Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0fc7f7-1851-4e34-8e5e-cd902421219f/1/6SDUGAy_G5YnZJNVjqxM4vVNXro.roa
File: 6SDUGAy_G5YnZJNVjqxM4vVNXro.roa (raw, json)
Hash identifier: jtNEhVLU25vs2abk8BWKYt2arL1OQ8NnjSgvcIJW11Q=
Subject key identifier: E9:20:D4:18:0C:BF:1B:96:27:64:93:55:8E:AC:4C:E2:F5:4D:5E:BA
Certificate issuer: /CN=16f45ddbfcd0a1b4c779215727b297a83dd941d0
Certificate serial: 0D7500C5
Authority key identifier: 16:F4:5D:DB:FC:D0:A1:B4:C7:79:21:57:27:B2:97:A8:3D:D9:41:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FvRd2_zQobTHeSFXJ7KXqD3ZQdA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0fc7f7-1851-4e34-8e5e-cd902421219f/1/6SDUGAy_G5YnZJNVjqxM4vVNXro.roa
Signing time: Sat 01 Jan 2022 08:57:58 +0000
ROA not before: Sat 01 Jan 2022 08:57:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21409
IP address blocks: 185.10.99.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 225771717 (0xd7500c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16f45ddbfcd0a1b4c779215727b297a83dd941d0
Validity
Not Before: Jan 1 08:57:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e920d4180cbf1b96276493558eac4ce2f54d5eba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:7a:75:c4:c7:50:af:d8:2c:6c:2a:a2:e2:a5:
17:da:db:97:c8:6b:db:95:20:d4:ef:20:a2:7a:a9:
30:86:b0:bc:ab:ee:35:b8:c8:47:fa:51:29:0b:c9:
e2:bc:78:14:f1:07:7b:ce:2d:e4:0d:18:2b:5e:2e:
71:03:89:da:d2:4c:3f:b0:bd:96:60:2f:f8:8a:1c:
7c:5a:de:7f:f3:ea:12:3e:6d:24:55:9a:cb:82:22:
98:4b:dc:e4:fc:92:0a:59:98:cb:06:23:84:d5:13:
23:3a:af:75:80:27:80:f7:01:db:d1:31:49:ff:b3:
a6:9d:3b:20:1d:10:6e:45:b4:a8:57:d1:5c:e3:36:
6d:e5:2f:bb:22:0b:d7:12:fb:69:84:08:11:0a:f6:
17:0e:a1:ec:9e:ed:02:f7:36:79:f8:14:f7:39:ae:
c3:7a:f3:d6:47:2c:d3:7f:f3:d8:50:8c:ef:55:f6:
80:8a:13:af:0e:62:14:65:33:5d:7e:a8:17:95:a3:
16:bc:0f:c8:0b:2f:15:95:3e:3c:68:ff:f5:ce:41:
5b:24:8f:47:ef:9b:c4:2c:07:ac:4d:fc:54:20:1e:
98:39:4c:67:16:07:9b:63:91:3c:71:06:40:1e:e8:
b9:33:a8:2a:cb:59:cc:35:50:dd:d5:e0:7f:23:4c:
e8:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:20:D4:18:0C:BF:1B:96:27:64:93:55:8E:AC:4C:E2:F5:4D:5E:BA
X509v3 Authority Key Identifier:
keyid:16:F4:5D:DB:FC:D0:A1:B4:C7:79:21:57:27:B2:97:A8:3D:D9:41:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FvRd2_zQobTHeSFXJ7KXqD3ZQdA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0fc7f7-1851-4e34-8e5e-cd902421219f/1/6SDUGAy_G5YnZJNVjqxM4vVNXro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0fc7f7-1851-4e34-8e5e-cd902421219f/1/FvRd2_zQobTHeSFXJ7KXqD3ZQdA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.10.99.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:f0:a6:8e:78:b2:0c:94:23:c3:b9:d6:cf:c2:2c:51:a8:e1:
10:55:0b:0a:f3:ab:e9:95:91:6b:f6:61:49:4c:56:3f:ec:a1:
00:a2:fe:d3:d5:db:47:d1:fe:7b:22:3f:0d:db:bd:3c:05:cd:
d8:01:0f:3d:3f:c0:86:c4:b6:58:2c:4a:8d:e6:2a:63:ac:7a:
bc:03:25:80:15:74:f1:e7:6e:8c:d2:03:73:28:8c:d8:2f:4d:
a6:1d:0d:5a:72:a3:cb:2f:fe:09:9d:0c:6f:c3:f4:aa:36:6a:
d7:08:71:03:57:35:ef:d2:45:a0:5c:67:1e:d2:c7:db:71:ba:
d7:4f:f7:59:25:98:9c:f5:f1:c7:69:19:b8:34:a5:6a:c4:4d:
15:87:8e:32:dc:6d:09:be:05:76:02:2b:de:58:b9:1c:1f:ea:
b2:89:f0:b3:c3:52:9a:36:b3:a4:24:8f:f6:44:36:4a:90:d9:
9e:af:23:7c:b7:eb:02:03:b0:c7:85:cc:23:11:16:c6:0e:84:
7c:a3:ff:7f:be:fe:e4:fb:0b:d2:4a:df:10:d7:3f:9f:b0:14:
b9:87:db:5c:94:b4:3c:82:7f:8f:88:88:eb:b1:17:e6:34:5d:
6e:03:ba:54:14:eb:4c:2c:f8:a7:4d:15:0b:36:0a:3c:ff:0d:
c2:b7:09:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:09 2024 by rpki-client on console-fra.rpki-client.org