1:88:ea:9b:d8:97:e0:b5:02:dd:ac:bb:b8:ee:48:
84:b1:26:ef:02:d7:b4:25:b5:a9:ce:2b:7e:3a:3b:
84:4c:0a:ed:99:77:dc:9f:f8:56:66:76:a0:70:e1:
28:19:87:b3:9c:fd:eb:a8:c1:e0:a0:b4:7c:27:32:
17:a7:60:cc:c1:55:a1:e6:4a:d4:60:bb:42:f9:a3:
48:95:9a:d8:68:7a:b3:94:20:a5:07:97:09:7b:10:
de:11:5d:d2:d1:05:5f:cf:d3:27:2c:a8:62:34:17:
0a:b2:44:19:38:18:f4:31:b9:eb:05:f9:18:28:54:
ce:7a:5b:28:30:7c:67:2b:79:2e:2d:d9:1a:6c:94:
8a:f1:77:6a:ec:d7:86:3a:fa:0a:1f:f9:cc:8b:33:
92:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:12:C7:46:8B:CC:DC:1E:92:A0:CC:75:FB:6C:9B:56:0E:56:BB:FE
X509v3 Authority Key Identifier:
keyid:53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/4RLHRovM3B6SoMx1-2ybVg5Wu_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/UyTe-6rek-mY4TqUICndWTuLLqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.118.141.0/24
Signature Algorithm: sha256WithRSAEncryption
75:0d:48:a6:c8:62:dc:f3:70:39:25:8b:0b:2f:1e:49:df:5e:
c4:cd:a0:68:44:c5:51:a2:21:69:0f:48:1f:0e:d4:cb:33:75:
ca:c6:ec:bc:b2:ec:70:64:f7:62:88:d9:d7:d7:4d:4d:1e:1a:
79:a0:a1:0a:c7:ea:1b:63:8c:ab:44:f7:c1:fe:92:9a:57:92:
54:d1:cd:a8:ae:b8:09:c8:d4:e6:6d:a5:d6:88:b0:26:ea:8f:
69:77:d5:66:68:d2:35:2e:4e:ce:e0:cd:3d:ce:28:de:41:a4:
2f:0a:98:06:a3:b4:e6:f9:7c:95:2a:21:ce:55:c3:4c:c8:0a:
b0:c7:00:8c:9b:00:a3:53:ef:5c:79:f2:99:2c:88:5b:04:69:
d8:d2:e9:e7:0b:3f:e8:f9:f0:bd:91:db:7a:3b:1b:82:46:d3:
fd:e0:90:93:78:d4:b5:a4:42:19:69:48:7b:a8:a7:52:1e:89:
3d:4c:74:f7:aa:1a:f2:9f:77:ab:7c:87:a2:2e:0c:f8:98:d7:
a3:0a:7b:d1:42:ba:50:52:21:5a:56:6f:6e:3d:18:19:06:51:
6b:3f:1e:d8:61:da:16:b5:7a:d5:3a:30:4a:de:da:54:4a:24:
b6:1c:ee:bf:13:77:13:02:b9:07:11:11:24:02:c5:eb:38:04:
b0:e4:2a:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:26:33 2025 by rpki-client