Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/FWNkd_1flAUg21g8lwCUxgh2e3w.roa
File: FWNkd_1flAUg21g8lwCUxgh2e3w.roa (raw, json)
Hash identifier: bEE/qBudiVGx1BEWsNsFLOJ8znnQlk/jdhFpDWyfGak=
Subject key identifier: 15:63:64:77:FD:5F:94:05:20:DB:58:3C:97:00:94:C6:08:76:7B:7C
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 018CC87071472EEFC3FAC49DFABADDF05ED6
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/FWNkd_1flAUg21g8lwCUxgh2e3w.roa
Signing time: Tue 02 Jan 2024 04:31:01 +0000
ROA not before: Tue 02 Jan 2024 04:31:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8100
IP address blocks: 185.244.107.0/24 maxlen: 24
212.46.37.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:70:71:47:2e:ef:c3:fa:c4:9d:fa:ba:dd:f0:5e:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Jan 2 04:31:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=15636477fd5f940520db583c970094c608767b7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:86:b8:b2:c8:62:e8:dd:d9:92:e1:2b:3d:39:
78:e2:0f:e1:31:8c:12:fe:c8:30:e6:fd:c2:89:79:
1c:77:e0:29:8c:87:65:17:be:b6:e1:f3:cd:9c:9b:
12:cd:d5:c1:b3:22:aa:3a:61:ee:a8:fc:7b:0b:70:
35:39:92:9b:3e:0b:f6:a7:ab:31:1b:27:ca:f5:db:
df:dd:d2:ed:24:25:75:d8:47:89:49:66:38:3c:dd:
59:6a:54:57:fc:0e:6e:c4:c2:da:10:6c:a7:43:24:
df:a2:01:e3:b3:ec:e2:e2:27:67:5e:6b:5b:27:aa:
96:4f:71:41:87:ec:24:cc:86:11:43:55:8f:78:53:
3c:c4:04:ef:d7:b4:dd:fe:fd:ec:f0:05:64:88:be:
fd:ea:87:24:8b:8a:1e:87:9f:3e:95:54:b5:eb:ba:
5e:10:14:0b:e9:e8:c5:8e:12:15:c6:a8:57:6b:b6:
04:c9:81:40:6b:6a:2d:0b:8f:14:99:c6:d9:49:f5:
36:2b:be:04:9b:8d:f2:25:bf:5e:79:82:d0:ef:f7:
59:32:06:9a:a7:d0:b9:95:2c:74:6f:ff:b8:20:d9:
fe:dc:09:4b:e4:f3:25:00:44:3a:74:75:af:01:4e:
16:de:81:65:3a:d8:25:69:75:65:04:fa:78:08:21:
64:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:63:64:77:FD:5F:94:05:20:DB:58:3C:97:00:94:C6:08:76:7B:7C
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/FWNkd_1flAUg21g8lwCUxgh2e3w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.107.0/24
212.46.37.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:b5:5a:03:ec:8a:41:4d:51:64:d6:40:be:0a:22:b1:11:cd:
be:71:5f:da:0d:06:cd:49:02:43:7e:d1:86:33:7b:1b:78:d5:
59:f0:80:0c:6a:d8:7c:af:2e:fa:e4:75:d0:bc:da:08:4b:be:
b3:f7:c4:90:0f:8e:3e:41:e3:52:e7:29:d6:1d:2e:5f:de:d6:
06:51:d3:c9:c1:11:1e:22:d2:eb:d9:b7:39:0a:8d:d3:c3:e8:
c9:ab:64:ac:77:2d:da:78:7e:cb:6d:82:82:b0:42:0a:67:f2:
b0:8a:b4:27:29:bd:48:3c:71:4f:f0:d0:fb:c0:e2:68:d4:ce:
99:be:46:a3:a3:b9:10:74:3b:ae:06:ea:3c:91:f1:a9:01:c1:
c0:48:3a:32:62:07:8a:72:c7:bd:b4:bd:96:f8:7f:66:e3:9e:
98:f8:ee:3e:c9:71:67:97:f0:6a:8c:48:9f:ac:63:f9:67:81:
f0:fc:01:f7:5c:ec:ce:47:08:30:eb:ea:f2:f7:84:89:27:fa:
d7:ed:d8:6d:80:76:ba:b5:3c:4a:39:9a:82:79:88:43:6f:9d:
88:5f:c2:22:a6:3f:81:6a:9c:0f:c1:7d:2c:97:a7:11:bf:20:
f3:95:b6:fe:5f:ef:b4:10:de:6b:ae:6e:04:d5:58:ff:b8:61:
c9:12:a5:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:47 2024 by rpki-client on console-ams.rpki-client.org