Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/2077ba-1dc6-4117-bcb7-ab4cdf3145c9/1/aQEQJokLBUMH_KC2vpqXToh9NAE.roa
File: aQEQJokLBUMH_KC2vpqXToh9NAE.roa (raw, json)
Hash identifier: 8VhJNzGYvWFq9C9ldB/8UfwhIg5bQeWO/SGvoGlMqI0=
Subject key identifier: 69:01:10:26:89:0B:05:43:07:FC:A0:B6:BE:9A:97:4E:88:7D:34:01
Certificate issuer: /CN=b70594f265f0c3eb00e7cfc28fec8590c8a632a5
Certificate serial: 018A6F75A00182BA8ABA5AFB5292E7335F73
Authority key identifier: B7:05:94:F2:65:F0:C3:EB:00:E7:CF:C2:8F:EC:85:90:C8:A6:32:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/twWU8mXww-sA58_Cj-yFkMimMqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/2077ba-1dc6-4117-bcb7-ab4cdf3145c9/1/aQEQJokLBUMH_KC2vpqXToh9NAE.roa
Signing time: Thu 07 Sep 2023 11:44:54 +0000
ROA not before: Thu 07 Sep 2023 11:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47516
IP address blocks: 185.136.206.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6f:75:a0:01:82:ba:8a:ba:5a:fb:52:92:e7:33:5f:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b70594f265f0c3eb00e7cfc28fec8590c8a632a5
Validity
Not Before: Sep 7 11:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=69011026890b054307fca0b6be9a974e887d3401
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:65:b6:ec:f5:85:3a:8b:c1:48:de:fe:46:a4:
ed:55:e0:76:6c:85:06:e9:e2:97:f3:e4:72:e7:bf:
82:d6:40:f9:83:7f:55:3e:9f:02:aa:a8:be:de:47:
b7:4b:77:2a:1c:29:3e:4b:8f:da:c9:6a:0d:0c:bd:
d9:17:5b:79:49:6f:4a:13:be:49:eb:ec:dd:05:c3:
38:cc:e1:97:a1:00:1f:3b:bc:1e:f3:21:90:f0:f8:
aa:9d:42:b8:6a:5e:0e:01:9e:12:d2:8d:5f:e7:6a:
23:48:02:9f:ea:e8:62:d8:6a:f9:12:7b:cc:35:17:
bd:bb:e2:3b:6a:0c:89:42:ec:7f:59:00:75:f9:82:
c0:93:de:e8:4e:0b:07:14:52:ba:e6:31:d8:20:7b:
9a:ee:0b:b6:62:31:47:76:ef:09:ef:f7:c7:83:77:
00:0f:06:71:b9:e6:fb:68:d7:19:21:af:3a:cd:b1:
45:a9:b1:71:2b:5b:33:cc:1a:a4:83:1a:f8:a7:58:
fc:3b:85:c4:be:51:c6:5b:59:42:aa:e1:7c:88:ba:
f3:69:c9:04:81:9b:fe:a3:7e:f6:70:77:ed:48:9c:
bd:0b:ab:2c:df:7b:ef:36:87:14:35:b7:e8:64:72:
92:9a:fc:dd:e9:46:bb:87:01:b8:7c:1a:26:ed:97:
87:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:01:10:26:89:0B:05:43:07:FC:A0:B6:BE:9A:97:4E:88:7D:34:01
X509v3 Authority Key Identifier:
keyid:B7:05:94:F2:65:F0:C3:EB:00:E7:CF:C2:8F:EC:85:90:C8:A6:32:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/twWU8mXww-sA58_Cj-yFkMimMqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/2077ba-1dc6-4117-bcb7-ab4cdf3145c9/1/aQEQJokLBUMH_KC2vpqXToh9NAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/2077ba-1dc6-4117-bcb7-ab4cdf3145c9/1/twWU8mXww-sA58_Cj-yFkMimMqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.136.206.0/24
Signature Algorithm: sha256WithRSAEncryption
34:a2:e3:f6:ab:68:1b:0d:3b:71:c0:70:8b:4f:72:d3:6a:75:
19:df:7c:71:64:91:27:86:6f:29:63:3f:e9:cb:09:1f:14:67:
45:73:a6:cb:c6:9d:bf:86:7e:e7:16:e8:15:9f:78:07:29:7c:
be:c9:f2:d0:18:64:12:30:6e:25:ac:a1:80:8a:1f:03:1f:0b:
2d:65:54:2d:6a:53:c6:63:a2:53:24:2e:1a:ad:c9:b4:86:72:
29:22:2d:99:d2:de:3c:78:40:cf:00:dc:f2:b5:41:67:f3:f8:
66:99:c0:dc:78:06:72:95:3a:23:b5:67:46:30:4c:cc:57:fc:
26:59:72:b6:fb:24:b7:de:a1:0e:b8:6e:a1:bd:b8:9e:2d:9e:
a1:29:ab:cc:7d:14:58:04:6a:a8:7a:1f:ee:b8:97:7a:e5:90:
72:3b:c5:e8:ce:4f:43:f3:6c:09:bb:23:70:c4:b5:e3:d1:a6:
1f:6c:3a:c7:0f:40:44:52:77:62:ab:cb:5d:67:69:26:1f:3a:
5d:55:b5:07:d3:0b:5b:8d:a9:92:f4:53:9f:b7:57:43:ad:55:
cd:67:82:b1:6b:8f:91:c4:c7:d6:82:d7:ad:78:42:98:bd:f4:
a1:d2:b5:48:d9:37:07:65:70:dd:1c:30:3e:ab:67:d5:67:f5:
9a:8b:e8:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:27 2024 by rpki-client on console-fra.rpki-client.org