Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/2077ba-1dc6-4117-bcb7-ab4cdf3145c9/1/tcp3cIY4oRyU95qMt9fg0wNT1WQ.roa
File: tcp3cIY4oRyU95qMt9fg0wNT1WQ.roa (raw, json)
Hash identifier: UH0Q5kwNulh7YYEiODGRNAU5dOOlqAvbLX1PUwcCdRU=
Subject key identifier: B5:CA:77:70:86:38:A1:1C:94:F7:9A:8C:B7:D7:E0:D3:03:53:D5:64
Certificate issuer: /CN=b70594f265f0c3eb00e7cfc28fec8590c8a632a5
Certificate serial: 09E33DEC
Authority key identifier: B7:05:94:F2:65:F0:C3:EB:00:E7:CF:C2:8F:EC:85:90:C8:A6:32:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/twWU8mXww-sA58_Cj-yFkMimMqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/2077ba-1dc6-4117-bcb7-ab4cdf3145c9/1/tcp3cIY4oRyU95qMt9fg0wNT1WQ.roa
Signing time: Fri 18 Feb 2022 08:38:52 +0000
ROA not before: Fri 18 Feb 2022 08:38:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211327
IP address blocks: 185.136.206.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 165887468 (0x9e33dec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b70594f265f0c3eb00e7cfc28fec8590c8a632a5
Validity
Not Before: Feb 18 08:38:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5ca77708638a11c94f79a8cb7d7e0d30353d564
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:54:42:ac:99:85:22:03:dd:f2:d7:62:83:e4:
a0:34:41:1b:96:2b:fd:42:c3:ee:73:e3:1a:1b:69:
52:12:b5:af:f8:ae:c3:a6:0e:d0:fe:36:70:6b:70:
5a:ed:a6:34:9c:b3:b6:12:81:e9:41:0e:b1:21:e4:
b0:60:54:c1:6c:0b:4a:7b:07:31:18:9e:50:f2:91:
53:59:cb:f8:78:bd:56:d9:7d:1d:b1:bc:e2:ec:66:
0f:4c:15:fa:00:f0:6c:9d:8c:ba:39:85:63:ca:d7:
cb:62:9a:9f:c3:c3:45:9d:68:69:b7:83:cd:ae:c0:
fb:df:5f:be:66:a7:7f:ea:f8:b8:43:01:18:97:95:
1a:5c:58:a8:43:c3:55:cb:99:e4:d2:3f:bb:cf:d3:
d0:99:66:de:54:23:78:56:d8:5e:8f:2a:15:f7:9a:
2e:73:b1:6b:81:3d:8a:77:95:cb:2e:0b:76:91:bc:
9a:b7:f4:a1:51:2e:a2:df:27:19:e0:88:83:ed:44:
75:c3:d3:7e:a3:a6:51:bf:7d:64:25:7d:67:c8:1a:
96:b9:74:04:18:1f:10:70:64:0b:48:3c:b5:40:ca:
49:b9:a6:b2:ad:4a:41:22:0b:71:11:65:a7:b6:b7:
cc:f8:11:5c:9d:b6:31:4c:0b:ae:54:5a:10:c4:38:
de:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:CA:77:70:86:38:A1:1C:94:F7:9A:8C:B7:D7:E0:D3:03:53:D5:64
X509v3 Authority Key Identifier:
keyid:B7:05:94:F2:65:F0:C3:EB:00:E7:CF:C2:8F:EC:85:90:C8:A6:32:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/twWU8mXww-sA58_Cj-yFkMimMqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/2077ba-1dc6-4117-bcb7-ab4cdf3145c9/1/tcp3cIY4oRyU95qMt9fg0wNT1WQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/2077ba-1dc6-4117-bcb7-ab4cdf3145c9/1/twWU8mXww-sA58_Cj-yFkMimMqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.136.206.0/24
Signature Algorithm: sha256WithRSAEncryption
58:70:cd:0c:25:b6:69:c2:c4:f0:11:29:78:db:20:ef:0d:6b:
95:bd:44:57:d8:aa:68:e8:8b:34:77:63:cd:c9:b5:de:d1:c9:
11:a9:36:a9:a4:84:a8:b1:9e:1e:09:dc:a3:e9:75:f4:07:17:
c3:1e:e2:ff:a1:87:7d:3b:2a:b2:50:60:a1:ba:29:0d:78:d5:
ae:90:21:b8:e5:01:01:ac:a7:24:7a:ae:38:fa:55:55:15:d0:
22:00:56:a1:23:96:33:3b:fa:2a:d6:fa:35:9a:a2:53:75:48:
18:01:94:12:34:b1:e9:97:60:7d:14:7c:3a:80:5f:d9:d0:ff:
b8:23:6e:00:3a:37:b7:cc:58:9c:ad:05:b3:a9:48:2a:de:23:
b2:f6:d9:a9:6c:b3:da:93:00:39:25:13:34:fd:e2:a2:12:40:
74:81:78:90:cc:2d:5f:09:c8:14:5d:d1:e9:04:ed:ea:23:cf:
64:cf:ec:6f:20:fa:60:e7:d2:c7:de:26:6d:5b:2b:2d:a8:be:
53:f8:c3:5d:e5:47:1a:cd:fe:9c:54:47:c2:26:c8:5e:af:12:
46:bd:3b:4d:b6:b5:ce:b8:a3:d2:c0:1f:96:7d:12:14:75:5c:
f8:dc:a0:e6:06:42:43:5d:d6:f6:45:b0:9d:79:c5:c1:fa:53:
e8:3d:7d:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:27 2024 by rpki-client on console-fra.rpki-client.org