Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/9a3898-f8fd-4add-b85d-4c5d3518472c/1/KGlR-39dRBLJLtkJae05FSx7JM0.roa
File: KGlR-39dRBLJLtkJae05FSx7JM0.roa (raw, json)
Hash identifier: zRNvNabCvUtnlnh6+GGhzXOv+uCVAJCKz17DLAP4Lho=
Subject key identifier: 28:69:51:FB:7F:5D:44:12:C9:2E:D9:09:69:ED:39:15:2C:7B:24:CD
Certificate issuer: /CN=3a4a034e77c144b3187c3de5e3bba3e604c7e49b
Certificate serial: 0451167D
Authority key identifier: 3A:4A:03:4E:77:C1:44:B3:18:7C:3D:E5:E3:BB:A3:E6:04:C7:E4:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkoDTnfBRLMYfD3l47uj5gTH5Js.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/9a3898-f8fd-4add-b85d-4c5d3518472c/1/KGlR-39dRBLJLtkJae05FSx7JM0.roa
Signing time: Sat 01 Jan 2022 14:02:10 +0000
ROA not before: Sat 01 Jan 2022 14:02:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210097
IP address blocks: 185.179.244.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72423037 (0x451167d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a4a034e77c144b3187c3de5e3bba3e604c7e49b
Validity
Not Before: Jan 1 14:02:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=286951fb7f5d4412c92ed90969ed39152c7b24cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:31:15:eb:c5:e5:a1:36:df:80:d1:75:07:22:
97:10:5c:b6:be:3d:e1:26:e4:6e:62:d0:e4:1c:47:
1c:17:e7:a6:3a:f1:f8:8d:6c:6f:28:93:6d:27:7f:
1a:44:52:39:12:4c:91:5c:30:ea:e5:42:e1:50:9e:
a8:c7:77:71:1b:1a:40:c5:61:e5:a8:07:ee:8d:be:
ef:c4:08:a7:8c:63:eb:bf:6f:00:32:e4:b5:21:3e:
1e:43:62:de:20:02:83:a5:d6:55:f2:b5:f2:01:09:
ae:5c:d1:6d:e9:66:83:3f:45:00:53:75:d4:b1:4c:
0c:8f:ed:2b:32:b6:ff:1e:03:e2:4b:28:62:6d:34:
53:55:12:e6:4a:5d:ba:73:1b:56:a0:79:4d:cd:08:
bb:37:fd:4b:e1:55:1e:0c:1d:b6:1e:d8:87:e2:44:
de:58:63:b0:ac:f4:c1:95:a9:f1:9a:7e:39:8a:c2:
70:c9:be:e7:57:97:b4:ca:f0:f8:7b:98:29:1f:aa:
0f:09:ce:04:7e:e2:85:15:1e:ba:f1:9d:80:84:8a:
9e:25:dd:cc:5a:0d:91:3d:4e:a1:c9:fe:d3:73:6c:
cd:10:6d:90:23:3c:7a:96:3d:30:42:03:bd:6c:7b:
2a:ba:23:3c:48:4f:8d:0a:8e:08:78:fb:e9:ef:33:
19:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:69:51:FB:7F:5D:44:12:C9:2E:D9:09:69:ED:39:15:2C:7B:24:CD
X509v3 Authority Key Identifier:
keyid:3A:4A:03:4E:77:C1:44:B3:18:7C:3D:E5:E3:BB:A3:E6:04:C7:E4:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkoDTnfBRLMYfD3l47uj5gTH5Js.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/9a3898-f8fd-4add-b85d-4c5d3518472c/1/KGlR-39dRBLJLtkJae05FSx7JM0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/9a3898-f8fd-4add-b85d-4c5d3518472c/1/OkoDTnfBRLMYfD3l47uj5gTH5Js.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.244.0/24
Signature Algorithm: sha256WithRSAEncryption
00:68:e9:56:46:fa:70:e8:da:54:5c:8c:62:fc:7e:f9:54:a2:
ef:47:4e:9e:03:83:a4:bc:48:00:68:68:0d:22:86:c9:8c:56:
3b:85:36:33:a8:0b:bd:ad:ae:02:7c:a4:08:9e:92:a5:a7:4e:
b8:8b:7d:d1:07:33:a7:0d:0d:0b:b4:9c:21:85:ec:98:28:3b:
1d:7c:cf:db:e6:24:4a:46:3d:7c:61:73:68:8d:3a:3b:4c:e5:
05:d7:76:e3:9a:6d:2d:6f:a9:a7:e8:2a:0c:2f:b8:c3:b2:c5:
b0:3b:7f:b7:2b:61:78:b3:3e:ff:56:e7:69:45:bd:47:8d:ad:
94:7e:96:f4:16:d7:47:41:f8:1c:29:59:f0:91:47:56:67:fc:
c8:11:e7:97:3a:0a:e8:d9:f2:11:66:ba:1a:ba:94:ef:3a:26:
0a:62:e4:ab:ea:e6:b1:ca:11:ea:30:d9:05:60:e8:20:90:b5:
cf:f4:c6:46:63:c3:e4:dd:83:85:a4:76:52:12:53:68:6f:61:
52:e2:3a:82:13:c3:5f:3a:1e:a1:ee:56:44:6c:56:27:12:31:
2d:3c:66:45:01:c9:07:88:57:74:d0:db:61:df:6f:2c:b8:cb:
70:35:f9:a5:7a:ba:5a:f7:fd:1a:f5:de:46:29:3d:2b:72:44:
46:2f:fc:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:53 2024 by rpki-client on console-fra.rpki-client.org