Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/6fae8a-5581-43fb-85ab-287ef4d3bcdb/1/_dq3m3YDhmbyH7J1QRTkszWVG-k.roa
File: _dq3m3YDhmbyH7J1QRTkszWVG-k.roa (raw, json)
Hash identifier: O3nlE3RpkbR971f3ScDGyqjVWEHLqbabTQiOlg37KxQ=
Subject key identifier: FD:DA:B7:9B:76:03:86:66:F2:1F:B2:75:41:14:E4:B3:35:95:1B:E9
Certificate issuer: /CN=3456ed8681cb61f499b40685d07d130ae8503aa6
Certificate serial: 01933F8B8B7FC9EB60D1E5BCE4FA2552447D
Authority key identifier: 34:56:ED:86:81:CB:61:F4:99:B4:06:85:D0:7D:13:0A:E8:50:3A:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NFbthoHLYfSZtAaF0H0TCuhQOqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/6fae8a-5581-43fb-85ab-287ef4d3bcdb/1/_dq3m3YDhmbyH7J1QRTkszWVG-k.roa
Signing time: Mon 18 Nov 2024 13:52:09 +0000
ROA not before: Mon 18 Nov 2024 13:52:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208152
IP address blocks: 185.61.248.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:3f:8b:8b:7f:c9:eb:60:d1:e5:bc:e4:fa:25:52:44:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3456ed8681cb61f499b40685d07d130ae8503aa6
Validity
Not Before: Nov 18 13:52:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fddab79b76038666f21fb2754114e4b335951be9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b0:42:80:bf:58:5f:32:be:6c:58:f6:01:65:
d2:25:2d:1e:de:99:f2:3f:2d:bd:33:5b:48:e0:73:
9d:1e:ec:e3:8f:aa:25:bf:05:6a:3f:34:d5:8b:2a:
d5:af:77:c7:64:d5:52:f8:47:19:76:1b:2b:8d:77:
f0:50:f8:a0:30:f1:6e:5f:5c:2d:c7:21:28:67:b7:
47:d5:bc:a4:83:df:50:f3:cf:3b:7e:08:96:12:f7:
94:3c:a7:f1:4c:cb:a3:69:a8:c8:96:9f:33:19:68:
21:fc:8f:e0:18:9e:cd:9d:54:28:76:5e:bf:bb:ae:
05:71:a7:d3:41:98:6e:80:b6:b6:c6:cb:04:59:a7:
fc:3f:09:a8:cb:d4:19:9d:10:1e:27:24:1b:95:36:
82:58:fa:80:09:08:ed:3d:d4:f8:6d:38:a2:58:78:
66:e5:79:06:6f:5a:af:06:17:b1:1d:62:97:df:a7:
16:0e:fe:db:54:2e:2b:d7:40:f6:32:df:a7:ef:b9:
43:c6:6d:e4:a8:4a:83:34:d2:8a:c9:01:10:1c:7b:
b5:7b:19:ab:f5:39:01:54:44:43:ee:71:24:27:99:
c1:44:ef:da:10:7d:9c:1d:08:76:d7:09:a2:c8:8a:
80:b9:3d:6b:30:ea:be:f1:31:f6:4e:23:44:f8:9c:
4a:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:DA:B7:9B:76:03:86:66:F2:1F:B2:75:41:14:E4:B3:35:95:1B:E9
X509v3 Authority Key Identifier:
keyid:34:56:ED:86:81:CB:61:F4:99:B4:06:85:D0:7D:13:0A:E8:50:3A:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NFbthoHLYfSZtAaF0H0TCuhQOqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/6fae8a-5581-43fb-85ab-287ef4d3bcdb/1/_dq3m3YDhmbyH7J1QRTkszWVG-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/6fae8a-5581-43fb-85ab-287ef4d3bcdb/1/NFbthoHLYfSZtAaF0H0TCuhQOqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.61.248.0/22
Signature Algorithm: sha256WithRSAEncryption
d4:20:28:d0:d5:dd:a2:a3:8b:64:3c:d9:9d:d3:49:bb:7a:b5:
36:64:b0:84:5c:e6:44:c8:e8:90:af:78:ab:e6:c2:bc:ff:98:
74:a3:c1:fa:8d:44:d9:a2:03:13:13:c3:2a:88:55:5a:de:ea:
04:ed:5f:13:3a:c9:82:c0:af:e3:be:64:6b:71:34:ad:4f:e7:
33:16:e3:d5:97:02:c8:7a:86:41:f2:e4:1a:1f:0b:de:f3:5b:
09:87:7f:e2:36:c4:62:66:da:a0:9c:55:6a:25:c2:46:e7:cc:
dd:74:c9:52:aa:dd:84:4c:73:73:86:05:0f:19:bb:24:89:a6:
89:f9:59:af:48:78:be:9d:89:f4:a3:0f:27:4b:18:4c:0d:e1:
55:b2:b1:38:df:f4:86:36:96:f0:90:55:30:4b:4a:85:82:e8:
c0:58:d4:38:32:79:c3:d6:1b:a3:a7:c2:d3:f6:b2:38:14:f5:
1f:3a:b2:65:18:43:74:ae:bb:35:2c:0a:97:24:23:04:0e:a5:
ff:ac:35:97:f4:99:84:13:69:b0:67:e3:71:93:ee:54:9f:65:
e5:22:75:e8:a8:b4:40:2d:7c:61:d3:4d:53:fa:a4:59:7e:bb:
b1:d9:fe:ad:9e:a6:49:9c:aa:b2:9e:dd:f0:14:6c:f0:23:0e:
b5:e2:46:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 19 16:31:00 2024 by rpki-client on console-ams.rpki-client.org