Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/41105e-7903-4ce0-ac4f-13662aa2c1b6/1/WRxha1bI1h9AiFKwlGSkRE0IQ1k.roa
File: WRxha1bI1h9AiFKwlGSkRE0IQ1k.roa (raw, json)
Hash identifier: Se8ndjco/IGMnUeAC08emEzL6n0+v2NV1lBnw+a4PmE=
Subject key identifier: 59:1C:61:6B:56:C8:D6:1F:40:88:52:B0:94:64:A4:44:4D:08:43:59
Certificate issuer: /CN=8ffe54080871f216f2b46935bc0cfeaeaa285cde
Certificate serial: 8A18
Authority key identifier: 8F:FE:54:08:08:71:F2:16:F2:B4:69:35:BC:0C:FE:AE:AA:28:5C:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j_5UCAhx8hbytGk1vAz-rqooXN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/41105e-7903-4ce0-ac4f-13662aa2c1b6/1/WRxha1bI1h9AiFKwlGSkRE0IQ1k.roa
Signing time: Thu 19 May 2022 11:14:00 +0000
ROA not before: Thu 19 May 2022 11:14:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 94.154.186.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35352 (0x8a18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ffe54080871f216f2b46935bc0cfeaeaa285cde
Validity
Not Before: May 19 11:14:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=591c616b56c8d61f408852b09464a4444d084359
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e7:02:31:2f:33:ed:d7:c8:87:95:60:4a:1b:
e2:44:44:4b:bb:16:8d:21:5f:c6:f4:3e:98:7a:b4:
bd:08:1d:2f:b4:25:e6:30:b7:82:cd:23:2f:5f:73:
94:b2:47:23:ad:54:2c:97:f6:a6:f8:59:f3:37:44:
1b:7b:8a:01:a3:17:7f:3a:2f:07:8d:87:d6:e6:96:
30:1d:75:8d:05:ed:da:e7:86:ad:49:58:71:9a:fd:
67:7f:d8:9c:71:f3:53:ad:1d:bf:bc:96:43:b4:a7:
43:7b:9e:a9:30:73:2b:39:a0:58:aa:91:a6:94:44:
0c:83:cc:92:e5:fa:fc:70:a4:67:57:7f:a3:0b:6a:
d4:ae:75:03:15:b5:1c:72:66:77:b4:17:b8:4d:fc:
c6:14:ae:e4:7c:88:77:c5:26:3c:a0:a3:7b:cb:f0:
b0:fa:7d:79:b8:be:8c:ef:16:49:95:29:ea:70:f1:
51:b3:8c:88:d2:c7:9b:cd:d5:94:28:77:9f:da:50:
d1:11:4f:b6:8e:b2:02:39:55:e5:e0:b2:19:93:ac:
5f:82:7c:ac:dd:53:fc:73:86:6b:bf:5f:81:a7:5d:
9a:cc:6c:99:8e:f1:df:0d:9b:61:c8:b4:3f:b4:33:
22:99:18:85:31:5f:b5:c6:38:ed:10:07:80:45:16:
84:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:1C:61:6B:56:C8:D6:1F:40:88:52:B0:94:64:A4:44:4D:08:43:59
X509v3 Authority Key Identifier:
keyid:8F:FE:54:08:08:71:F2:16:F2:B4:69:35:BC:0C:FE:AE:AA:28:5C:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j_5UCAhx8hbytGk1vAz-rqooXN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/41105e-7903-4ce0-ac4f-13662aa2c1b6/1/WRxha1bI1h9AiFKwlGSkRE0IQ1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/41105e-7903-4ce0-ac4f-13662aa2c1b6/1/j_5UCAhx8hbytGk1vAz-rqooXN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.186.0/24
Signature Algorithm: sha256WithRSAEncryption
49:6c:b4:c9:48:6e:23:ab:07:22:d5:ea:f1:3e:83:15:e2:ae:
f1:3d:5d:08:b5:d5:96:6b:ea:65:5e:a1:34:37:7f:f3:0b:d0:
c2:a8:df:ee:3a:96:59:e6:3a:93:cc:ec:49:7c:fd:17:e7:f6:
03:67:5c:b0:72:c9:bc:f7:3f:9f:e1:21:7d:f0:ed:cc:ac:3d:
6d:3b:eb:21:40:93:75:69:05:fb:0d:34:27:e5:4d:47:1e:23:
ca:ec:74:68:b9:11:a6:ca:a3:9c:1e:36:04:52:e7:11:a3:16:
57:01:ce:ca:0a:22:8f:14:e1:b5:27:ed:6d:a1:d8:66:33:51:
72:f4:03:d9:84:08:84:bc:39:0d:fa:a1:d5:e5:30:41:7c:f4:
44:f5:e1:1d:88:a9:04:aa:56:a1:30:b5:d2:da:60:66:bd:e4:
7d:58:c0:fa:51:37:bc:85:67:6f:23:96:ca:a1:32:8c:04:7a:
8d:d3:55:e6:a4:72:61:b7:52:41:d1:42:2a:aa:21:7e:52:88:
f7:21:b9:aa:59:47:fa:df:55:3f:07:be:22:11:00:1a:ab:16:
a5:3c:66:51:21:8b:e1:b5:78:9c:c5:ee:ad:95:7e:9a:33:09:
e6:d9:78:33:b8:94:3c:7f:33:42:f9:94:ce:ea:30:ed:0f:a2:
46:8f:93:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:01 2024 by rpki-client on console-ams.rpki-client.org