Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/ea6a7d-c99e-47e7-9b8c-5f005e3f12ed/1/ghq002pnw9bzRxlaFRvvVeYvtG8.roa
File: ghq002pnw9bzRxlaFRvvVeYvtG8.roa (raw, json)
Hash identifier: 4ysJ65r+odnNlWRVwUBOV8IlfrhFZb7Ot+wYzFOtpik=
Subject key identifier: 82:1A:B4:D3:6A:67:C3:D6:F3:47:19:5A:15:1B:EF:55:E6:2F:B4:6F
Certificate issuer: /CN=9dd989234f75ae04de30653ae14139f9dc609ac1
Certificate serial: 018571279C638D9C303C6BF0439C767A2652
Authority key identifier: 9D:D9:89:23:4F:75:AE:04:DE:30:65:3A:E1:41:39:F9:DC:60:9A:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ndmJI091rgTeMGU64UE5-dxgmsE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/ea6a7d-c99e-47e7-9b8c-5f005e3f12ed/1/ghq002pnw9bzRxlaFRvvVeYvtG8.roa
Signing time: Mon 02 Jan 2023 06:24:59 +0000
ROA not before: Mon 02 Jan 2023 06:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209841
IP address blocks: 185.201.39.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:27:9c:63:8d:9c:30:3c:6b:f0:43:9c:76:7a:26:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dd989234f75ae04de30653ae14139f9dc609ac1
Validity
Not Before: Jan 2 06:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=821ab4d36a67c3d6f347195a151bef55e62fb46f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:17:cf:e7:71:6a:b2:9d:5f:bb:46:19:39:df:
4c:78:b4:6f:e3:1b:56:79:b5:f4:37:06:2b:36:3a:
38:4a:87:4d:49:87:1a:18:9a:fe:48:89:4b:77:17:
75:52:e4:7f:bb:ec:4d:ba:3c:44:36:74:1f:25:60:
e4:7c:69:76:17:3e:93:a2:2e:a6:74:ea:e0:28:89:
31:26:df:63:7d:62:71:04:4a:65:56:ec:b3:b4:8c:
4d:d6:50:62:3c:b0:04:2b:a5:0a:e9:41:59:2b:82:
35:9d:e1:52:a4:a4:4c:c7:a7:58:2a:65:1c:a7:31:
fc:32:f2:9c:b9:3d:29:c1:4c:b2:39:da:74:e6:ec:
63:81:61:52:6a:1f:f3:58:ac:66:98:3a:d1:4b:b7:
b8:14:a9:a7:6b:bd:34:cf:ed:4c:27:3d:fb:84:37:
1c:13:73:a5:68:b6:eb:bb:fd:2e:83:8a:75:f6:85:
9f:62:9e:38:ce:42:a1:78:5f:41:cc:fb:4a:f8:b6:
6b:e0:53:13:2f:ad:da:62:0b:54:b1:62:fb:12:36:
ed:e1:d4:90:24:e3:17:13:79:39:e6:12:5e:b2:55:
46:aa:fc:40:6f:da:ab:15:21:52:2c:7e:3d:bd:6b:
3c:a5:68:97:a7:b2:25:52:73:f0:bf:26:54:0e:d0:
78:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:1A:B4:D3:6A:67:C3:D6:F3:47:19:5A:15:1B:EF:55:E6:2F:B4:6F
X509v3 Authority Key Identifier:
keyid:9D:D9:89:23:4F:75:AE:04:DE:30:65:3A:E1:41:39:F9:DC:60:9A:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ndmJI091rgTeMGU64UE5-dxgmsE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/ea6a7d-c99e-47e7-9b8c-5f005e3f12ed/1/ghq002pnw9bzRxlaFRvvVeYvtG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/ea6a7d-c99e-47e7-9b8c-5f005e3f12ed/1/ndmJI091rgTeMGU64UE5-dxgmsE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.39.0/24
Signature Algorithm: sha256WithRSAEncryption
70:d3:62:a2:7c:4b:e2:b3:81:5f:b4:cc:6a:6e:b5:12:df:fc:
23:6c:c6:ea:1e:97:25:33:da:3e:38:f1:6f:cc:3d:eb:eb:70:
f2:87:7f:3a:15:9b:06:73:18:55:ec:cb:a7:55:aa:1c:50:ef:
b5:be:3a:09:bd:6c:52:2d:f0:89:ed:21:ac:2c:a7:87:2e:f9:
0c:6f:b1:fc:45:66:77:68:48:88:0d:cc:dd:e1:f6:d0:f9:1d:
0f:76:2f:a0:c7:c5:b8:3c:5c:15:26:16:5f:42:92:3d:e4:8e:
dc:0b:09:c3:14:6f:7e:54:ac:ce:f9:e3:c0:99:48:cb:83:1b:
cb:81:00:57:c7:49:2b:c5:33:f0:2d:56:4b:d6:48:25:52:69:
21:68:58:2d:4b:28:5f:5a:3a:78:ed:9c:e1:22:0d:99:b8:4c:
1f:3d:d0:75:fa:53:a7:76:54:7e:c1:02:dc:39:f4:e1:dc:2c:
a6:91:a3:76:64:c5:3b:bf:e5:19:37:12:5d:26:f8:4c:3d:16:
18:18:64:aa:54:49:73:b0:1f:9c:ee:fb:5d:fa:c4:12:f7:77:
bb:fa:2d:77:39:c5:88:3f:fd:b0:99:3a:78:ea:9a:66:3b:23:
00:dd:71:11:47:af:ec:ab:43:7b:e2:41:9a:58:da:60:b9:4c:
51:a5:02:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:43 2024 by rpki-client on console-fra.rpki-client.org