Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/f602f2-d4aa-4cbb-99f3-22a54d1fe069/1/Tjx1f0G85qqdoQFdgBYngBwveKM.roa
File: Tjx1f0G85qqdoQFdgBYngBwveKM.roa (raw, json)
Hash identifier: Cr+0sea0yDFQVWdlSg9oECeood0k+/iCNc3xBIgbEYo=
Subject key identifier: 4E:3C:75:7F:41:BC:E6:AA:9D:A1:01:5D:80:16:27:80:1C:2F:78:A3
Certificate issuer: /CN=dbcac48fdc9543c40704165ae85949431ec3b6e3
Certificate serial: 018611E164AFC5D74ECD693B53193424F999
Authority key identifier: DB:CA:C4:8F:DC:95:43:C4:07:04:16:5A:E8:59:49:43:1E:C3:B6:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28rEj9yVQ8QHBBZa6FlJQx7DtuM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/f602f2-d4aa-4cbb-99f3-22a54d1fe069/1/Tjx1f0G85qqdoQFdgBYngBwveKM.roa
Signing time: Thu 02 Feb 2023 11:27:09 +0000
ROA not before: Thu 02 Feb 2023 11:27:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39047
IP address blocks: 185.140.134.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:11:e1:64:af:c5:d7:4e:cd:69:3b:53:19:34:24:f9:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbcac48fdc9543c40704165ae85949431ec3b6e3
Validity
Not Before: Feb 2 11:27:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e3c757f41bce6aa9da1015d801627801c2f78a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a5:12:83:f3:17:7d:b6:8f:23:cc:6e:fd:62:
b1:2e:36:ad:2c:22:ae:d5:66:db:ec:f5:b6:e8:4a:
4b:67:46:6e:79:55:d2:af:72:ab:ce:a9:71:e0:fe:
db:88:50:36:dd:fe:e0:9d:d1:5e:c0:3a:6c:ca:29:
01:e8:bb:00:3a:e0:ec:c7:0d:34:17:9c:b0:39:b4:
68:25:02:07:e8:a6:ac:d9:ed:61:ed:61:1c:60:5f:
c7:92:7c:f5:00:b6:f4:a3:38:2d:eb:7d:83:e3:52:
92:7e:16:3b:f3:b8:64:c0:9a:45:e2:6b:d4:5a:91:
c1:d1:b2:b3:83:97:19:e6:a3:fa:71:ab:fa:3b:a1:
cc:4f:e6:8d:e5:5b:e0:3a:79:bf:34:37:a5:7f:32:
91:05:a2:a3:c7:52:cd:b9:e2:8d:a1:65:40:91:ad:
20:ea:cf:fe:d0:87:cc:47:dd:d2:63:66:90:6e:a3:
fd:f1:fd:1b:d5:54:80:f5:97:ce:8f:52:cf:7e:df:
7d:d9:41:08:28:94:fa:d6:3b:a9:df:a4:d3:99:a9:
4d:62:f7:3c:d7:11:2f:c5:8f:6b:d7:52:2c:5e:89:
c9:20:3e:ec:04:21:6e:a5:aa:30:84:04:a4:62:31:
12:7c:96:7f:e7:7d:20:7c:83:f3:91:e0:52:9b:df:
81:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:3C:75:7F:41:BC:E6:AA:9D:A1:01:5D:80:16:27:80:1C:2F:78:A3
X509v3 Authority Key Identifier:
keyid:DB:CA:C4:8F:DC:95:43:C4:07:04:16:5A:E8:59:49:43:1E:C3:B6:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28rEj9yVQ8QHBBZa6FlJQx7DtuM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/f602f2-d4aa-4cbb-99f3-22a54d1fe069/1/Tjx1f0G85qqdoQFdgBYngBwveKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/f602f2-d4aa-4cbb-99f3-22a54d1fe069/1/28rEj9yVQ8QHBBZa6FlJQx7DtuM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.140.134.0/23
Signature Algorithm: sha256WithRSAEncryption
04:8c:64:3b:11:7f:2f:25:aa:8b:28:b8:53:e4:b9:90:b0:bf:
3b:63:ea:16:05:59:e8:7d:39:da:0d:16:f9:5d:68:77:f3:2a:
5b:b6:3f:c9:4c:8a:12:c9:3d:7a:6d:40:76:b7:5c:6c:07:66:
04:38:18:25:82:bf:da:3c:72:f5:1a:fc:83:39:81:6e:4f:c9:
03:62:96:f1:e9:2a:0b:b7:c9:65:07:49:7f:17:b5:72:99:ba:
18:a9:d2:0e:91:4f:1e:b3:ca:8d:b1:8e:d5:a9:20:16:06:e9:
b8:3f:42:cf:d6:6d:40:44:6e:b6:f5:bf:9a:03:96:6a:ec:b9:
4b:5e:19:f3:2d:a3:d1:58:92:78:97:36:28:07:47:0a:70:e3:
a1:48:4d:87:cc:1d:8f:67:9b:8d:1b:7e:ee:3d:d1:96:8b:f3:
26:37:1a:76:01:d1:87:14:8b:c0:cb:bb:1b:1a:b9:72:6a:71:
f0:11:c9:2d:50:5e:2b:81:5d:80:99:bf:0c:87:ae:50:d0:8d:
b8:b0:a5:bc:7d:f9:9c:0a:ee:5d:16:d1:57:76:ae:0f:4f:b3:
68:3b:8d:e2:24:79:0b:72:50:92:bf:d9:51:0c:d5:09:13:cf:
fd:39:c9:cc:b5:50:11:f6:d2:bc:ee:98:a9:18:c1:c1:59:f6:
1a:5d:f2:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:19:32 2025 by rpki-client